YPYogesh Peelainexploitnotes.hashnode.dev·7h ago · 4 min readBroncoCTF : Unblur me WriteupChallenge A web page at https://broncoctf-unblur-me.chals.io/ presents a "Calculus Review" quiz: Solve 500 derivatives to unblur the image and unlock a secret. Progress: 0 / 500 A blurred image sits 00
YPYogesh Peelainexploitnotes.hashnode.dev·7h ago · 5 min readBroncoCTF: Lovely LoginExecutive Summary Lovely Login presents a minimal "Secure Database" login form backed by an Express API at /login. The obvious attack surface — NoSQL operator injection on username/password — turned o00
YPYogesh Peelainexploitnotes.hashnode.dev·7h ago · 2 min readBronoCTF : No Laughing MatterChallenge A single file, aha.txt, containing nothing but space-separated 8-letter "words" made up of only two characters: A and H. $ cat aha.txt AHHAAAHA AHHHAAHA AHHAHHHH AHHAHHHA AHHAAAHH AHHAHHHH A00
YPYogesh Peelainexploitnotes.hashnode.dev·7h ago · 5 min readBroncoCTF : Super Secure ServerExecutive Summary Super Secure Server presents a login form that appears to check a username and password, but does nothing of the sort. The page's own JavaScript fetches the "secret" credentials from00
YPYogesh Peelainexploitnotes.hashnode.dev·7h ago · 4 min readBroncoCTF : Spot the difference WriteupChallenge We're given two files, file1.txt and file2.txt, each containing what looks like a long, random blob of letters, digits, and symbols — one character per line. At a glance the two files look i00