Skip to content

Category: Security

Published May 17, 2016

Google CTF 2016 – Spotted Quoll Writeup

First write-up from: Google CTF 2016 Competition link can be found here: https://spotted-quoll.ctfcompetition.com/ After turning on dev tools in Chrome I began to look around the simple site. The major thing which stuck out was that by clicking on the ‘Admin’ link I would land on the following page: https://spotted-quoll.ctfcompetition.com/#err=user_not_found  …

Continue readingGoogle CTF 2016 – Spotted Quoll Writeup
Leave a Comment
Don’t DROWN! – Avoiding the TLS/SSL vulnerability
Published March 4, 2016

Don’t DROWN! – Avoiding the TLS/SSL vulnerability

What is it? DROWN (Decrypting RSA with Obsolete and Weakened eNcryption) is a recently discovered (March 2016) vulnerability in SSL/TLS which can allow attackers to break the security SSL and TLS are supposed to provide and acquire the newly decrypted data. The flaw exploits servers which still support encryption services…

Continue readingDon’t DROWN! – Avoiding the TLS/SSL vulnerability
Leave a Comment