Writeups

CodegateJunior24 - Othernote

Simple web challenge about prototype pollution in python. It was part of the Codegate quals for juniors of 2024 (I made the writeup only because it was required to move to the finals).

June 3, 2024 · leo_something
web python prototype pollution

CodegateJunior24 - Baby Heap

Heap challenge from the Codegate quals for juniors of 2024. The vulnerability was an heap overflow that enabled an attacker to gain overlapping chunks, therefore arb read and write.

June 3, 2024 · leo_something
pwn heap

CodegateJunior24 - ai_warmup

Simple AI challenge from the Codegate quals for juniors of 2024 (I made the writeup only because it was required to move to the finals).

June 3, 2024 · leo_something
ai

CodegateJunior24 - easy_reversing

Intresting python-compiled (pyc) reverse-engineering challenge from the Codegate quals for juniors of 2024.

June 3, 2024 · leo_something
rev python

OpenECSC Round 3 - Log4x86

This challenge comes from the 3rd round of openECSC 2024. The challenge was really really interesting: the exploitation tecnique involved a buffer overflow through a really short format string vulnerability.

May 25, 2024 · leo_something
pwn format string bof

LaCTF24 - Glottem

This reverse-engineering challenge was part of LaCTF 2024. What we faced was a flag checker script written in both python and javascript. Sounds fun right?

February 23, 2024 · bhackari
rev