Continuing from the previous article (https://medium.com/@maulvialf/write-up-intechctf-android-challenge-1ec1b1822be0), I would share write-up about challenge IntechCTF named game. This challenge consist of few problems and had different flags on each problem. Challenge can be accessed on my challenge repository here. So here the write up. Table of Content · Problem 1 · Problem 2 ·…

This year, Politeknik Negeri Bali held an event that had a CTF competition called IntechCTF. Unfortunately, I failed to register because when I know the event from CTFTime, it was too late. However, my coworker attends the competition and share the challenge archive after the competition. Some categories are interestingly…

Here is analysis of kony frameworks based on Wreckit Reversing Quals. Challenge There provided one APK files with package name id.seclab.ctf.wreckit. APK can be downloaded here. apk APK compiled with kony framework that used packer. To get the flag, we should retrieve decrypted code. TLDR Hook LZF Native Function With Frida to…

Indonesian Aplikasi BurpSuite merupakan aplikasi yang sangat berguna dalam melakukan Penetration Testing. Didalam BurpSuite terdapat fitur Extention yang berguna apabila user ingin menambahkan fitur tambahan kedalam BurpSuite. Pengguna bisa menginstall extension yang tersedia di store yang disediakan BurpSuite ataupun membuat extension sendiri. Bahasa yang digunakan untuk mengembangkan extension di BurpSuite…