BroncoCTF: Lovely Login
Executive Summary Lovely Login presents a minimal "Secure Database" login form backed by an Express API at /login . The obvious attack surface — NoSQL…
Tech news from the best sources
Executive Summary Lovely Login presents a minimal "Secure Database" login form backed by an Express API at /login . The obvious attack surface — NoSQL…
Executive Summary Super Secure Server presents a login form that appears to check a username and password, but does nothing of the sort. The page's ow…
Challenge We're given two files, file1.txt and file2.txt , each containing what looks like a long, random blob of letters, digits, and symbols — one c…
Category: Forensics / Misc Difficulty: Easy Flag: bronco{3ve4yth1ng_1s_aw3s0me} Challenge We're given lego_bricks_challenge.zip , a 63 KB archive. $ z…
Challenge We're given secret.txt , a single line of comma-separated tuples wrapped in what looks like braces and underscores: (4, 17), (2, 16), (2, 15…
Category: Pwn / Binary Exploitation Difficulty: Medium Flag: bronco{1m_th3_b35t_PWN3r_1n_th3_wh0l3_w1d3_w0r1d} Challenge We're given proper.zip contai…
Summary pscheme.py implements a toy "encryption" scheme that encodes each 4-byte chunk of the flag as extra roots multiplied directly into a public po…
Executive Summary FireFlow is a Linux machine running a fictional "Task Force Nightfall" intelligence platform. The web application exposes a Langflow…
Executive Summary JobTwo is a Windows Server 2022 machine that simulates a realistic corporate phishing and privilege escalation scenario. The attack …
Introduction The CRTA exam by CyberWarFare Labs is a fully hands-on, black-box red team assessment. There are no multiple-choice questions. You either…
Сегодня у нас на обзоре занимательная машинка от Vulnhub: DC-1 от автора DCAU. По ощущениям предназначена для уровня Beginner/Intermediate, хотя сам а…