StalkR's Blog

Last week-end was ShmooCon CTF Warmup Contest (aka Ghost in the Shellcode 2011). Three challenges, the last one being an ELF binary + host...

Recently I've been playing with gdb 7.2 and python . It extends what we can have with a great .gdbinit such as gdbinit73 . As examples,...

If you like monitoring, you might want to receive notifications at every (or only root) login, in addition to logs. /etc/profile, bashrc, ...

I recently learned a cool technique for exploiting exec race conditions. It was mentioned in a comment by Julien Tinnes about the 2009 pul...

I did not solve challenge 19 "magicwall" during the CTF - my friend Ivanlef0u ( @Ivanlef0u ) did - but since Fluxfingers ( @flu...

Challenge #9 entitled "bottle" was original and worth its 500 points. We were given the following network capture and instructed ...

Last week was hack.lu 2010 security conference as well a high quality CTF organized by fluxfingers CTF team. Again I played with Nibbles a...

The forensics challenge given at CSAW CTF weren't exactly what I was expecting, but still we achieved to solve most of it. Here are my ...

For exploit3, we were given the following instructions: Get Root. Get the key. If only I can jump over the mountain without being normal s...

A few weeks ago was held Leet More CTF where Nibbles ended 1st ! Didn't have the time to put some write-ups, but you can find some on n...