This CTF isn’t hard but a bit boring to do. We had a video that, when we launched it, has Morse code in it. We first need to recover the sound of the audio, using any video editor online or not. T...

Interstellar In this challenge, we have access to a network communication saved in a pcap file. We have just ICMP requests. At first I was thinking about some kind of ping pong challenge but it wa...

Chunk_of_surprises In this challenge, we are given a png image. But when we try to open it, we get an error. So we look at the hexadecimal inside the image and we see that the headers and the trai...

Astronauts_Poem On this chall, we have a PDF file. When we look at the exif we can see a link to a wiki. When heading to the bottom of the page, we can see two links to old website available on...

Pas_Trop_Dur In this chall, we are given a Wireshark communication and the goal is to find the password used by the hacker on its malicious file. When we filter the HTTP packet we can see a “mali...

Buffer Overflow From here I’m assuming that you already know a bit about ASM (mov, call, lea…). If you don’t there is a good introduction in here. So basically, the buffer overflow attack appears...

WriteUp CTF HackDay : J’ai perdu le flag We start this challenge with a johnnix folder and a zip johnHacked.zip as shown below. The zip is protected by a password. So we go to the johnnix folde...

WriteUp CTF HackDay : J’ai perdu le flag On commence ce challenge avec un dossier johnnix et un zip johnHacked.zip comme montré ci-dessous. Le zip est protégé par un mot de passe. On se rend do...

Rencontres Nous devons ici faire face à certain filtres. Le SELECT et les espaces ne sont pas autorisé par exemple. En faisant un peut de recherche on tombe sur le site de PortSwigger. Nous trouv...

Informations Il nous est suggéré d’utiliser ici les UNION. On cherche donc le nombre de champs pour l’injection et on trouve : On cherche le nom de la base de données avec schema_name de la tab...