Skip to content

Category: Security

Google CTF 2016 – Spotted Quoll Writeup

First write-up from: Google CTF 2016 Competition link can be found here: https://spotted-quoll.ctfcompetition.com/ After turning on dev tools in Chrome I began to look around the simple site. The major thing which stuck out was that by clicking on the ‘Admin’ link I would land on the following page:¬†https://spotted-quoll.ctfcompetition.com/#err=user_not_found  …

Leave a Comment

Don’t DROWN! – Avoiding the TLS/SSL vulnerability

What is it? DROWN (Decrypting RSA with Obsolete and Weakened eNcryption) is a recently discovered (March 2016) vulnerability in SSL/TLS which can allow attackers to break the security SSL and TLS are supposed to provide and acquire the newly decrypted data. The flaw exploits servers which still support encryption services…

Leave a Comment