[13 Apr 2014 | No Comment | ]
The blog’s heart’s beating is normal now

So yeah the ZOMGWTFAPOCALYPTIC bug affected this blog too.

I had a very busy couple of weeks and traveled to Cairo to attend OWASP cairo chapter launch meeting. so i had no time or brains to fix it that time but i disabled SSL.
Today i updated the openssl and libssl to the latest version in the repo and BAZINGA! i am no longer affected.

Reissued the (self-signed) certificates and put the VirtualHost back to apache’s config and restarted. and no more leaking (I hope)

Read the full story »

Video games »

[28 Sep 2015 | No Comment | ]

Bulletstorm is a 2011 first-person shooter video game made by Polish developer People Can Fly and the American company Epic Games, and is published by Electronic Arts for the PlayStation 3, Xbox 360 and Microsoft Windows.
SkillShots AKA – A thousand way to skin a cat:
Bulletstorm enables (Or rather encourage) you to kill enemies in super creative ways.
Examples: Split a guy in two with a shotgun “Topless”.
Using the Drill gun to drill a guy to the ground and make him spin “Breakdancing”.
Using the sniper rifle, fire at an enemy …

Tutorials »

[5 Sep 2015 | No Comment | ]

Hello Internet.
So i was trying to install a new Steam folder on a removable NTFS partition and it gave me the error.
“New Steam library folder must be on a filesystem mounted with execute permissions”

The solution was to mount it like this:
sudo mount -t ntfs -o fmask=0022,dmask=0000,uid=1000,gid=1000 /dev/sdc1 /media/USER/Drive
Of course you would have to change “sdc1”, “USER”, and “Drive”
Source of solution: http://askubuntu.com/a/18053


[25 Jul 2015 | No Comment | ]

Hello, world.
So I was in this CTF competition and my teammate (@aboul3la) found a command injection vulnerability in one of web application challenges.
If you input `>file.txt` the server creates a file called file.txt.
We wanted to write a PHP shell to the server (echo “<?PHP CODE>” > file.php)
But the thing is, the challenge had a filter that won’t allow you to have a space in the input (Error: Not valid URL)
So we tried around and my first thought was to use some decoding mechanism to decrypt “space” from it’s hex equivalent …

Tutorials »

[14 Mar 2015 | No Comment | ]

On Linux Mint XFCE.
Rarely when i double click the VLC video playing, it won’t go fully fullscreen – it occupies the whole screen except of the task bar menu.
The solution is a no-brainer actually. The VLC windows is maxmized. So simple click the maximize button again and you can now go full screen.


[24 Jan 2015 | No Comment | ]

The last word (crypto200)
Description: Decrypt this
And attachment is supplied: challenge.txt
It looks hex’ish? so i try hex decoding with no luck.
Then i noticed it had too many zeros? so i tried to change every character that’s not 0 to 1 to try for binary.
So as usual i run to python: cry200.py
That decodes to:
bui xdit mk lpr rsem bj wvqgsj-av-plawn bj Oasvpwssf awtavxw INESS
And from the look of it it looks like some kind of substitution cipher:
I tried rot-n, with no luck.
Also i tried simple Caesar without luck.
Then i tried Vigenère cipher …