Skip to content

Latest commit

 

History

History
162 lines (119 loc) · 11 KB

README.md

File metadata and controls

162 lines (119 loc) · 11 KB

My CTF Challenges

A repository for CTF challenges I created. Have fun playing CTFs 😎

ToC

SECCON CTF 13 Finals

Links: CTFtime (International) / CTFtime (Domestic)

Challenge Category Solved / 9
(International)		 Solved / 9
(Domestic)		 Difficulty Keywords
purexss web 4 1 ★★ XSS, ISO-2022-JP
twisty-xss web 3 0 ★★★ XSS, puzzle
witchnote web 1 0 ★★★ XSS, disk cache
pp3 jail 0 0 ★★★ jsf**k, prototype pollution

ASIS CTF Finals 2024

Links: CTFtime

Challenge Category Solved Difficulty Writeup Keywords
fetch-box web, misc 19 ★★ link fetch, sandbox
fire-leak web 1 ★★★★ link XSLeak, ReDoS

AlpacaHack Round 7 (Web)

An individual competition in 6 hours.

Links: CTFtime / Website

Challenge Category Solved Writeup Keywords
Treasure Hunt web 71 link (ja) URL encoding
minimal-waf web 4 link (ja) XSS
disconnection web 5 TODO browser behavior
disconnection-revenge web 1 TODO browser behavior

SECCON CTF 13 Quals

Links: CTFtime

Challenge Category Solved Difficulty Keywords Co-Author
Trillion Bank web 84 MySQL N/A
self-ssrf web 23 ★★ URL parser, Bun N/A
double-parser web 17 ★★ HTML parser, XSS N/A
pp4 jail 41 jsf**k, prototype pollution N/A
1linepyjail jail 15 ★★ pyjail N/A
Go to Jail jail 6 ★★★ Go, polyglot, code golf N/A
voidbox jail 3 ★★★★★ JavaScript, sandbox escape Satoooon

IERAE CTF 2024

Links: CTFtime

Challenge Category Solved Difficulty Keywords
5 misc 8 Bun
Leak! Leak! Leak! web 3 ★★★★ XS-Leak, CSP

AlpacaHack Round 2 (Web)

An individual competition in 6 hours.

Links: CTFtime / Website

Challenge Category Solved Writeup Keywords
Simple Login web 84 link (ja) SQL injection
Pico Note 1 web 10 link (ja) CSP bypass, JavaScript
CaaS web 13 link (ja) RCE, Perl
Pico Note 2 web 3 link (ja) Import Maps

SECCON CTF 2023 Finals

Links: CTFtime (International) / CTFtime (Domestic)

Challenge Category Solved / 12
(International)		 Solved / 12
(Domestic)		 Difficulty Writeup Keywords
babywaf web 8 4 link WAF bypass
cgi-2023 web 5 2 ★★★ link XS-Leak, subresource integrity
LemonMD web 2 1 ★★★ link Fresh, Islands Architecture
DOMLeakify web 1 0 ★★★★★ link CSS injection on style attributes
whitespace.js misc 2 2 ★★ link JavaScript sandbox

IERAE DAYS CTF 2023

An onsite local event: Thu, 7 Dec. 2023

Links: Repository

Challenge Category Keywords
simple-proxy web request target

SECCON CTF 2023 Quals

Links: CTFtime

Challenge Category Solved / 653 Difficulty Writeup Keywords
blink web 14 ★★ link DOM clobbering
eeeeejs web 12 ★★★ link ejs, XSS puzzle
hidden-note web 1 ★★★★★ link XS-Leak, unstable sort
crabox sandbox 53 link Rust sandbox
node-ppjail sandbox 5 ★★★ link prototype pollution
deno-ppjail sandbox 2 ★★★★ link prototype pollution

SECCON CTF 2022 Finals

Links: CTFtime (International) / CTFtime (Domestic)

Challenge Category Solved / 10
(International)		 Solved / 12
(Domestic)		 Difficulty Writeup Keywords
babybox web 6 4 link prototype pollution
easylfi2 web 10 8 link LFI, curl
MaaS web 3 1 ★★★ link newline normalization, CSP bypass
light-note web 0 0 ★★★ link DOM clobbering, Sanitizer API
dark-note web 0 0 ★★★★ link time-based oracle

SECCON CTF 2022 Quals

Links: CTFtime

Challenge Category Solved / 726 Difficulty Writeup Keywords
skipinx web 102 link query parser
easylfi web 62 link LFI, curl
bffcalc web 41 ★★ link HTTP request splitting
piyosay web 19 ★★★ link Trusted Types, DOMPurify, RegExp
denobox web 1 ★★★★ link prototype pollution, import maps
spanote web 1 ★★★★★ link Chrome, disk cache, bfcache
latexipy misc 8 ★★ link pyjail, magic comment
txtchecker misc 23 ★★ link magic file, ReDoS
noiseccon misc 22 ★★ link Perlin noise

SECCON CTF 2021

Links: CTFtime

Challenge Category Solved / 506 Difficulty Writeup Keywords
Sequence as a Service 1 web 20 ★★ link JavaScript sandbox
Sequence as a Service 2 web 19 link JavaScript sandbox
Cookie Spinner web 7 ★★★ link DOM clobbering
x-note web 3 ★★★★ link XS-Search