- 👋 Hi, I’m @zsy-arch
- 👀 I’m interested in Security / Binary Security / CTF .
- 🌱 I’m currently learning Reverse Engineering / Crypto / Datastructure & Algorithm .
- 💞️ I’m looking to collaborate on CTF.
zsy-arch.github.io's Introduction
zsy-arch.github.io's People
Contributors
Stargazers
Watchers
zsy-arch.github.io's Issues
BUUOJ pwn刷题记录(持续更新) | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
https://zsy-arch.github.io/2022/08/04/BUUOJ-pwn%E5%88%B7%E9%A2%98%E8%AE%B0%E5%BD%95/
Stack & ROP1TODO.... not_the_same_3dsctf_2016checksec 12345Arch: i386-32-littleRELRO: Partial RELROStack: No canary foundNX: NX enabledPIE: No PIE (0x8048000) 使用IDA打开,找到main
tags | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
Windows kernel exploit - HEVD Stack Overflow | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
https://zsy-arch.github.io/2022/10/03/Windows-kernel-exploit-HEVD-Stack-Overflow/
HEVD 环境搭建安装Visual Studio 2022、cmake、git cli,然后从https://github.com/hacksysteam/HackSysExtremeVulnerableDriver 下载源码,然后用内置的bat脚本编译即可。 栈溢出定位HEVD直接把漏洞点写在了函数名上,用IDA打开HEVD.sys文件,会直接定位到DriverEntry,用于打印调试信息和初始
ACTF2022 复现 | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
https://zsy-arch.github.io/2022/07/12/ACTF2022-%E5%A4%8D%E7%8E%B0/
dropper脱壳 & 多进程(1) 脱壳 从github.com/upx/upx上下载最新的源码编译并脱壳即可 (2) 分析无壳程序 main函数: 123456789101112131415161718192021222324252627282930313233343536373839404142434445__int64 sub_7FF6DCB19470(){ char
Writeup - ASIS CTF 2022 Quals reverse [partial] | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
https://zsy-arch.github.io/2022/10/20/Writeup-ASIS-CTF-2022-Quals-reverse-partial/?
traditionalanalysis附件是一个无壳elf64和一个flag.enc文件,猜测是要对flag.enc文件进行解密。 main函数有一个call cs:off_564C6050EB00,猜测是rust、nim之类的语言,通过搜索字符串发现有.rs可以判断是rust的程序。 直接进入到sub_564C604BFA40分析,发现这个函数汇编层面比较复杂,F5也不是很清晰。 在L
Cross compile and QEMU | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
https://zsy-arch.github.io/2021/09/30/Cross-compile-and-QEMU/
MIPSOn Linux1. 安装$ sudo apt install gcc-10-mips-linux-gnu 2. 编译Hello World!$
tags | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
tags | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
Windows驱动开发 用户层与内核层通信 | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
内核层用户层与内核层通信可以使用IoCreateDeviceSecure函数创建的设备(Device)作为中间媒介IoCreateDeviceSecure在成功情况下会通过参数返回一个DeviceObject,此时的设备还不能直接被用户层程序使用,需要为其创建一个符号链接(Symbolic Link). 创建好符号链接后可以被用户层程序使用.设备本身有自己的名字,比如\Device\mydev
CISCN 2022 华北赛后复盘 | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
reversertMaze首先打开题目发现只有一个linux脚本和bin文件. 根据脚本里的QEMU以及对bin进行file后, 可以推断是一个固件逆向之类的题目, 且架构为ARM. 12345if [ ! -f "sd.bin" ]; thendd if=/dev/zero of=sd.bin bs=1024 count=65536fiqemu-system-arm -M
ACTF2022 复现 2 | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
https://zsy-arch.github.io/2022/07/20/ACTF2022-%E5%A4%8D%E7%8E%B0-2/
kcov附件 launch.sh bzImage rootfs.cpio.gz 分析附件里的 bzImage 和 rootfs.cpio.gz 很明显是个 Linux 内核文件和Linux文件系统. 看了一下 launch.sh 的文件内容就是一个 QEMU 的启动脚本, 直接运行试试. 发现运行后可以看到kcov程序运行, 但是输出了个文件无法打开的错误就退出了, 这种情况就直接从 rootf
HWSCTF2022初赛WriteUp | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
https://zsy-arch.github.io/2022/08/01/HWSCTF2022%E5%88%9D%E8%B5%9BWriteUp/
HWS2022 WriteUpreversere1TEA变种,key为0x1234,0x2345, 0x4567, 0x6789, 直接对密文进行解密即可 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656
AES加密学习笔记 | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
https://zsy-arch.github.io/2022/10/22/AES%E5%8A%A0%E5%AF%86%E5%AD%A6%E4%B9%A0%E7%AC%94%E8%AE%B0/
AES128 分析key expansionAES128的密钥拓展是将Nk * 4字节的密钥Key拓展为(Nr + 1) * Nb * 4字节的ExpKey。ExpKey里面的数据分成了(Nr + 1)组,每一组就是用来和state相加的RoundKey。 12345678910111213141516171819202122232425262728293031323334353637383940
buuoj reverse crackMe | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
https://zsy-arch.github.io/2022/07/17/buuoj-reverse-crackMe/
crackMe附件 crackme.exe 分析IDA定位到wmain函数 123456789101112131415161718192021222324252627282930313233343536373839404142434445int wmain(){ FILE *v0; // eax FILE *v1; // eax char v3; // [esp+3h] [ebp
手动编译UPX并修改Loader | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
编译UPX源码系统环境: Ubuntu 22.04 Python 2 Gcc 11, G++ 11, Make 4.3 获取UPX源码123git clone --recursive https://github.com/upx/upx.git # --recursive 用于将lzma-sdk子模块一并获取cd upx 安装&配置必要库12sudo apt install libu
SCTF2019 babyre | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
https://zsy-arch.github.io/2022/07/24/SCTF2019-babyre/
babyre附件 babygame 分析IDA打开,定位到main函数: 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858
DASCTF2022_11月赛 | zsy的小屋 -> D0 wh4t u w4n7 t0 d0 <-
https://zsy-arch.github.io/2022/11/29/DASCTF2022-11%E6%9C%88%E8%B5%9B/
babytea这个题目用到了比较简单的TEA加密,但是使用异常处理来打乱了控制流。 分析首先是main函数: 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.