Category: WriteUps (Page 2 of 11)

Bypass WAF – Execution of PHP code without letters

July 21, 2020 / Pablo Plaza Martínez / 1 Comment

In this post we use a challenge from ASISCTF to explain a way to skip a filter, implemented by the function preg_match, to execute code PHP.

¿Me ayudas a compatirlo?

WriteUp – Curling (HackTheBox)

July 20, 2020 / Manuel López Pérez / 0 Comments

In this post we will make the Curling machine from HackTheBox.
It is an easy level Linux machine where we will face a CMS (Joomla) and we will see how to climb using DirtySock.

¿Me ayudas a compatirlo?

Hacking JSON Web Token (JWT)

May 31, 2020 / Manuel López Pérez / 0 Comments

Attacking JSON Web Token (JWT)

In this post we’ll see how a website that uses JWT incorrectly allows us to create users with arbitrary data. We will rely on a challenge from the CTF TJCTF, specifically the Moar Horse 4 challenge.
Continue reading

¿Me ayudas a compatirlo?

CSRF + XSS (filter bypass)

May 28, 2020 / Pablo Plaza Martínez / 0 Comments

A CSRF is operated through an XSS. In this case we rely on a TJCTF challenge but it is applicable in many areas. This kind of attacks show the danger that XSS have as we saw in the post from WordPress 5.1 CSRF + XSS + RCE – Poc where even RCE was achieved.

¿Me ayudas a compatirlo?

(Español) Cybercamp 2019 – Sow Cipher (Criptografia)

December 27, 2019 / Manuel López Pérez / 2 Comments

Sorry, this entry is only available in European Spanish. For the sake of viewer convenience, the content is shown below in the alternative language. You may click the link to switch the active language.

CyberCamp 2019

Con esta entrada continuamos con los writeups resolviendo los retos de la fase clasificatoria online de la CyberCamp 2019.
En este caso es un reto de nivel medio de Criptografia.
Continue reading

¿Me ayudas a compatirlo?