Note: I noticed that some of the steps are redundant. I will update this post from time to time to remove the redundant parts. Requirements The steps should be similar (if not identical) on different…
First screw up as a sysadmin: disk destroyer
Who doesn’t like a good tale of a system administrator screwing up production, right? Well, this is the story of how I screwed up our SolusVM KVM Slave due to a silly mistake. The company…
How to fix “apt-key is deprecated. Manage keyring files in trusted.gpg.d instead”
There are many ways to install a software in Linux such as building from source, downloading a deb package, and installing from a package manager. I like the last approach the most due to it’s…
Read more of How to fix “apt-key is deprecated. Manage keyring files in trusted.gpg.d instead”
Having Fun With Misconfigured Virtual Hosts
I had too much time on my hand a few weeks ago, so I decided to play around with Shodan to find some juicy stuff. Specifically, exposed directory listing that contain bash history, environment variables…
My Linux Journey – Backing up files from VirtualBox VM
I recently bought a new (used) PC. After a few months, I decided to install a new SSD and put Linux inside it. So far so good, but I faced an issue – I wanted…
Read more of My Linux Journey – Backing up files from VirtualBox VM
Laravel Sail: Your Composer dependencies require a PHP version “>= 8.0.0”. You are running 7.4.x
I was trying to create a new Laravel project when this error appeared in my terminal. The PHP process inside the container keeps restarting because of this error. How to reproduce? $ curl -s “https://laravel.build/example-app?with=mysql,redis,mailhog”…
I got an invitation to Google FooBar!
I’ve been polishing my Java skills on https://codingbat.com/ for the past day when this black box appeared in my search result. Fascinating! They gave me an invitation even when I cannot rattle off the methods…
Wargames.my 2020 write-up: misc – defuse the bomb
First, list the content of the zip file $ unzip -vl bomb.zip Notice that one of the CRC32 value is different. We need to extract that single file. $ unzip bomb.zip 7.zip Next, repeat the…
Read more of Wargames.my 2020 write-up: misc – defuse the bomb
Wargames.my 2020 write-up: cryptography (all)
1. Babyrsa Unfortunately, I don’t know how the math in this challenge works. I used RsaCtfTool to solve this challenge python RsaCtfTool.py -n 22306351450360835278685008577095637579379519735569993605372382025943065943172195653447501298828968514687284277198607097065634258314264314927371277442275519637994628244973451713428529246432421492448316055762649494875064883616150678248746788780631659395141126436598713108296958809877050508719429858288542409206141714853617337747692468415137300472541599402472407915882162354129011035959781898989018189851240885134793158675541708464792531211982651421335486888814185904694334748742140907479724360382947060649121854484350812707303750753924042963642230136006371631037322400368914718351407008699556959068979201259584736419897 -e 65537 –uncipher 17602993744775645244932047693736399644507438713421090470524415766527158933476062715547401853988887892859852712288174327133373629909097820395435401533676533608936213580668532621040243037931761022394679651927262885744960614529599325651735809067636612587147031269202667870888506169666258327004309669721112194725267847462929621419423182917279393538900064854853776147192666718145232846523208281394755265917943312113266402772744899076664734081819237068101883336427745375537437389752990601021671228882409327526733171270971339644452600369079961452292583316600829728068432427992039322905022470729764699358872105298576585603770 2. Long Crypto Guessing This challenge uses…
Wargames.my 2020 write-up: Forensics (all)
1. Introduction After downloading lordkiske-server.ova, use the sha256sum command to get the hash. The flag: wgmy{the_sha256_hash} To make the following steps easier, I decided to extract the lordkiske-server.ova and mount the VMDK image inside it…