bi0s
  •  Home
  •  Categories
  •  Archives
  •  Tags
  •  Home
  •  Categories
  •  Archives
  •  Tags

Little Tricks - StarCTF 2021

g4rud4
2021-01-28
Forensics / Disk

tl;dr

  • Decrypt the bitlocker encrypted drive
  • extracting the flag from deleted PDF
Read More
Disk Encryption Bitlocker StarCTF

Favourite Architecture-1 - StarCTF 2021

Pwn-Solo
2021-01-20
Pwn

tl;dr

  • Abusing a stack overflow on a RISC-V binary to then return to shellcode.
Read More
Linux StarCTF Exploitation Shellcode RISC-V

BabyPAC - StarCTF 2021

d4rk_kn1gh7
2021-01-18
Pwn

tl;dr

  • Buffer overflow in AArch64
  • Bypass pointer authentication to leak libc and get shell
Read More
StarCTF ARM ROP PAC

Year In Review 2020

bi0s
2020-12-31
YearInReview

Read More
YearInReview

Diary - Balsn 2020

3agl3
2020-11-17
Pwn

tl;dr

  • Overflow from stdin stucture till main_arena.
  • Create fake fastbin chunks to get overlapping chunk and leak.
  • Overwrite __malloc_hook using fastbin attack.
Read More
Heap Balsn

Leakguard - HackTheVote 2020

Cyb0rG
2020-10-30
Pwn

tl;dr

  • overflow the char candle counter stored in the wax structure and trigger uaf.
  • Use the uaf to trigger double free and get shell.
Read More
Heap Linux HackTheVote

PIP Install - Week 2 - Magnet Weekly CTF

g4rud4
2020-10-20
Forensics / Android

tl;dr

  • Finding Picture-In-Picture application capability.
  • Most recently viewed web activity in Picture-In-Picture application on the device.
Read More
Magnet Weekly CTF ALEAP Picture-In-Picture

Mapping the Digits - Week 1 - Magnet Weekly CTF

g4rud4
2020-10-12
Forensics / Android

tl;dr

  • Finding the last modified timestamp of the file that maps names to IP’s accessed.
Read More
Magnet Weekly CTF Autopsy Android Forensics

Smash - TokyoWesterns CTF 2020

Cyb0rG
2020-09-22
Pwn / CET

tl;dr

  • Leak with Format String bug.
  • Use the arbitrary heap pointer write to overwrite __GI__IO_file_jumps.
  • Inject shellode in heap and get code execution in dfprintf.
Read More
Exploitation Format String CET BOF TokyoWesterns CTF

Grid - CSAW Quals 2020

d4rk_kn1gh7
2020-09-18
Pwn

tl;dr

  • Out-of bounds index write allows byte-by-byte overwrite of return address
Read More
Linux Exploitation CSAW Quals

 Previous 

11 / 18

 Next 

Official blog of team bi0s

  Projects
  •   bi0s-wargame
    (Unraveling)
  •   bi0s-wiki
    (Free Encyclopedia)
  •   InCTF
    (Nationals CTF)
  •   InCTFj
    (Juniors CTF)

Made With Love and Coffee



Blog content follows the Attribution-NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0) License

Use Material X as theme, total visits times.