Posts

Securinets CTF Quals 2022 - Infrastructure and Web writeups

Securinets Quals 2022 Infrastructure review and Web challenges writeups.

PBCTF 2021 - RCE 0-Day in Goahead Webserver

2 methods RCE 0-Day in Goahead Webserver: PBCTF 2021 Last weekend I participated with my team Zer0pts in PBCTF 2021 and we got the 5th place, we were really close to secure a spot in the top 3 but an error in Wine while solving a shitty misc challenge prived us from this win :(

AngstromCTF Web Writeups

Finally after finishing my exams , I had the opportunity to participate in the last 2 days of AngstromCTF with my team Fword and managed to solve all the web challenges except the last 3 tasks, unfortunately I didn’t have the chance to try the last two ones , bad subjects at school are always keeping me from playing CTFs and learning useful stuffs :( !

DiceCTF Web Writeups - Client Side Chaining And JS Attacks

Hello everybody , it has been a long time since I have posted a writeup :( I have been a little busy in the last period with school assignments, exams and some work (Covid has really messed up my life).

International CTF Infrastructure Management

How to deploy a scalable and robust CTF infrastructure and the different issues we faced in FwordCTF 2020

CSAW CTF2020 - Web RTC Writeup

Web RTC (450pts) 39 solves Last weekend,we have been a part of the CSAW CTF 2020 and our team Fword ranked 4th in MENA region. We managed to solve all web challenges with my awesome teammates @Hera and @Noxious and we have particularly enjoyed Web RTC .

FwordCTF 2020 - Web/Bash Writeups

Official writeups for FwordCTF2020 Web/Bash challenges

CSICTF 2k20 - Web Exploitation

Web exploitation writeups of CSICTF 2k20 - File Library Task and The Unusual Suspects Web tasks

How i hacked a famous pizza vendor in Tunisia ?

How i hacked a famous pizza vendor in Tunisia ? Generally i’m not a fan of bug bounty programs but this time i tried to test my skills in some real world scenario and participate to secure some tunisian websites as they lack a lot of things in term of security :D It’s 11h pm and i was sitting on my laptop like always doing an annoying java homework for school when i felt hungry :( and accidentally an X pizza (we will call it X pizza as i was asked to not reveal the company name) ad catched my eye on facebook.

Detailed Writeups - Binary Exploitation

Detailed binary exploitation writeups from UMD CTF and WPICTF , heap based overflow and format string vulnerability.