IPFire < 2.19 Core Update 101 suffers from Remote Command Execution vulnerability (RCE - reverse-shell) and Cross-Site Scripting (XSS).

After months (years?) without analyzing any Linux routers / firewalls distributions like pfSense, m0n0wall, IPCop, Read more

The generic error page of the Red Hat customer portal suffers from a Cross-Site Scripting vulnerability to steal users credential in plaintext.

As part of my personal projects, as during my professional activity, it is not uncommon that I sign on RedHat sites to download resources (or find solutions to more or less twisted bugs.

Read more

Write-up of the challenge “Cryptography – Toil33t” of Nuit du Hack 2016 CTF qualifications.

The weekend of 04/01/2016 is pre-qualification for the Nuit du Hack 2016 as a Jeopardy CTF. Having had the opportunity and the time to participate with some colleagues and friends, here’s a write-up resolution of the challenges which we could participate.

• Category:.
  Read more

Write-up of the challenge "Steganalysis - Stegano Sound" of Nuit du Hack 2016 CTF qualifications.

The weekend of 04/01/2016 is pre-qualification for the Nuit du Hack 2016 as a Jeopardy CTF. Having had the opportunity and the time to participate with some colleagues and friends, here's a write-up resolution of the challenges which we.

Read more

Write-up of the challenge “WebApp - Find Me I'm Famous” of Nuit du Hack 2016 CTF qualifications.