[convid CTF] labot pwn writeup

#pwn, #writeups,#ctf, #convid

Published on 14 June 2020 at 10:18PM, by f4d3

Hola!

El pasado fin de semana, participamos en un CTF organizado por l4t1nhtb y convid.cl, conferencia Chilena que estuvo entretenida, buenas charlas y buenos desafíos en el CTF ❤️ !
Mucho amor al team que la rompieron 24/7 cntr0llz ❤️ !

Summary

Este challenge fue un challenge de la categoría pwn, llamado labot. Su descripción es bien breve, nos da una dirección de discord (que sirve para invitar a un bot), y un respectivo binario.

Ver más

[cyberhack CTF] null entropy writeup

#ctf, #crypto, #writeups, #cyberhack

Published on 12 June 2020 at 02:53PM, by f4d3

Hi there!

The last week we played as a team on a CTF organized by @cyberhack, very fun ctf <3
Here's a writeup of a crypto chall. named null entropy, which is focused on AES CBC encryption.

check :D !

Ver más

[Ruckus Wireless] Authenticated Stored XSS Vulnerability in Ruckus ZoneFlex R310 (CVE-2020-7234)

#ruckus,#wireless,#research,#zoneflex,#xss

Published on 08 June 2020 at 06:02PM, by s4mnez

The platform used for the administration of Ruckus ZoneFlex R310 access points, version 104.0.0.0.1347, is critically vulnerable to Stored Cross-Site scripting issue.

test

Ver más

[UHP Networks] Multiple Reflected XSS in UHP routers (CVE-2020-7235 - CVE-2020-7236)

#research, #vsat,#satellite,#cve-2020-7236,#cve-2020-7235,#router

Published on 08 June 2020 at 06:00PM, by s4mnez

UHP Networks is a company dedicated to devolping, manufacturing and marketing of VSAT satellite networking equipment. Its main products include various UHP universal satellite routers, where the main application of these devices is broadband, SCADA and multimedia connectivity in large VSAT networks using HTS (High Throughput Satellite).

test

Ver más

[Multitech] Authenticated Remote Code Execution in MultiConnect Conduit devices

#cve-2020-7594,#rce,#research,#iot

Published on 08 June 2020 at 05:54PM, by s4mnez

Multitech Conduit is a configurable, scalable cellular communications gateway for industrial IoT applications, and using a web platform function it's possible to execute remote code due to poor sanitization of a parameter.

test

Ver más