2024-09-12 - Safe RabbitMQ Upgrade: Ubuntu 22.04 to 24.04 Guide

To upgrade RabbitMQ and avoid issues when upgrading Ubuntu, follow these steps: Stop services, back up the database, run an upgrade process using Docker for RabbitMQ versions 3.9, 3.10, and 3.11, uninstall RabbitMQ without purging, perform a release upgrade, and reinstall RabbitMQ. More details in Bug #2074309 on Launchpad.

2017-11-06 - HITCON CTF 2017 Quals

[su_box title=”(Crypto, Pwn) Secret FS”] Can you read the flag.txt? nc 13.112.220.64 9999 secretfs-c0119e98a895df1f361fb369bf9c98bf [/su_box] [su_expand title=”solution”] Loading the binary with IDA provides us: View the code on Gist. Connecting to the service: $ nc 13.112.220.64 9999 N: 104176920808444707134363566789644103637046138703732812593856489450966164422700871083271001476798525601830292237723021138499045286505397665962198734248957208942814238767855960753797521549548788530151996440657784060736603682776712677518537991291065233449586393186516770855075158900503486179189610821817031409223 e: 3 File list: flag.txt key.txt run.sh secret secretfile.txt Input filename(txt) : At first i tried […]

2017-10-19 - hack.lu 2017

[su_box title=”(Misc, Web) DnSoSecure – by kunte_, utnubu -100 (+ 100)”] We found this Flag-Submission-Service that is used by the OTHER-SIDE. Try to get it to submit the flag to you![/su_box] [su_expand title=”solution – Misc, Web”] View source give us the source of this challenge: <!– <a href=”/static/source.zip”>Source</a> –> Index file validating the input text and do the […]

2017-07-12 - Vue single file component and typescript

Webpack configuration, module.rules: { test: /\.ts$/, include: projectRoot, exclude: /node_modules/, use: [ { loader: ‘ts-loader’, options: { appendTsSuffixTo: [/\.vue$/], }, }, ], }, { test: /\.tsx$/, include: projectRoot, exclude: /node_modules/, use: [ _.babelLoader, { loader: ‘ts-loader’, options: { appendTsSuffixTo: [/\.vue$/], }, }, ], }, Intellij Idea language injection for typescript block: Example: <template> <keep-alive> <router-view></router-view> […]

2016-03-17 - 0CTF 2016

[su_spoiler open=”yes” title=”rand_2 – 2 pts” icon=”arrow”] [su_quote]Do you believe it, can you recieve it? <?php include(‘config.php’); session_start(); if($_SESSION[‘time’] && time() – $_SESSION[‘time’] > 60) { session_destroy(); die(‘timeout’); } else { $_SESSION[‘time’] = time(); } echo rand(); if (isset($_GET[‘go’])) { $_SESSION[‘rand’] = array(); $i = 5; $d = ”; while($i–){ $r = (string)rand(); $_SESSION[‘rand’][] = […]

2016-03-07 - BKPCTF 2016

[su_accordion][su_spoiler title=”hmac_crc – 5 points” style=”fancy” open=”yes”] [su_quote]We’re trying a new mac here at BKP—HMAC-CRC. The hmac (with our key) of “zupe zecret” is ‘0xa57d43a032feb286’.  What’s the hmac of “BKPCTF”? https://s3.amazonaws.com/bostonkeyparty/2016/0c7433675c3c555afb77271d6a549bf5d941d2ab #!/usr/bin/env python def to_bits(length, N): return [int(i) for i in bin(N)[2:].zfill(length)] def from_bits(N): return int(“”.join(str(i) for i in N), 2) CRC_POLY = to_bits(65, (2**64) […]

2015-11-07 - Một bài toán tính tổng

Link bài toán: http://vn.spoj.com/problems/C11CAL/ [su_accordion] [su_spoiler title=”Solution 0.00s”] Đọc bài này, cái mình nghĩ đến đầu tiên là auto sinh lời giải (vì k nhỏ quá), chạy Maple giải cho toàn bộ k dưới 50, ta có solution 0.00s: View the code on Gist. [/su_spoiler] [su_spoiler title=”Solution nhân ma trận”] Sau đó do cắn rứt […]

2015-09-28 - [Writeup] TrendMicro 2015

I joined this CTF quite late, but luckily there’s still enough time to solve some interesting problems. Trend Micro CTF 2015 – Programming 400 [su_spoiler title=”Show problem description” icon=”arrow”] You are trying to sneak into a network, and and impersonate target computer. Here, you would connect to computers connected via network, and ‘impersonate the computer by exchanging IP […]

2015-04-20 - [Writeup] Plaid CTF 2015 – radhos

Category: Web Points: 250 Description: A web scale key value store, for your enjoyment! Should be working Running at 52.6.62.188 port 9009 64-bit collision approach I didn’t solve this problem within the contest time, but it’s here finally 🙂 First, let’s take a quick look on provided script: View the code on Gist. It’s a […]

2015-03-16 - [Writeup] CodeGate CTF 2015 – Quals – good-crypto

Category: Programming Points: 500 Description: Binary : http://binary.grayhash.com/bd24de5d345c0d1da274fcd7d9a2b244/file.xz We recently intercepted some kind of encrypted traffic, can you help us recover the password? Update: Due to a crappy javascript programmer there’s one line of code missing, but I’m sure you can figure out which one Write-up The provided file is a compressed pcap file on […]