arkark

LINE CTF 2024

• CTFtime: https://ctftime.org/event/2119

[web] one-time-read

• 8 solves / 305 points

Summary

arkark

osu!gaming CTF 2024

• CTFtime: https://ctftime.org/event/2165

web/profile-page-revenge

• 10 solves / 334 points
• Author: strell

1. Make a malicious profile:

arkark

bi0sCTF 2024

I solved two web challenges: required notes and required notes revenge. Although the intened solution is XS-Leak, I found RCE solution even for the revenge challenge!

• CTFtime:
  • https://ctftime.org/event/2117/
• An author solution for required notes:
  • https://gist.github.com/Ze-Pacifist/9bcd1072a62bbc5850322878b21bc8c8
  • It uses a leak technique described in https://infosec.zeyu2001.com/2023/from-xs-leaks-to-ss-leaks.

arkark

LA CTF 2024

I solved all web and some misc challenges. This gist shows my solvers for two hard web challenges: quickstyle and biscuit-of-totality.

• CTFtime: https://ctftime.org/event/2102
• Official repository: https://github.com/uclaacm/lactf-archive/tree/main/2024

web/quickstyle

• Author: r2uwu2

arkark

DiceCTF 2024 Quals

• CTFtime: https://ctftime.org/event/2217/

web/dicedicegoose

• 445 solves / 105 points

Just cheat.

arkark

ASIS CTF Finals 2023

• CTFtime: https://ctftime.org/event/1953

[web] gimme csp

• 47 solves / 96 pts

<body>

arkark

TSG CTF 2023 - misc/Functionless

• 5 solves / 365 pts
• Author: n4o847
• CTFtime: https://ctftime.org/event/2013/

My solution:

$ nc 34.84.217.62 30002

arkark

Balsn CTF 2023

• CTFtime: https://ctftime.org/event/2056/

[web] SaaS

• 10 solves / 285 solves

Who will do this?

arkark

intigriti / Challenge 0823 by huli

• Challenge URL: https://challenge-0823.intigriti.io/
• Author writeup: https://blog.huli.tw/2023/08/29/en/intigriti-0823-author-writeup/

My solution

$ python exploit.py

arkark

corCTF 2023 - web/leakynote

• 3 solves / 458 points
• Authors: Strellic, larry
• CTFtime: https://ctftime.org/event/1928/

Solution

CSP