writeup

• 2025-03-17 Insomni'hack 2025 - revengery

  // forge ECDSA signature to takeower the ownership of a Solidity contract

• 2024-11-26 CTFZone 2024 Final — registry

  // exploiting layer naming in Docker container registry

• 2024-09-13 BRICS+ CTF 2024 — villa & mirage & excess

  // writeup for all web challenges from BRICS+ CTF

• 2024-09-12 BRICS+ CTF 2024 — dolly

  // reverse engineering of some tricky binary

• 2024-09-05 BRICS+ CTF 2024 — gollum

  // pwning the Golang application with a compiler bug

• 2024-06-21 CVE-2024-5629 writeup

  // out-of-bounds read in Python binary package

• 2024-03-04 CVE-2024-21502 writeup

  // memory corruption in Python binary package

• 2024-02-10 Gold CTF 2024 — digger

  // reversing crypto binary to achieve slide attack primitive

• 2023-04-26 RuCTF Finals 2023 — stalker

  // exploiting race condition in MariaDB primary keys setup

• 2023-04-25 RuCTF Finals 2023 — solaris

  // attacking matrix-based cryptosystem using Coppersmith method

• 2022-12-11 Russian CTF Cup 2022 — babyrsa

  // collect impossible remainders and use CRT to retrieve RSA factor

• 2022-09-08 FAUST CTF 2022 — Notes from the Future

  // predicting random output to forge proof of knowledge scheme

• 2022-07-31 Aero CTF 2022 — balloon

  // memory corruption in CPython exploiting madvise()

• 2022-05-22 RuCTF 2022 — ambulance

  // exploiting arbitrary free in CPython library to gain RCE

• 2022-02-06 STAY ~/ 2022 — virush

  // write a ROP chain on the stack of /usr/bin/dd using the of=/proc/self/mem

• 2021-06-14 Leto CTF 2021 — confident-confinement

  // escape a python jail with decorators and type annotations

• 2021-05-15 m0leCon CTF 2021 Teaser — Obscurity

  // attacking FCSR state to recover keystream

• 2021-05-15 m0leCon CTF 2021 Teaser — Giant log

  // calculate discrete log using p-adics

• 2021-05-15 m0leCon CTF 2021 Teaser — Alternating key exchange

  // using meet-in-the-middle approach to attack non-commutative scheme

• 2020-12-26 RuCTF 2020 — notary

  // detect the low-entropy PRNG and attack the KMOV cryptosystem

• 2020-11-30 Russian CTF Cup 2020 — security

  // provide a native engine to openssl using an injection to command arguments

• 2020-11-19 Russian CTF Cup 2020 — caller

  // abuse single system call primitive to gain RCE in CPython

• 2020-09-09 CONFidence CTF 2020 Finals — ElGamal

  // mapping to the additive group using invalid curve attack

• 2020-07-28 CyBRICS CTF 2020 — Incident

  // exploiting buffer overflow to leak a hidden backdoor

• 2020-07-20 FAUST CTF 2020 — Cartography

  // arbitrary write using malloc() primitive

• 2020-05-24 m0leCon CTF 2020 Teaser — King Exchange

  // recovering group structure of a circle to calculate discrete log