Quick and Dirty one-liner to perform a dictionary attack against Tomcat manager. There are many better and faster ways to perform this attack like using burp or coding it on a proper scripting language (indeed I have my own version… Continue Reading
This is a compilation of native commands that it’s very likely to find on a windows system. If you have any other way to easily download a file, please comment it and I will update the post. The main point… Continue Reading
Once we downloaded the file and decrypted it we found a zip file, so the first thing was to unzip it and get the ‘Forensic_Encyption’ file. It seems to be an PE file or at least this is what the… Continue Reading
<– Entrada incluida por DefCon.org en su colección oficial de Resolucionarios para este CTF =) –> Nos proveen del archivo b100_6817e51fa3b60f176b56 primeramente lo identificamos y vemos que es un ELF 32-bit (osea tenemos un ejecutable de linux) Al ejecutarlo vemos que nos… Continue Reading