This CTF lasted only twelve hours. I focused on the pwnables, this one was worth 100 points but could’ve been way more!

John’s Shuffle was a 350 point pwnable for PoliCTF 2015. Here’s how I cracked it!

Finally, pwnables! John’s Library was worth 150 points. I was a bit rusty but I managed to grab this flag.

Hanoi As A Service was a 50 point pwnable in PoliCTF and gave me a reason to hate PROLOG.

Crack Me If You Can involved one of my least favorite things: Android APKs!

John the Dropper was an interesting 100 point challenge. I’d love to see how it was implemented!

After solving the first crypto challenge of PoliCTF 2015, I moved onto the 100 point challenge.

Exorcise was a 50 point crypto challenge for PoliCTF.

The ROP VM which I made for this exercise can be downloaded from vulnhub.com. Version 0.2 is fixed, as the home dirs had improper permissions (thanks to faleur and marky for notifying me). We’re up against the binary level0. In this case, we have the source code, which helps tremendously. Nevertheless, start by treating it as a blackbox.

I’ve been away for quite a while, and I missed most of the LegitBS CTF. There were only a few hours left when I joined Swappage. Here’s how we solved r0pbaby.