code hacking, zen coding

ebCTF 2013 – Web400 (crypto/aes/cbc/hmac) Write-Up

ebCTF 2013 – Web400 (crypto/aes/cbc/hmac) Write-Up

This Web challenge was part of the ebCTF competition. It’s actually more crypto than web. We get a simple web site driving the famous cowsay binary: define(’MY_AES_IV’, CENSORED); define(’MY_AES_KEY’, CENSORED); define(’MY_HMAC_KEY’, CENSORED); define("FLAG","CENSORED"); function aes($data, $encrypt) {   $aes = mcrypt_module_open(MCRYPT_RIJNDAEL_128, ”, MCRYPT_MODE_CBC, ”);   mcrypt_generic_init($aes, MY_AES_KEY, MY_AES_IV);   return […]

Share

HackYou CTF – Web 300 – RNG of Ultimate Security Writeup

HackYou CTF – Web 300 – RNG of Ultimate Security Writeup

Web challenge. We have the “source code” and we know the location of the flag: <!– can’t touch this: http://securerng.misteryou.ru/flag.txt.gz –> <!– can touch this: http://securerng.misteryou.ru/index.php.txt –> The web page is simple form to generate pseudo-random numbers. Here is the form:     <form method=’POST’>       Enter the […]

Share