Inshall'hack
Security if God wills it
Inshall'hack
Tree of life Writeup (Nuit Du Hack 2018)

"Tree of life" was a 300-point challenge at Nuit du Hack 2018, that I flagged with Geluchat. It was quite original, and thus quite fun to solve. This writeup comes quite late as I needed to access the challenge website again to write something proper; thanks a lot sybix for …

Read More
On a pas les bases Writeup (Nuit Du Hack 2018)

"On a pas les bases" was a 50-point Steganography challenge at Nuit Du Hack 2018. Challenge description Because we can't access the platform anymore, this challenge shall remain without description for now. We are provided with the following picture: Analysis We start by running exiftool on the file: ~$ exiftool OREILLES_SALES …

Read More
Very personal portefolio Writeup (Nuit Du Hack 2018)

"Very personal portefolio" (yup, portefolio was written like that) was a 100-point Web challenge at Nuit Du Hack 2018. Challenge description Because we can't access the platform anymore, this challenge shall remain without description for now. Note: this writeup will most likely be updated with more details once the platform …

Read More
Doors of Durin Writeup (Nuit Du Hack 2018)

Doors of Durin was a 200-point Misc challenge at Nuit Du Hack 2018. It was quite original, because the code was running on a literal black box with a screen on the desk of the organizers. Since it was an original challenge, let's make an original writeup! Challenge description Alas …

Read More
Fleet Writeup (Nuit Du Hack 2018)

Fleet was a 300-point Stegano challenge at Nuit Du Hack 2018. Although its level was marked as "Easy", we (jeanmi151 and SIben) got first blood on it near the end of the CTF, and no one else managed to flag it. Challenge description Level: "Easy" "You are in your favorite …

Read More
ndash Writeup (Nuit Du Hack 2018)

ndash was a 250-point Crypto challenge at Nuit Du Hack 2018. I was very surprised to see it has only been solved 8 times, since it was probably the easiest challenge I encountered (disregarding icmp). I believe we missed getting first blood by not opening the challenge quickly enough :). From …

Read More
perdu Writeup (Nuit Du Hack 2018)

perdu was a 100-point forensics challenge at Nuit Du Hack 2018. I personally didn't beat it in time, mainly due to a lack of sleep, a high consumption of beer and the fact that socializing is much more amusing than flagging. Although someone else from our team ended up flagging …

Read More
GoCrackMe Writeup (Nuit Du Hack 2018)

GoCrackMe was a 400-point challenge at Nuit Du Hack 2018 on which we got first blood quite early in the CTF. Challenge description Because we can't access the platform anymore, this challenge shall remain without description for now. We are provided with a binary file. Write-up As the name of …

Read More
icmp Writeup (Nuit Du Hack 2018)

This challenge was a 50-point challenge and was the easiest one of the whole CTF. It was created by our beloved WorldCitizen. Challenge description Because we can't access the platform anymore, this challenge shall remain without description for now. We are provided with a file named analysis.pcap. Analyzing the …

Read More
Nice Code Writeup (ASIS CTF Quals 2018)

Nice Code was a Web challenge at the ASIS quals 2018. It was solved about 30 times, but contained a few nice tricks that are worth mentioning. Challenge description Beautify php code! Here (http://167.99.36.112:8080/) Discovery and baby steps We arrive on a page with a …

Read More
Wawacoin Writeup (Nuit du Hack Quals 2018)

Wawacoin was a 400-point Crypto/Web challenge at Nuit Du Hack Quals 2018. As is not the first time, we ended up flagging this challenge about 10 minutes after the end of the CTF. Nevertheless, here it goes! Challenge description Wawacoin: 400 pts / Web-Crypto Description Sell your house, buy …

Read More
Guessflag Writeup (Insomni'hack 2018)

Guessflag was a warmup pwn at Insomni'hack 2018. It was a fairly easy challenge, but we struggled a lot on small details. The challenge We were given ssh access to a remote server, and the challenge was in /home/flag there. There we could find a shared lib (dowin.so …

Read More
gmx Writeup (Ångstrom CTF 2018)

gmx was a 160 point cryptography challenge in Ångstrom CTF 2018. I thought it was very interesting, especially because it used an actual cryptosystem I had no knowledge of, and surprisingly validated by less than 30 teams among the almost 2000 that were participating. Challenge description defund created a nonconformist …

Read More
Pixelly Writeup (EasyCTF IV)

Pixelly was a 220 point challenge in EasyCTF 2018. Although not very realistic, it was quite amusing and thus deserves a writeup in my opinion. Challenge description I've created a new ASCII art generator, and it works beautifully! But I'm worried that someone might have put a backdoor …

Read More
Connecting Will Writeup (BreakIn CTF)

Challenge description Catégorie: Misc Points: 500 Description: Will is lost in the Upside-Down and is stuck with the Demogorgon. El is looking for Will, when, she stumbles across a piece of code that Will wrote. The Demogorgon could not decipher the code and hence just left it lying around. El …

Read More
Hello fibonacci? Writeup (AceBear Security Contest 2018)

"Hello fibonacci?" was a 100 point programming challenge in the AceBear Security Contest 2018. While all in all not very complicated, I struggled a lot to solve it due to numerous insufficient approaches. These failed approaches as well as the one that worked will be presented below. Challenge description Description …

Read More
Smart-Y Writeup (Insomnihack Teaser 2018)

This challenge was the second most flagged Web challenge of the CTF. Description Last year, a nerd destroyed the system of Robot City by using some evident flaws. It seems that the system has changed and is not as evident to break now. http://smart-y.teaser.insomnihack.ch Recon The …

Read More
VulnShop Writeup (Insomnihack Teaser 2018)

VulnShop was a web challenge in the Insomnihack 2018 teaser. It was solved by SIben, nodauf and Geluchat (khack40) for Inshall'hack. While it ended up being the most flagged challenge of the CTF (apart from the warmup, of course), it was an interesting lesson. Challenge description We're preparing a …

Read More
Ecoin Writeup (34C3 CTF)

Challenge description ecoin - hard I think I'm getting crazy! I see things in things. Like this: PDF The PDF file : https://github.com/Inshallhack/Write-ups/raw/master/34C3-2017/ecoin/ecoin_vuln_notes.pdf First glance First, I opened the PDF and did not notice anything out of the ordinary. This PDF contains …

Read More
Pizzagate Writeup (34C3 CTF)

Pizzagate was the hardest Web challenge in the 34C3 Junior CTF, which Inshall'hack unfortunately solved 10 minutes after the end of the CTF. Nevertheless, it was quite interesting and therefore deserves a writeup. Challenge description pizzagate - hard-ish We found this [pizza shop]. It seems to be under construction currently …

Read More
Ssi Writeup (WhiteHat Grand Prix CTF 2017)

Ssi was a 100 point Web challenge in the WhiteHat Grand Prix 2017, solved by Shrewk and myself (SIben). As the amount of points suggests, it was one of the easiest challenges of the CTF (points were usually from 100 to 500). Nevertheless, it took us quite a while to …

Read More
SqlSRF Writeup (SECCON CTF 2017)

SqlSRF was a 400 point Web challenge in the quals of SECCON 2017. While not exceptionally hard, it required a diverse skillset and was thus quite interesting. Challenge description SqlSRF The root reply the flag to your mail address if you send a mail that subject is "give me flag …

Read More

Receive Updates

ATOM

Contacts