Preface I finished Yuawn’s first class today, and I’ll take a look at the second class tomorrow. Then I didn’t write any questions today, so I accidentally got a little lazy. Keep up the good work tomorrow! #Today’s progress Yuawn’s Binary Exploitation (Pwn) - Basic #Today’s status Wake up time: 11:00 Amount of knowledge: ⭐⭐⭐ Level of fatigue: ⭐⭐ Mental state: ⭐⭐⭐⭐

Preface I went to home a few days ago and took a break from studying. When you come back, brush up on Pico’s questions to practice! I feel so tired after coming back from home XD #Today’s progress two-sum buffer overflow 1 buffer overflow 2 #Today’s status Wake up time: 14:00 Amount of knowledge: ⭐⭐ Level of fatigue: ⭐⭐⭐⭐ Mental state: ⭐⭐⭐

Preface I have been learning Pwn for a while now, and I happened to encounter a question that required me to bypass the canary and I didn’t know how to write it, so I wanted to let my knowledge of Pwn settle for a while and write some other types of questions first, and then come back and look at it after a while. Anyway, today I wrote a Cryptography question from HTB. #Today’s progress [HTB] BabyEncryption Writeup #Today’s status Wake up time: 11:00 Amount of knowledge: ⭐⭐⭐ Level of fat ...

Prologue I decided to write this to help myself to better understand the attacks in RSA or other crypto system. And if this can help you, that would be my honor! Also, all the code in this note will in Python since it’s the most used exploit script language in CTFs. Let’s start! Euclidean Algorithm Intro It’s an algorithm to calculate the GCD (Greatest Common Divisor) between 2 numbers, and in Gujarati, it’s called 輾轉相除法 BTW. Principles It’s an recursive algorithm, so every step’s output is the ...

Prologue This article is mainly intended to serve as my own cheat sheet and notes, but if it can also help you, that would be great. The content is summarized from the original document, so you can regard this article as an TL;DR version of the document per se. I will consistently update the content if I find something missing or something worth to be noted. You can also contact me to update the content. SQL Injection Types There’re 5 types of SQLi vulnerability or 5 ways that SQLMap can test a ...

0x00 Challenge Info As usual, let’s see the challenge desciption first. I missed my flag It’s a really simple description lol. Let’s directly dive into the analyzation part. 0x01 Reconnaissance Checksec ┌──(kali㉿kali)-[~/CTF/HTB/You know 0xDiablos] └─$ pwn checksec vuln [*] '/home/kali/CTF/HTB/You know 0xDiablos/vuln' Arch: i386-32-little RELRO: Partial RELRO Stack: No canary found NX: NX unknown - GNU_STACK missing PIE: No PIE (0x8048000) Stack: ...

Preface Although I was in hostel today, I still took the time to write some questions! In fact, I have always longed to write code while traveling around. I think it is a very romantic thing for me XD. (Looking forward to becoming a Digital nomad one day) #Today’s progress I wrote two questions today. He is a Room, and there are ten questions in it. They were all single BOFs, so it didn’t take much time. [THM] Pwn101 Writeup #Today’s status Wake up time: 09:00 Amount of knowledge: ⭐⭐⭐ Le ...

Preface During the day today, I will continue to watch Yuawn’s videos and practice with TryHackMe, hoping to become more familiar with the basics of Pwn! #Today’s progress Binary Exploitation (Pwn) - Basic Intro To Pwntools #Today’s status Wake up time: 09:30 Amount of knowledge: ⭐⭐⭐ Level of fatigue: ⭐⭐⭐ Mental state: ⭐⭐

Preface After I woke up today, I took a look at a Pwn question from HTB. I didn’t know how to do it, so I decided to look for Writeup. As a result, I couldn’t understand Writeup very well, and I discovered that my Pwn foundation didn’t seem to be very solid. I was just reading and doing one question at a time, so I decided to start learning from the basics first. The resource used is the course video of Yuawn boss, I will put the video below. I hope I can become stronger before the end of summer ...