I played AeroCTF as a member of team insecure and got 3411 points, which is worth reaching to the 14th place. I solved several challenges, some of them with the help of my team mates, and enjoyed the CTF. Thank you to the admin for holding…

I participated in BSidesSF CTF 2019 as insecure and got 540pts, reached to the 37th place. I also played TAMUctf and had been awake for 24 hours so unfortunately I spent much time on sleeping... And there were too many challenges to solve …

TAMUctf 19 had been held for nearly 2 weeks and I joined as insecure. My team got 19162pts, except for Pwn6 and Alt-F4 For Ops, and reached 16th place. There were so many challenges and I can't write about all of them. I enjoyed most of th…

はじめに 論文みたいなタイトルになりましたが別に新しくも何ともありません。 趣味で勉強して面白かったので記事にしてみました。 さて、FILE構造体を利用したexploit手法としてFILE Structure Oriented Programmingがあります。 _IO_FILE_plus構造体のvtab…

FireShell CTF 2019 had been held in 26 and 27 Jan for 24 hours. Our team insecure got 1958pts and reached 16th place. There were so many challenges that I couldn't even check some of them. I'm going to write the solution for some challenge…

I joined in Kaspersky Industrial CTF as insecure and solved 3 challanges. I think I was close to the answer of CutTheRop, but couldn't make it...... Anyway, I really enjoyed the CTF! [re 587] glardomos [web 50] expression [pwn 635] doubles…

HCTF 2018 had been held for 48 hours from November 9th. HCTF is held every year but this was the first time for us to participate in HCTF. I joined in the CTF as a member of team insecure. We got 3032.49pt and I solved 4 challenges. [Web] …

はじめに 2018年10月27日15:00から28日15:00(JST)にオンラインで開かれたSECCON 2018 Onlineにチームinsecureとして参加しました．結果としては全体で56位でした． 私が解いたのはUnzip, History, QRChecker, Runme, block, Boguscrypt, mnemonicです．チー…

はじめに 真面目にpwnを勉強していきたいので復習も兼ねて1から整理していこう，ということで最初にFSBについてまとめてみます． FSBに関する分かりやすい説明はたくさんあるのですが，この記事ではグローバル変数に対するFSBの利用法を説明しようと思います…

It's been about two years since I last joined in a CTF. I participated in SEC-T CTF 2018 as a member of 'insecure.' I solved 7 challanges and got 357 point in total. Sanity check [Misc 51pts] Flag is in the topic of #sect-ctf @ irc.freenod…

はじめに 2018年09月01日から02日にかけて福岡で高専セキュリティコンテスト(KOSESNSC)が開催されました． 編入試験が終わって時間が空いたので，久しぶりにCTFに参加しました． 久しぶりで腕も鈍っていたので，8月の終わりに研究室でKOSENSC対策の模擬CTFを…

はじめに をmd5やsha1などのハッシュ関数としたとき，からを求める攻撃をLength Extension Attackと呼びます． この記事では先日の研究室内で開いたCTFで出題した問題を例に，Length Extension Attackの原理と使い方を説明するとともに，Pythonによる実装を…