Niftic's blog

[NorthSec CTF 2023] - Desk Surveillance Publisher

1 June 2023·10 mins

CTF writeups ROP autopwn angr

Cameras are down. Not the endpoint installing their firmwares. Open socket here. Could analyze some outdated firmwares.

[RITSEC CTF 2023] - Steg as a Service

6 April 2023·10 mins

CTF writeups ROP BinDiff

Can you try exploiting our shady copy of steghide so that we can convince our managers to update the binary?

Deep dive into FSOP

13 March 2023·16 mins

Research FSOP angr

File Stream Oriented Programming (FSOP) is a binary exploitation technique that uses GLIBC file stream structures to gain code execution from memory corruption.

[Real World CTF 5th] - tinyvm

16 January 2023·15 mins

CTF writeups VM FSOP

This is a CTF challenge called TinyVM. The author is very lazy, not wanting to write a description of the challenge, and the code is directly cloned from https://github[.]com/jakogut/tinyvm.

[SecurityFest CTF 2022] - krupt

4 June 2022·10 mins

CTF writeups kernel syscalls

The key to r00t is ZcZQndRX or was it DE7NUC6l? Wait, it was r2JLegUE. Eh, you’ll figure it out.

Niftic

Addicted to PWN

Recent