Posted on mar. 02 juin 2020 in CTF • Tagged with hack, learn, ctf, tjctf, 2020, web, xss, filtered, escape, js, encode
solves : 72
Points: 100
Written by avz92
See if you can get the flag from the admin at this website!
Hint: The admin can see something you can't. Check the page source.
After create a new account, we can create a text to share it with everyone.
It's like …
Posted on mar. 02 juin 2020 in CTF • Tagged with hack, learn, ctf, tjctf, 2020, web, php, lfi, rfi
solves : 257
Points: 70
Written by saisree
So I've been developing this really cool site where you can read text files! It's still in beta mode, though, so there's only six files you can read.
Hint: The flag is in one directory somewhere on the server, all …Posted on mar. 02 juin 2020 in CTF • Tagged with hack, learn, ctf, tjctf, 2020, web, js, crackstation, md5
solves : 674
Points: 30
Written by saisree
Could you login into this very secure site? Best of luck!
We have a standard login page with some JS code inside to perform the login:
We have a hash inside: c2a094f7d35f2299b414b6a1b3bd595a. Let's try it with crackstation. It detects it as MD5 and …
Posted on mar. 02 juin 2020 in CTF • Tagged with hack, learn, ctf, tjctf, 2020, web, jwt, rs256, hs256, key
solves : 78
Points: 80
Written by nthistle
It seems like the TJCTF organizers are secretly running an underground virtual horse racing platform! They call it 'Moar Horse 4'... See if you can get a flag from it!
Source
Since we have the source, let's take a loot into …
Posted on mar. 02 juin 2020 in CTF • Tagged with hack, learn, ctf, tjctf, 2020, web, js, crackstation, md5
solves : 505
Points: 35
Written by jpes707
Are you a true fan of Alaska's most famous governor? Visit the Sarah Palin fanpage.
So, we need to have the all likes but can't get more that 4 on the website. We can detect as spam. The source code doesn't help …
Posted on mar. 02 juin 2020 in CTF • Tagged with hack, learn, ctf, tjctf, 2020, web, sqli, blind, sqlmap
solves : 204
Points: 20
Written by saisree
It seems your login bypass skills are now famous! One of my friends has given you a challenge: figure out his password on this site. He's told me that his username is admin, and that his password is made of up only …Posted on jeu. 06 février 2020 in CTF • Tagged with hack, learn, ctf, hacktm, quals, 2020, web, python, thread, concurrence
solves : 70
My Bank
280 Points
Who's got my money?
Please abstain from brute-forcing files.
http://178.128.175.6:50090/
Author: nytr0gen
We got a URL who is a login page.
We can put any login to the field and we get redirect to the default page. This …
Posted on sam. 25 janvier 2020 in CTF • Tagged with hack, learn, ctf, rtcp, rice, tea, cat, panda, web, js, reverse, cookie
solves : 138
Point : 765
Jess doesn't get enough sleep, since he's such a gamer so in this challenge, you'll be staying up with him until 4:00 in the morning :D on a Monday! Let's go, gamers!
The webpage show a JS countdown until when the …
Posted on sam. 25 janvier 2020 in CTF • Tagged with hack, learn, ctf, rtcp, rice, tea, cat, panda, web, reverse, game, defold
solves : 38
Point : 250
https://jef1056.github.io/
It's a web game using Defold like the mythic Space Invaders. You can try to beat the first level but, even with this achivement, the flag will not appear.
Let's try to inspect all the files downloaded during the game loading :
You …
Posted on dim. 29 décembre 2019 in CTF • Tagged with hack, learn, ctf, santhacklaus, web, osint, crack
Hey !
I just find this new blog post that gives some very good advices on how to protect your life by using a strong password.
http://46.30.204.44:1000/
Il s'agit d'un blog d'un certain witchehh prodiguant des conseils sur la création de mot de passes.
On peut …