Author Archives: KALRONG

HackerOne 212 CTF Writeup

Long time everybody, I know I haven’t post in quite a lot of time but maintaining the blog in two languages takes more time that I expected I have more than a half a dozen posts half translated waiting for … Continue reading

Posted in ctf, hackerone, web, writeups | Leave a comment

Iptables for Docker in an internet exposed server

Today I have a little guide for you for those of you who want to install Docker in a server which interface is exposed to the internet. Due to the iptables rules Docker creates by default when we use the … Continue reading

Posted in docker, tutorial, wazuh | Leave a comment

Script to install Docker in Debian

Here is a little script that will install docker for you from their official repositories without many headaches. WARNING: This script was designed with new installations in mind, if you already have docker installed from the Debian repositories, uninstall it … Continue reading

Posted in docker | Leave a comment

SECCON 2016 – Vigenere Crypto (100)

Following the SECCON writeups here is a crypto challenge. We get the following challenge.   Vigenere k: ???????????? p: SECCON{???????????????????????????????????} c: LMIG}RPEDOEEWKJIQIWKJWMNDTSR}TFVUFWYOCBAJBQ k=key, p=plain, c=cipher, md5(p)=f528a6ab914c1ecf856a1d93103948fe |ABCDEFGHIJKLMNOPQRSTUVWXYZ{} -+—————————- A|ABCDEFGHIJKLMNOPQRSTUVWXYZ{} B|BCDEFGHIJKLMNOPQRSTUVWXYZ{}A C|CDEFGHIJKLMNOPQRSTUVWXYZ{}AB D|DEFGHIJKLMNOPQRSTUVWXYZ{}ABC E|EFGHIJKLMNOPQRSTUVWXYZ{}ABCD F|FGHIJKLMNOPQRSTUVWXYZ{}ABCDE G|GHIJKLMNOPQRSTUVWXYZ{}ABCDEF H|HIJKLMNOPQRSTUVWXYZ{}ABCDEFG I|IJKLMNOPQRSTUVWXYZ{}ABCDEFGH J|JKLMNOPQRSTUVWXYZ{}ABCDEFGHI K|KLMNOPQRSTUVWXYZ{}ABCDEFGHIJ L|LMNOPQRSTUVWXYZ{}ABCDEFGHIJK … Continue reading

Posted in ctf, forensic, seccon, writeups | Leave a comment

SECCON 2016 – Memory Analysis Forensic (100)

As I told you before we didn’t have too much time to participate in this CTF so this will be the last writeup I can give you of the challenges we solved. We get the following challenge: Memory Analysis Find … Continue reading

Posted in ctf, forensic, seccon, writeups | Leave a comment

SECCON 2016 – VoIP Forensic (100)

This year we have some time problems in the Shellwarp team to participate in the SECCON’s CTF (http://2016.seccon.jp/), only Patatas (team member) and me had some time to check and solve a few of them. But as we can learn from … Continue reading

Posted in ctf, forensic, seccon, writeups | Leave a comment

Basic hardening guide for Debian

Back from the Cybercamp 2016, about which I will talk you about in future post, I have decided to finish this little guide about basic hardening that I apply to my Debian installations. Probably you won’t need to apply everything … Continue reading

Posted in hardening, tools, tutorial | 3 Comments

I2P Problems with ports

While I write the post about OSSEC and after seeing that some people have problems with the ports in I2P I decided to create this little post trying to explain what are the usual problems, an anecdote and their solutions. … Continue reading

Posted in i2p | Leave a comment

Retroshare over I2P

WARNING: This post is based in my personal opinion, I’m not trying to sell anything, and I’m not related to neither of the projects in any way. It’s been a long time since I published something and it’s because I … Continue reading

Posted in i2p, retroshare | 6 Comments

Trivial over the network with Docker and Python

Ïn MundoHackerDay one of the miscellaneous challenges that we proposed was a little trivial where the players should obtain a certain number of correct answers to get the flag. This idea surged from the trivial on the Pragyan CTF where … Continue reading

Posted in docker, python, tools | Leave a comment