[13 Apr 2014 | No Comment | ]
The blog’s heart’s beating is normal now

So yeah the ZOMGWTFAPOCALYPTIC bug affected this blog too.

I had a very busy couple of weeks and traveled to Cairo to attend OWASP cairo chapter launch meeting. so i had no time or brains to fix it that time but i disabled SSL.
Today i updated the openssl and libssl to the latest version in the repo and BAZINGA! i am no longer affected.

Reissued the (self-signed) certificates and put the VirtualHost back to apache’s config and restarted. and no more leaking (I hope)

Read the full story »

Miscellaneous »

[30 May 2016 | No Comment | ]

Hello. This is a solution to another problem i faced.
I had this:
<%= link_to ‘Delete’,url_for(action: :delete,id: thing.id),method: :delete, data: {confirm: “Are you sure?”} %>
This should prompt a javascript confirmation with “OK” and “Cancel” buttons. but it won’t work and just goes to the action URL page.
The solution should be to add:
<%= javascript_include_tag :application %>
to your application.html.erb
But if you are on windows you will get this error:
Completed 500 Internal Server Error in 56ms
ActionView::Template::Error (TypeError: Object doesn’t support this property or method
(in C:/path/file.js.coffee)):
There is something wrong with the ‘coffee-script-source’ gem on windows
So the …

Miscellaneous »

[31 Jan 2016 | Enter your password to view comments. | ]

There is no excerpt because this is a protected post.

Video games »

[28 Sep 2015 | No Comment | ]

Bulletstorm is a 2011 first-person shooter video game made by Polish developer People Can Fly and the American company Epic Games, and is published by Electronic Arts for the PlayStation 3, Xbox 360 and Microsoft Windows.
SkillShots AKA – A thousand way to skin a cat:
Bulletstorm enables (Or rather encourage) you to kill enemies in super creative ways.
Examples: Split a guy in two with a shotgun “Topless”.
Using the Drill gun to drill a guy to the ground and make him spin “Breakdancing”.
Using the sniper rifle, fire at an enemy …

Tutorials »

[5 Sep 2015 | No Comment | ]

Hello Internet.
So i was trying to install a new Steam folder on a removable NTFS partition and it gave me the error.
“New Steam library folder must be on a filesystem mounted with execute permissions”

The solution was to mount it like this:
sudo mount -t ntfs -o fmask=0022,dmask=0000,uid=1000,gid=1000 /dev/sdc1 /media/USER/Drive
Of course you would have to change “sdc1”, “USER”, and “Drive”
Source of solution: http://askubuntu.com/a/18053


[25 Jul 2015 | 4 Comments | ]

Hello, world.
So I was in this CTF competition and my teammate (@aboul3la) found a command injection vulnerability in one of web application challenges.
If you input `>file.txt` the server creates a file called file.txt.
We wanted to write a PHP shell to the server (echo “<?PHP CODE>” > file.php)
But the thing is, the challenge had a filter that won’t allow you to have a space in the input (Error: Not valid URL)
So we tried around and my first thought was to use some decoding mechanism to decrypt “space” from it’s hex equivalent …