-
HTB Cyber Apocalypse 2022 – Golden Persistence (Forensic)
@h1riluk This challenge is categorized under the Forensic section. This challenge gives us a zip file that contains NTUSER.DAT. You can download the zip file here. So what is NTUSER.DAT? NTUSER.DAT is a windows generated file that contains the information of the user account settings and customizations. The data in DAT files can be plain…
-
Crypto – Public Key with Close Gap p and q Prime Number Vulnerability
Not long ago, I came across a crypto challenge about the generation of private and public keys using p and q that is too close. The use of p and q prime numbers with a gap that is too close turns out vulnerable because both prime values can be brute-forced. Using n (modulus) that is…
-
HTB Cyber Apocalypse 2022 – Intergalactic Post (Web)
@h1riluk Challenge This challenge is categorized under Web challenge. The source code for this challenge was provided. You can download the source code here (web_intergalactic_post). You will be directed to subscribe page when you access the web. You will have to provide an email in the input. When the button “subscribe me to the truth”…
-
HTB Cyber Apocalypse 2022 – Blinker Fluids (Web)
@h1riluk Challenge This challenge is categorized under Web challenge. This web allows you to create an invoice and convert it to PDF. The source code to this challenge is provided, so you can try it at localhost first before actually exploiting the docker instance. One of the dependencies used in this web app is md-to-pdf.…
-
HTB Cyber Apocalypse 2022 – Amidst Us (Web)
@h1riluk Challenge This challenge is categorized under Web challenge. The web page simulates a dark room and the mouse pointer as a flashlight. If you move the mouse pointer around, you can find an image upload mechanism around the UFO block. The image upload will replace the default among us sprite images. There is nothing…