I completed a fun CSP bypass recently and wanted to share my solution.
Using SerializationDumper for Java Deserialization and CTFs
I recently found out about SerializationDumper, and I wanted to share an example usage.
Filed under Security Not Included
Reverse Electron Apps – EverSecMeet at BSidesRDU
During the BSidesRDU CTF, there was a challenge to reverse Electron apps.
Filed under Security Not Included
BSides RDU EverSec CTF – Challenge Solutions
Now that it's over, I wanted to share my write-ups for the BSides RDU EverSec CTF.
Filed under Security Not Included
FaradaySec CTF – JavaScript Encryption Plus Trolling
I tried to compete in the FaradaySec CTF recently and wanted to share the one flag that I captured.
Filed under Security Not Included
Jira Username Enumeration (CVE-2019-8446)
I got to perform some Jira username enumeration on a recent engagement, and I wanted to share the write-up on it.
Filed under Security Not Included
BSidesRDU 2019 – Security Dumpster Fire
Yesterday (18 October) was BSidesRDU 2019, so it's time for another conference blog post!
Filed under Security Not Included
BofA Forensics and Volatility for the Win (DerbyCon 9)
My last solution during the CTF was the BofA forensics challenge.
Filed under Security Not Included
BofA CTF Part 2 – Climbing the Scoreboard (DerbyCon 9)
Another week, and another batch of write-ups from the BofA CTF!
Filed under Security Not Included
Bank of America CTF – Challenge Coins @ DerbyCon 9
I took part in the Bank of America CTF during the last DerbyCon, and I wanted to share some of my write-ups.
Filed under Security Not Included