Araisantai Archive Pages

https://araisantai.github.io/Araisantai Archive PagesFinal year computer science student at IPB University currently learning anything IT related. CTF Competition enjoyer with a team of 3, specialized in web exploitation and digital forensics. Interested in Cyber Security, especially in Web Security. Selftaught, persistent, and eager to learn more. 2024-05-13T16:36:04+07:00 araisantai https://araisantai.github.io/ Jekyll © 2024 araisantai /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png Find IT CTF 20242024-05-06T00:00:00+07:00 2024-05-13T16:35:26+07:00 https://araisantai.github.io/posts/Find-IT-CTF-2024/ araisantai

Find IT CTF 2024 Tags: national Status: Not started pwned: 4 Web kue Description Aku baru saja membuat website yang menggunakan cookies berbasis JWT menggunakan chatgpt, tapi ada yang salah sepertinya ketika mengenkripsi JWT-nya. Solution We’re give a source code so its a whitebox challenge, lets start by checking app.js. const jwt = require("jsonwebtoken"); const express = requ...

Ugra CTF2024-02-12T00:00:00+07:00 2024-02-15T13:22:52+07:00 https://araisantai.github.io/posts/Ugra-CTF/ araisantai

Ugra CTF Tags: international Status: Not started pwned: 4 Web Wicket Gate Description url: [https://wicketgate.q.2024.ugractf.ru/pf6cubh8bv090t5y](https://wicketgate.q.2024.ugractf.ru/pf6cubh8bv090t5y) Solution We’re given a website service, The website is presented in Russian, causing some functions to not be fully understood by me. However, my main focus was on the login appl...

Protergo CTF2024-02-08T00:00:00+07:00 2024-02-15T13:22:52+07:00 https://araisantai.github.io/posts/Protergo-CTF/ araisantai

Protergo CTF 2024 Protergo CTF, 7 Days CTF Challenges by Protergo Tags: national Status: Done pwned: 3 Jumper url : tokyo.ctf.protergo.party:10002 Analyze Given a web service containing a simple login page. By performing a simple SQL injection bypass, we successfully bypassed the login using the payload ' or 1=1 -- -. This redirected us to the dashboard. From here, I performed ...

Square CTF2023-11-12T00:00:00+07:00 2024-02-12T20:18:59+07:00 https://araisantai.github.io/posts/Square-CTF/ araisantai

Tags: international Status: Done pwned: 3 Be the admin we need to become admin by changing the cookie admin biasa ganti cookie A nya gede Just go around path traversal POST /accept HTTP/1.1 Host: 184.72.87.9:8013 Content-Length: 282 Cache-Control: max-age=0 Upgrade-Insecure-Requests: 1 Origin: http://184.72.87.9:8013 Content-Type: application/x-www-form-urlencoded User-Agent...