2018 Metasploit Community CTF

The Metasploit Community CTF is a ton of fun and it is a bit different than your standard jeopardy CTF. Full details on the CTF can be found on the homepage, but to give a short breakdown of how it works: 1. You are assigned two target boxes 2. Penetrate the targets and uncover specific playing card PNG images and md5sum them for the flag. I was...

Read More

Cracking the Perimeter and OSCE Review

After a short break from finishing up OSCP, I decided to plunge into more Offensive Security pain, and it was well worth it. With a much more focused curriculum, the Cracking the Perimeter course and the accompanying OSCE certification test was once again another amazing Offsec experience. With everything fresh in my mind, here are my personal thoughts...

Read More

Square CTF - Dot-n-Dash

This was a fun little programming challenge from the recent Square CTF. We are given an html file and an encoded 'instructions.txt' file, which is a cipher of sorts containing nothing but dots and dashes. Loading the html file shows that there is JavaScript running that can encode and decode text. Unfortunately, the developers never finished the...

Read More

Stinging with a sharp serpent: Windows post-exploitation with SILENTTRINITY & IronPython

Powershell is beginning to lose its power for offense as the detection and mitigation of Powershell-based attacks is rising, and the focus is currently shifting to C# for tool creation as it can directly tap the .NET framework similar to Powershell. Derbycon 8 had a ton of amazing talks, and I am now just catching up on all of them (thanks Irongeek!)...

Read More

Non-alphanumeric characters in my alphanumeric encoded payload - Exploration with NNM 7.53

After watching the Defcon 16 talk by Muts in regard to the 0-day they discovered in the NNM service and how they overcame all the crazy obstacles they were faced with, I wanted to learn more about this and explore it in-depth. DEFCON 16: BackTrack Foo - From bug to 0day: https://www.youtube.com/watch?v=gHISpAZiAm0 Original PoC: https://www.offensive-security.com/0day/hp-nnm-ov.py.txt While...

Read More

Recon Village CTF @ Defcon 26

Defcon 25's Recon Village CTF was a ton of fun and my team was very much looking forward to participating during Defcon 26. I think in comparison to last year, this year's CTF proved to be a bit more challenging, and we decided to go full force to get top 3. It was a close race, but we were passed at the end and got knocked into 5th. Below are the...

Read More