BSidesCTF 2016 – n0m n0m… n0m

Intro n0m n0m… n0m was a 250 point forensics challenge written by myself for the BSides Canberra CTF. The event was great fun and this challenge was solved by 9% of the actively playing teams. Before we start looking at the solution, you can have a crack at most...

Offensive Security and the Playground

Who’s Offensive Security? Offensive Security are known as arguably the leading training provider in the Information Security industry today. Focusing on highly practical certifications the team are responsible for some of the most well known penetration testing...

Canberra OWASP 2014 Chapter meetings

Well folks, its been a while since we’ve had an OWASP meeting and this time we’re planning something a little different. Rather than have very interesting folks talk to you, we’re going to roll our sleeves up and get with breaking web apps. The next...

What do you do about a problem like Java?

The recent deluge of Java vulnerabilities that have been released (some patched and some exploited in the wild) has given rise to a chorus of ditching Java. I recall a similar village riot when Flash was the subject of a string of vulnerabilities. The main arguments...

Pastebin as an intelligence tool

Pastebin and its many clones have been around since 2002. During the 11 years of their evolution, we have observed the change from its original purpose of sharing of code snippets to an anonymous dead drop for hackers. The latest one being a “hacker”...