ctf

Hack In The Box Amsterdam 2012 – Preview

Published May 17, 2012 |

In less than a week from now, Hack In The Box Amsterdam will open its 2012 edition. The conference will take place in the Okura Hotel, and features 3 days of training, 2 days of quad-track talks, a CTF and HackWEEKDAY, a 12 hour hackathon hosted alongside the actual confererence. The line-up looks promising…
Continue reading →

Posted in Cons and Seminars | Tagged amsterdam, amsterdam-caro, corelan, corlean-be, ctf, fp, hack in the box, hack-in-a-box, hack-in-the-box-amsterdam, hack-in-the-box-amsterdam-2012, hack-in-the-box-okura, hackweekday, hitb, hitb-2012, hitb-2012-amsterdam, hitb-amsterdam-2012, mona-manual, okura, scom-create-monitor-file-existence, steven-seeley-conference

Reversing 101 – Solving a protection scheme

Published May 14, 2012 |

By Corelan Team (fancy)

In this post, we’ll look at an application reversing challenge from HTS (hackthissite.org) resembling a real-life protection scheme.
Put simple, the program creates a key for your username, and compares it to the one you enter.
The goal of the HTS challenge is to create a key generator, but I just want to demonstrate how to retrieve the password.
Continue reading →

Posted in Malware and Reversing | Tagged active-directory-schema-update-log, app17win-zip, breakpoint, challenge, corelan, corelan-be, corelan-be-ollydbg, corelen-be, crack, ctf, hackthissite, HTS, immunity debugger, keygen, ollydbg-tutorial-command-alt-f9, password, reverse engineering, reversing, reversing-challenge-2012, wargame

HITB 2011 CTF – Reversing Vectored Exception Handling (VEH)

Published April 3, 2011 |

By Corelan Team (fancy)

Today we will have a look at a CTF binary from HITB pre qualifications CTF 2011. This is an interesting binary to reverse because Vectored Exception Handling (VEH) was used in the challenge…
Continue reading →

Posted in 001_Security, Malware and Reversing, Uncategorized | Tagged -exploit-handler-part-6-1, 2011-hitb, corelan, ctf, ctf-hitb, ctf-reversing-unsolved-binaries, debug, exception, fancy, handler, hitb, hitb-2011, hitb-2011-ctf, hitb-2011-schedule, reversing-ctf, vectored, vectored-exception-handling, vectored-exception-handling-exploiting, vectoredexceptionhandle, veh

Honeynet Workshop 2011

Published March 30, 2011 |

By Corelan Team (ekse)

March 21th I was in Paris for the annual Honeynet Workshop. For the first time this year there was a conference day accessible to the general public. Moreover, I didn’t have to pay the registration fee since I successfully completed one of the Honeynet Forensics challenges. The day was split in 4 sessions and had talks covering the Honeynet projects, malware, and ethical and legal considerations of tracking botnets and eventual take-downs.
Continue reading →

Posted in 001_Security, Cons and Seminars, Malware and Reversing, Uncategorized | Tagged 2011, angeloa dell'area, bayesian, bytecode, capture-hpc, christian seifert, ctf, david watson, dionanea, ekse, form grabbing, georg wicherski, glastopf, google, honeyclient, honeynet, honeypot, lance james, libscizzle, lukas rist, malicous, malware, multicap, nepenthes, oxff, packet, phoneyc, python, qemu, reassemble, sandbox, sebek, sniffing, spidermonkey, spyeye, streams, summer of code, tillman werner, vmware, wireshark, workshop, zeus

Codegate 2011 CTF – Binary200 – Anti Debugging Techniques Explained

Published March 14, 2011 |

By Corelan Team (fancy)

Aloha,

Again I stumbled upon a nice reverse-me, binary200 from the Codegate 2011 CTF.
And again there are some really interesting anti-debugging tricks implemented, so I decided to produce another video.
Continue reading →

Posted in 001_Security, Malware and Reversing, Video | Tagged anti, anti debugging, binary, binary200, bpexp, breakpoint, codegate, corelan, ctf, debugger, fancy, int 2d, ntglobalflags, ntqueryinformationprocess, peb, reverse engineering, reversing, seh, seoul, tls callback

Anti-debugging tricks revealed – Defcon CTF Qualifications 2009: Bin300 Analysis

Published February 27, 2011 |

By Corelan Team (fancy)

