Welcome to My Cyber Security Blog, where i talk about Solution to Challenges in CTFβs I played and Labs solved
MainΒ GithubΒ
CTFs:
- [2023 Mar, 28] PICO CTF 2023
- [2022 Nov, 15] Nahamcon CTF
- [2022 Oct, 19] WICTF
- [2022 Sept, 22] Meta CTF 2022
Reverse Engineering:
Crackmes:
This are simple programms writen in different languages and logics which you could use to improve your reverse engineering skills.
- [2023 May, 17] EasyCrackMe
- [2023 May, 18] GDB Basics π
- [2023 May, 20] Sha256 = Secure ?
- [2023 May, 20] G0l4ng_15_C00L
Binary Exploitation:
This are my notes on Binary Exploitation where i document challenges i solved and script i used in solving them.
Exploit Education Phoenix:
This categories of challenges introduced me to memory corruption, modification, function redirection, and eventually, executing shellcode.
- [2023 jun, 4] Stack-Zero
- [2023 jun, 5] Stack-One
- [2023 jun, 5] Stack-Two
- [2023 jun, 5] Stack-Three
- [2023 jun, 5] Stack-Four
VulnHub:
VulnHub was born to cover as many as possible, creating a catalogue of βstuffβ that is (legally) βbreakable, hackable & exploitableβ - allowing you to learn in a safe environment and practise βstuffβ out.
PortsWigger LABS
- [2023 Jul, 22] SQLi LABS
- lab sql injection vulnerability in where clause allowing retrieval of hidden data
- lab sql injection vulnerability allowing login bypass
- lab sql injection attack querying the database type and version on oracle
- lab sql injection attack querying the database type and version on mysql and microsoft
- lab sql injection attack listing the database contents on non oracle databases
- lab sql injection attack listing the database contents on oracle
- lab sql injection union attack determining the number of columns returned by the query
- lab sql injection union attack finding a column containing text
- lab sql injection union attack retrieving data from other tables
- lab sql injection union attack retrieving multiple values in a single column
- lab blind sql injection with conditional responses
- lab blind sql injection with conditional errors
- lab visible error based sql injection
- lab blind sql injection with time delays
- lab blind sql injection with time delays and information retrieval
- lab blind sql injection with out of band interaction
- lab blind sql injection with out of band data exfiltration
- lab sql injection with filter bypass via xml encoding
- [2023 Aug, 20] Access Control Labs
- lab-unprotected-admin-functionality
- lab-unprotected-admin-functionality-with-unpredictable-url
- lab-user-role-controlled-by-request-parameter
- lab-user-role-can-be-modified-in-user-profile
- lab-user-id-controlled-by-request-parameter
- lab-user-id-controlled-by-request-parameter-with-unpredictable-user-ids
- lab-user-id-controlled-by-request-parameter-with-data-leakage-in-redirect
- lab-user-id-controlled-by-request-parameter-with-password-disclosure
- lab-insecure-direct-object-references
- lab-url-based-access-control-can-be-circumvented
- lab-method-based-access-control-can-be-circumvented
- lab-multi-step-process-with-no-access-control-on-one-step
- lab-referer-based-access-control
- [ 2023 Aug, 28] Directory Traversal Attacks Labs
- lab-file-path-traversal-simple-case
- lab-file-path-traversal-traversal-sequences-blocked-with-absolute-path-bypass
- lab-file-path-traversal-traversal-sequences-stripped-non-recursively
- lab-file-path-traversal-traversal-sequences-stripped-with-superfluous-url-decode
- lab-file-path-traversal-validation-of-start-of-path
- lab-file-path-traversal-validation-of-file-extension-with-null-byte-bypass
- [2023 Aug, 5] XSS LABS
Pentester LABS
Hacktheb0x:
Support Or Get in touch with Me:
Reach Out and Letβs Connect! am a DM away letβs discuss hacking and cybersecurity!! .