Skip to content

Instantly share code, notes, and snippets.

View betrisey's full-sized avatar

Samuel Bétrisey betrisey

46 followers · 69 following
View GitHub Profile
@betrisey
betrisey / keybase.md
Created March 14, 2015 22:56

Keybase proof

I hereby claim:

  • I am betrisey on github.
  • I am samb (https://keybase.io/samb) on keybase.
  • I have a public key whose fingerprint is 6B83 B6AA B348 C278 46E1 7F50 BDFD 1E3E 86C6 369F

To claim this, I am signing this object:

@betrisey
betrisey / gist:9d857da15e4a9374b9bf
Created May 11, 2015 18:37
Verifying I am +samninja on my passcard. https://onename.com/samninja
@betrisey
betrisey / keybase.md
Created March 9, 2017 23:04

Keybase proof

I hereby claim:

  • I am betrisey on github.
  • I am samb (https://keybase.io/samb) on keybase.
  • I have a public key whose fingerprint is 807D 9CDB DBA2 10C7 BD67 5505 909D 8097 2D5E AD4E

To claim this, I am signing this object:

@betrisey
betrisey / itunes-festival.sh
Last active December 10, 2020 01:27
iTunes Festival - Download recordings

  1. Get your cookie. Either proxy your iPhone/iPod/iPad and record the cookie using the proxy server of your choice or capture the request using your AP with Wireshark or similar

  2. Make sure you have a cookie like token=expires=1409714101~access=/auth/*~md5=2d4466c1...

  3. Find the day of the artist you want to load (e.g. 01, 02, 10, 25) Find the artist on iTunes https://itunes.apple.com/us/artist/*deadmau5*/id*78011850* and take its ID and its name. Add an underscore between these two. (e.g. 78011850_deadmau5)

  4. Launch the script: sh itunes-festival.sh cookie day id_artist

    sh itunes-festival.sh "token=expires=1409714101~access=/auth/*~md5=2d4466c1" 01 78011850_deadmau5

  5. Have fun.

@betrisey
betrisey / coinflip-solve.py
Created July 27, 2022 12:11
Coinflip solution MCH2022 CTF
from pwn import *
while True:
io = connect('coinflip.ctf.zone', 80)
io.send("""POST /flip HTTP/1.1
Host: coinflip.ctf.zone
Content-Length: 5
Content-Type: text/plain
Connection: close
@betrisey
betrisey / Sharer-World.md
Created September 10, 2023 15:04
Sharer's World - HITCON CTF 2023

Sharer World

SXG

Extension=( 1.3.6.1.4.1.11129.2.1.22 )
====Critical=NO
====Data=05 00

The certificate used by the challenge has an extra extension allowing SXG

@betrisey
betrisey / writeup.md
Last active December 4, 2023 19:57
Ghost - BlazCTF

Ghost - BlazCTF

6/2/2024 "Memory cannot be defined, yet it defines mankind."

Author: Robert Chen (OtterSec) @notdeghost

EVM,RE / 13 solves / 274 pts

Challenge contract

@betrisey
betrisey / insomail.md
Last active April 29, 2024 08:38
Writeup of InsoMail - Insomni'hack 2024

InsoMail - Insomni'hack 2024

Description

Introducing InsoMail 🔐, the most secure encrypted email service on the internet. It uses the latest technologies to ensure that your emails are safe from hackers.

To guarantee your privacy, no cookies are used, and the server doesn't store your private key [1].

Secure email: https://secure.email.insomnihack.ch Webmail: https://web.email.insomnihack.ch Source: insomail.zip