writeups

Saturday 23 July 2016 (2016-07-23)

🇬🇧

ABCTF - 75 - Virtual Box 5 - Virtual Series

Information# Version# By Version Comment noraj 1.0 Creation CTF# Name : ABCTF 2016 Website : http://abctf.xyz/ Type : Online Format : Jeopardy - Student CTF Time : link Description# I acci

security

Saturday 9 July 2016 (2016-07-09)

🇬🇧

Local File Inclusion (LFI) and Remote Code Execution (RCE) vulnerabilities for PHP

Local File Inclusion (LFI) is a type of vulnerability concerning web server. It allow an attacker to include a local file on the web server. It occurs due to the use of not properly sanitized user inp

security

Thursday 7 July 2016 (2016-07-07)

🇬🇧

Nikto : protect your Apache server against a LFI vulnerability

Goal# How to protect your apache server against a LFI vulnerability that can be found with Nikto . /autohtml.php?op=modload&mainfile=x&name=/etc/passwd : php-proxima 6.0 and below allows arbit

writeups

Saturday 2 July 2016 (2016-07-02)

🇬🇧

Writeups - Forensic - BusyBee

Information# Version# Date By Version Comment 05/06/2016 noraj 1.0 Creation CTF# Name : BackdoorCTF 2016 Website : https://backdoor.sdslabs.co Type : Online Format : Jeopardy CTF Time : lin

securitynews

Tuesday 21 June 2016 (2016-06-21)

🇬🇧

Hardened Tor Browser with Selfrando

6 June 2016, the Tor Project announced a hardened version of Tor Browser: 6.5a1-hardened. Here some links: Download page for hardened builds (only avaible for Linux at this time). Distribution direct

security

Monday 13 June 2016 (2016-06-13)

🇬🇧

Hide AES-256 encrypted zip file in a JPEG image

This how-to was made for Linux user. The user will need p7zip, exiv2 and optionally exif, exiftool, unzip. Create an AES-256 encrypted zip file# 7z (p7zip for Linux) can produce zip-format archives wi

security

Thursday 9 June 2016 (2016-06-09)

🇬🇧

Security related Operating Systems

The list of security related OS is now part of Rawsec's CyberSecurity Inventory!

securitynews

Thursday 2 June 2016 (2016-06-02)

🇬🇧

Pastejacking vs clipboard hijacking

Clipboard hijacking# It as been possible for a long time to use css (-9999px position trick) to append malicious content to the clipboard. Users doesn't notice anything and may execute unwanted comman

writeups

Thursday 26 May 2016 (2016-05-26)

🇬🇧

Writeups - Crypto - MindBlown

Information# Version# Date By Version Comment 05/06/2016 noraj 1.0 Creation CTF# Name : BackdoorCTF 2016 Website : https://backdoor.sdslabs.co Type : Online Format : Jeopardy CTF Time : lin

writeups

Thursday 26 May 2016 (2016-05-26)

🇬🇧

Writeups - Crypto - Oups it's all mixed

Information# Version# Date By Version Comment 03/05/2016 noraj 1.0 Creation Name# Oups it's all mixed Category# Cryptography Wording# Decipher the following flag: eGqaelr557dK4BbK47dS17dK68c

Tag: security