pwntools-write-ups
A collection of Capture The Flag (CTF) write-ups that demonstrate the use of pwntools for solving various cybersecurity challenges. The repository contains solutions to CTF problems from multiple competitions and years, including events like DEFCON qualifiers, PlaidCTF, and other security competitions. Each write-up showcases how pwntools can be utilized to exploit vulnerabilities and solve binary exploitation challenges. The collection includes challenges from various years and competitions: - 2013 PlaidCTF challenges - 2014 DEFCON qualifiers problems - 2014 GITS Teaser events - Multiple other CTF competitions The write-ups serve as educational resources for learning binary exploitation techniques and understanding how pwntools can be applied in practical scenarios. Some challenges may have dependencies on specific libraries like libc++1 and require the master branch of pwntools from GitHub. The repository includes test functionality, though some services may have limitations such as inability to be re-run immediately due to socket reuse restrictions. Certain challenges are noted as non-functional, including specific problems from 2013 PCTF and 2014 DEFCON qualifiers.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A collection of detailed CTF challenge writeups organized by category, providing explanations of problems and their solutions for educational purposes.
A community-maintained archive of CTF write-ups and source files from cybersecurity competitions held in 2013.
A centralized repository containing CTF source files and write-ups from 2015 competitions, providing accessible documentation and solutions for cybersecurity challenges.
A comprehensive guide for computer security incident handling, providing guidelines for establishing incident response capabilities and handling incidents efficiently and effectively.
A repository containing writeups and solutions from various Capture The Flag cybersecurity competitions spanning from 2015 to 2021.
A comprehensive cheat sheet for using JtR (John the Ripper), a password cracking tool.
A new approach to computer network defense that leverages knowledge about advanced persistent threats, using a kill chain model to describe phases of intrusions and map adversary kill chain indicators to defender courses of action.
A quick reference guide for the VI editor, covering commands and modes.
A collaborative repository of CTF write-ups and source files from 2014 competitions that allows community contributions to address scattered documentation issues.
PINNED
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.