Seow Chun Yong seowcy

## 20200114-TLP-WHITE_CVE-2020-0601.md

      
              1 file
            
          
              22 forks
            
          
              25 comments
            
          
              92 stars
            
          
                SwitHak
                / 20200114-TLP-WHITE_CVE-2020-0601.md
            
            
              Last active
              February 9, 2024 14:42
            
              
                BlueTeam CheatSheet * CVE-2020-0601 * crypt32.dll | Last updated: 2020-01-21 1817 UTC
              
          
    CVE-2020-0601 AKA ChainOfFools OR CurveBall

General


Microsoft disclosed a vulnerability in their monthly Patch Tuesday referenced under CVE-2020-0601.
The vulnerability was discovered by the U.S. National Security Agency, anounced today (2020-01-14) in their press conference,  followed by a blog post and an official security advisory.
The flaw is located in the "CRYPT32.DLL" file under the C:\Windows\System32\ directory.

Vulnerability explanation


NSA description:
NSA has discovered a critical vulnerability (CVE-2020-0601) affecting Microsoft Windows® cryptographic functionality.


## wu.md

      
              1 file
            
          
              1 fork
            
          
              0 comments
            
          
              2 stars
            
          
                masthoon
                / wu.md
            
            
              Last active
              June 27, 2019 01:38
            
              
                Write up for Defcon Quals 2018
              
          
    stumbler

This challenge is a reverse / exploit composed of 5 binaries (ELF 64 bits).
We were unable to launch it locally (wrong libboost version) so, we solved the challenge directly on the remote side.
When you connect to the challenge, it send you a 32 bytes hex-encoded random string.
By looking at Stumbler binary, we found and reversed the generation and verification of the proof of work.