UYBHYS - Sea Monster Attack & Defense CTF
Last week-end I teamed up with members from Aperikube for an Attack/Defense CTF which took place in Brest - France. In this "small" blog post I will write about this experience, the challenges and our methodology :)
{: .center-image }…
·
UYBHYS - Sea Monster Attack & Defense CTF
SIGSEGV1 Writeup - MD Auth
Let's talk about the "MD Auth" challenge, I admit I started with this challenge thinking it would be about "Markdown". I was wrong but it was nonetheless interesting to solve…
·
SIGSEGV1 Writeup - MD Auth
An XSS Story
Last night I stumbled across an XSS in a bug bounty program, this was quite fun to exploit…
·
An XSS Story
WHID Injector - Tips and Tricks
What is it ? The WHID Injector is USB Key which act as a remote keyboard. Basically it sets up a Wifi Access Point where you can connect and send whatever you want on the machine. It also has a Rubber Ducky payload converter, an exfiltrated data tab and many more.
What can I do ? Everything you could do with a keyboard plugged into a computer, for example : using WHID Toolkit you can spawn a reverse-shell :D
Where to buy a WHID Injector ? I got mine from Aliexpress, it's also available on ebay around 15+ $ ;)…
·
WHID Injector - Tips and Tricks