Swissky's Lab
UYBHYS - Sea Monster Attack & Defense CTF

UYBHYS - Sea Monster Attack & Defense CTF

Last week-end I teamed up with members from Aperikube for an Attack/Defense CTF which took place in Brest - France. In this "small" blog post I will write about this experience, the challenges and our methodology :) ![Banner]({{ site.baseurl }}/images/SeaMonster/SeaMonsterBanner.png "Banner"){: .center-image }…
·
UYBHYS - Sea Monster Attack & Defense CTF
SIGSEGV1 Writeup - MD Auth

SIGSEGV1 Writeup - MD Auth

Let's talk about the "MD Auth" challenge, I admit I started with this challenge thinking it would be about "Markdown". I was wrong but it was nonetheless interesting to solve…
·
SIGSEGV1 Writeup - MD Auth

An XSS Story

Last night I stumbled across an XSS in a bug bounty program, this was quite fun to exploit…
·
An XSS Story
WHID Injector - Tips and Tricks

WHID Injector - Tips and Tricks

What is it ? The WHID Injector is USB Key which act as a remote keyboard. Basically it sets up a Wifi Access Point where you can connect and send whatever you want on the machine. It also has a Rubber Ducky payload converter, an exfiltrated data tab and many more. What can I do ? Everything you could do with a keyboard plugged into a computer, for example : using WHID Toolkit you can spawn a reverse-shell :D Where to buy a WHID Injector ? I got mine from Aliexpress, it's also available on ebay around 15+ $ ;)…
·
WHID Injector - Tips and Tricks