https://blog.s4yhii.com/categories/cyber-apocalypse-ctf/ Recent content in Cyber Apocalypse CTF on s4yhii's blog https://blog.s4yhii.com/%3Clink%20or%20path%20of%20image%20for%20opengraph,%20twitter-cards%3E https://blog.s4yhii.com/%3Clink%20or%20path%20of%20image%20for%20opengraph,%20twitter-cards%3E Hugo -- 0.155.3 en-us Tue, 25 Mar 2025 08:00:00 -0500 https://blog.s4yhii.com/posts/cyberapocalypse-ctf2025-web/ Tue, 25 Mar 2025 08:00:00 -0500 https://blog.s4yhii.com/posts/cyberapocalypse-ctf2025-web/ <p>I participated as a member of team <strong>CibersecUNI</strong>. This time i managed to solve all 6/6 challenges in the web category.</p> <h1 id="whispers-of-the-moonbeam">Whispers of the Moonbeam</h1> <p>Observando las funciones, nos dan una pista que se puede inyectar comandos con ;.</p> <p><img alt="alt text" loading="lazy" src="https://raw.githubusercontent.com/s4yhii/s4yhii.github.io/master/assets/images/CA2025/image-1.png"></p> <p>Usando el comando gossip, puedo listar los archivos, se visualiza el archivo flag.txt, y con un simple ; puedo concatenar el comando cat para leer la flag.</p> <div class="highlight"><pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">gossip<span class="p">;</span> cat flag.txt </span></span></code></pre></div><p>Obtenemos la flag. 🎉 HTB{Sh4d0w_3x3cut10n_1n_Th3_M00nb34m_T4v3rn_78cb9b70be3bf077e608865b967b5ab1}</p> https://blog.s4yhii.com/posts/2024-03-14-cyberapocalypse-ctf2024-web/ Thu, 14 Mar 2024 08:00:00 -0500 https://blog.s4yhii.com/posts/2024-03-14-cyberapocalypse-ctf2024-web/ <p>I participated as a member of team <strong>CibersecUNI</strong>. In the web category we solved 6/9 challenges as a team. In this writeup I will go through the ones that I have solved:</p> <ul> <li><a href="#testimonial">Testimonial</a></li> <li><a href="#labyrinth-linguist">Labyrinth Linguist</a></li> <li><a href="#timekorp">TimeKORP</a></li> <li><a href="#locktalk">Locktalk</a></li> </ul> <h1 id="testimonial">Testimonial</h1> <p>As the leader of the Revivalists you are determined to take down the KORP, you and the best of your faction&rsquo;s hackers have set out to deface the official KORP website to send them a message that the revolution is closing in.</p> https://blog.s4yhii.com/posts/2022-05-10-cross-site-scripting-xss/ Wed, 18 May 2022 12:00:00 -0400 https://blog.s4yhii.com/posts/2022-05-10-cross-site-scripting-xss/ <p>Cross-site scripting known as XSS is a web vulnerability in which malicious scripts are injected int benign and trusted websites. XSS occur when an attacker send malicious code in any user input fields in a browser to a different end-user.</p> <h2 id="mechanisms">Mechanisms</h2> <p>In an XSS attack the attacker inject script in HTML code so you&rsquo;ll have to know javascript and HTML syntax, wbe uses scripts to control client-side application logic and make the website interactive, for example this script generates <em>Hello!</em> pop-up on the web page:</p> https://blog.s4yhii.com/posts/2022-05-19-htb-cyber-apocalypse-ctf-web-writeups/ Wed, 18 May 2022 12:00:00 -0400 https://blog.s4yhii.com/posts/2022-05-19-htb-cyber-apocalypse-ctf-web-writeups/ <h1 id="kryptos-support">Kryptos Support</h1> <p>Checking the web page of this challenge gives a form to send an issue and an admin will review that issue. <img loading="lazy" src="https://raw.githubusercontent.com/s4yhii/s4yhii.github.io/master/assets/images/htb/ctf/ctf1.jpg"></p> <p>So its interesting, maybe the admin will click in that issue and we can inject some kind of payload, like an stored xss, these approach is similar to the bankrobber box in htb.</p> <p>So we can craft the payload to steal the cookie of the admin or the user who will review out ticket.</p>