PicoCTF 2017 – No Eyes

This was a pretty fun little challenge. The blurb we get about the challenge is: The website isn’t really me much, but you can still get the admin password, right? Trying to break the web app using single quotes to login revealed the actual SQL query. Using this I tried the query ‘ or pass like ‘%’ … Read morePicoCTF 2017 – No Eyes

WACTF – Matt can see what you did to Francis, and raises you one (250)

At the WACTF event, I unfortunately didn’t get to complete this challenge within the time allowed. As I knew the author of the challenge, I asked if it would be alright if I could get the binary to try and knock this one off the list, as only 2 teams completed this one during the … Read moreWACTF – Matt can see what you did to Francis, and raises you one (250)