Hello, world!

Log in to website using info leak in an internal route, and use query-parameter-injection to pollute locals.

BTW Always look at robots.txt :thumbs:.

modprobe_path overwrite exploit after kernel commit fa1bdca98d74472dcdb79cb948b54f63b5886c04. trigger modprobe using struct sockaddr_alg.

First ever kernel pwn!

Using strlen on binary data is the definition of insanity.

Limited inital ropchain => pivot stack to bss for unlimited control.

From Text injection to open redirect using javascript: pseudo protocol for unrestricted XSS.

First major web solve since picoCTF.

First time solving a race condition / shared memory CTF challenge.

SUID Binary with relative path => recipie for disaster.

UN-INTENDED SOLVE, Notified organisers about it.

Very nice and niche CTF challenge

Out of the blue, after my SIH victory, i decided to give web development and cybersecurity a little break and decided to write a chip8 emulator. This is one project that i have always been wanting to do for quite a long time, but never got free enough to do it.

Why is there not a simple CLI tool for converting hex to ascii? :pray:

Solution

1

<img src="42" onerr="alert(2)">

Flag: root@localhost{Byp4ss_Sanitiz3r_123}