A while ago I stumbled upon an awesome write-up of a very nice CTF challenge created by sapheads: http://hackerschool.org/DefconCTF/17/B300.html I love cartoons, and I love reversing, so I decided to play a little bit with that binary (b300.exe) which was a lot of fun. Because some interesting anti-debugging tricks were implemented into the binary…
Continue reading →

Posted in 001_Security, Malware and Reversing, Video | Tagged a-new-anti-debug-trick-2011, analysis, anti debugging, anti-anti-debugging-tricks, anti-debug-tools-2011, anti-debug-tricks, b300.exe, binary, corelan, ctf, defcon, fancy, immunity-debugger-antidebug, index-of-tools-defcon, infosec-corelan, mona-py-defcon-movie, new-anti-debugging-trick-2011, offsec-defcon-videos, reversing, writing-debugger-ctf

How strong is your fu 2 – the report

Published June 23, 2010 |

By Peter Van Eeckhoutte (corelanc0d3r)

For anyone interested, this is _sinn3r’s and tecr0c’s writeup of the steps they took to own 4 out of the 5 machines in last weekend’s HSIYF – Hacking for Charity cyber hacking challenge …
Continue reading →

Posted in 001_Security | Tagged -hack, challenge, corelan-how-srong-if-your-fu, ctf, cyber, cyber-hacker, hacking, hacking-challenge, hacking-ninja, how-strong-is-you-fu, how-strong-is-your-foo, how-strong-is-your-fu, how-strong-is-your-fu-offensive-security, how-strong-is-your-fu2, hsiyf, hsiyf-report, offensive, offensive security, offsec, report

How strong is your fu : Hacking for charity

Published June 22, 2010 |

By Peter Van Eeckhoutte (corelanc0d3r)

Last weekend, Offensive Security hosted their second cyber hacking challenge, called “HSIYF For Charity”. The goal of this challenge was to raise money for Johnny Long’s “Hackers for Charity” project, a charity organization that tries to feed children, build computer labs etc in East Africa. Each challenger had to donate $49 to be able to […]

Posted in 001_Security | Tagged corelan-hacking, corelan-how-strong-is-your-foo, corelan-strong, ctf, cyber-hackers, hacking, hfc, how-strong-is-my-foo-corelan, how-strong-you-fu-pdf, hsiyf, june-22-2010-hacked, offensive security, offensive-security-wallpaper, offsec, pastie-sh-hackers-for-charity, pentesting-training-class-online-private, successfullyowned, tournament, try-harder-offensive-security, vpn-hacking

Offensive Security Hacking Tournament – How strong was my fu ?

Published May 10, 2010 |

By Peter Van Eeckhoutte (corelanc0d3r)

Hi, Over the last 2 days my friends from Corelan Team and I participated in a Hacking Tournament, organized by Offensive Security. The primary goals of the tournament are : be the first one to grab “secret” information from a machine and post it to the Tournament Control Panel. document your findings and submit them […]

Posted in 001_Security, Exploits | Tagged --, 001_Security, 192-168-6-66, capture, ctf, flag, hacking, hacklab-vpn, n00bfilter, nc-backshell-invalid-connection, nox-of-xr-offensive-security-team, offensive security, offensive-security-labs-exercises, offsec-lab, offsec-lab-firewall, pentestexploitsexploitdbplatformslinuxremote340-c-imap, screenos-import-pfx, smtx-video-ghost-challenge-write-up, surgemail-3-8k4-4-d-download, tournament

Corelan Cybersecurity Research

:: Knowledge is not an object, it's a flow ::

Hack In The Box Amsterdam 2012 – Preview

Reversing 101 – Solving a protection scheme

HITB 2011 CTF – Reversing Vectored Exception Handling (VEH)

Honeynet Workshop 2011

Codegate 2011 CTF – Binary200 – Anti Debugging Techniques Explained

Anti-debugging tricks revealed – Defcon CTF Qualifications 2009: Bin300 Analysis

How strong is your fu 2 – the report

How strong is your fu : Hacking for charity

Offensive Security Hacking Tournament – How strong was my fu ?

Corelan Training

Donate

Corelan Team Merchandise

Corelan on Slack

Actions

Categories

Hi there!

We have good news for you!