Stack Overflow
Stack Overflow

Questions tagged [ctf]

In a computer hacking context, a Capture The Flag (CTF) challenge invites participants to extract a hidden piece of information called a "flag" (usually a short string of ASCII text) from vulnerable online systems or downloadable files through the application of skills in various fields such as cryptography, steganography and reverse engineering. Typically this involves bypassing poorly-implemented security measures.

In a computer hacking context, a Capture The Flag (CTF) challenge invites participants to extract a hidden piece of information called a "flag" (usually a short string of ASCII text) from vulnerable online systems or downloadable files through the application of skills in various fields such as , and . Typically this involves bypassing poorly-implemented security measures.

162 questions
0
votes
0 answers

The environment variables obtained by splicing in linux are not parsed

As we all know, we can use $HOME to print the current directory just like: $ echo $HOME And it will print: /home/tsingshui But if I use: $ __="$""H""O""M""E";echo ${__} It just print: $HOME Is there any way to make it continue parsing out the…
tsingshui
  • 1
0
votes
0 answers

Permission denied when installing pwndbg

I was setting up my Kali Linux recently. I was trying to install debuggers (pwndbg, gef, peda) using the following script: https://github.com/apogiatzis/gdb-peda-pwndbg-gef After the setup I was testing the functions, and I cannot open any of the…
Haybale
  • 21
  • 3
0
votes
1 answer

How to use binwalk to recursively extract all files to a folder

I'm trying to resolve a matryoshka_doll problem. I already solved it by creating a script using unzip, but know I would like to use binwalk to achieve the same effect. Searching through the binwalk --help I didn't find anything useful, but I could…
Guilherme Soares
  • 15
  • 7
0
votes
0 answers

Trying to run 0xmonaco's default package on mac (m1 chip) it wouldnt pass

this seems to be very basic but I just can't figure out after trying different ways: I tried to forge build and then forge test the "0xMonaco challenge’s zip" file from https://0xmonaco.ctf.paradigm.xyz/howtoplay but it just wouldn't pass while…
cubic theorist
  • 1
  • 1
0
votes
2 answers

How can I reach the last zip in a long line of nested zips?

I have a task to reach the last file in long line of nested zip archives. They go like this: 3301.zip | 3300.zip | 3299.zip | ... | 1.zip Basically, I have to extract one archive from another 3300 times in order to reach the file within 1.zip. I…
Cipri Rengle
  • 1
  • 1
0
votes
0 answers

Simulate global variable access with Claripy

I need to simulate this decompiled line of code in a Python script using claripy as solver engine, *(ulong *)(global_variable + (ulong)((uint)local_variable[local_inedx + 1] & 1) * 8) global_variable is basically an array cointaining a 0 and an…
batodev
  • 51
  • 8
0
votes
0 answers

Node js session exploit with known secret

I'm doing CTF challenge where I've successfully retrieved session cookie, can I somhow bruteforce or maybe predict next session cookie and login someone else or change my role. Here is how thay generate session cookie: app.use(session({ resave:…
Jakov Gl.
  • 361
  • 3
  • 11
0
votes
0 answers

How can I hide a message in an HTTP Header?

I am making a CTF And I want the player to use curl -I to get part of the message, by hiding it in HTTP Headers how would I do this? (note: if possible HTML is a preferred method, if not I am open to other methods)
Rat
  • 5
  • 2
0
votes
2 answers

I want to create a wordlist of incrementing decimal numbers by 1 using python

I know i can create a wordlist using programms like 'crunch' but i wanted to use python in hopes of learning something new. so I'm doing this CTF where i need a wordlist of numbers from 1 to maybe 10,000 or more. all the wordlists in Seclists have…
PsOom
  • 37
  • 7
0
votes
0 answers

Call variable through fgets

I just started doing CTFs not so long, and get struck with this pwn challenge. Here's the code: #include #include void validAnswer(char *str){ printf("Congratulations!\n"); } void wrongAnswer(char *str){ …
Altair
  • 1
0
votes
0 answers

How to setup server with netcat?

STONKS nc mercury.picoctf.net 16439. This is what you get when you visit STONKS CTF at pico ctf. you are supposed to connect to this server and exploit this to get flag. I want to setup up this kind of server too but I don't know where to start. I…
Swastik
  • 1
0
votes
0 answers

How do I solve a B4s3 question? I need help decoding

This is a question that I have to pass in my ongoing test, I just can’t figure it out. The question is as follow; Oops, what’s wrong with this ….. m,Ofp@U {<4sDFkESnoWEE(.M!1}TY7P I will appreciate a response. I tried decoding it but wasn’t…
Onyinye
  • 1
0
votes
1 answer

Speed up iterating through a file

I'm running the picoCTF PW Crack 5 gym challenge, but it is slow to iterate through the password list they provide for the challenge. Below is the code I'm using in the script to solve the challenge and would appreciate any explanation on how I…
Ryukashin
  • 13
  • 3
0
votes
1 answer

Curl, cookies and ctf

I have a simple question. I have to send 100 cookie on this website, but I don’t know how I can do this automatically. Maybe I can create json or txt with 100 cookie and send them. And how I can create this. This is website address:…
артём бугаёв
  • 1
0
votes
0 answers

How to proceed? CTF challenge (binary file)

I have a capture the flag situation; I am quite new to this... The following is given (translated from Brazilian Portuguese): "This challenge requires digging a little deeper than just "strings" to find the correct flag. Parse the attached binary…
soaresnoc
  • 3
  • 3
1 2 3
10 11