https://starrylord.ch This is the place for sharing my activities, writeups, articles, check regularly for more! Fri, 08 Jul 2022 15:25:00 GMT Mon, 15 Dec 2025 21:08:08 GMT https://starrylord.ch/blog/nahamcon2023web This is what I managed to solve in the last 8 hours, when I could finally login. Sun, 18 Jun 2023 00:00:00 GMT https://starrylord.ch/blog/nahamcon2023web https://starrylord.ch/blog/reversing_wp_malware I did some incident response, OSINT, PHP and Javascript deobfuscating and reversing on a malware that was dropped at a friend's WordPress server. Read the full story of what happened here! Mon, 22 May 2023 00:00:00 GMT https://starrylord.ch/blog/reversing_wp_malware https://starrylord.ch/blog/htb-cyberapocalypse-2023-bashic-ransomware This year I have managed to solve more challenges than ever before with TheWhiteCircle. But the forensics category, with the bashic ransomware challenge, actually made me want to share the write-up here! Thu, 23 Mar 2023 00:00:00 GMT https://starrylord.ch/blog/htb-cyberapocalypse-2023-bashic-ransomware https://starrylord.ch/blog/first-job A story of beginings, failure, and unconciously opening the door for the apt ⚡⚡⚡ Mon, 25 Jul 2022 00:00:00 GMT https://starrylord.ch/blog/first-job https://starrylord.ch/ Read a bit about my motivations, ethics, and beginings. Sun, 10 Jul 2022 00:00:00 GMT https://starrylord.ch/ https://starrylord.ch/privacy A detailed explanation of how I handle your data. Sun, 10 Jul 2022 00:00:00 GMT https://starrylord.ch/privacy https://starrylord.ch/blog/scamctf2022 This is the story of how I got scammed into participating in a CTF competition for someone else. I hope this article can help people not get scammed the same way or even help me find the competition I was unintentionally solving. I got contacted by a freshly created account on discord, 10 days old or so. The person first lightly asked for help in solving challenges,... Sat, 30 Apr 2022 00:00:00 GMT https://starrylord.ch/blog/scamctf2022 https://starrylord.ch/blog/hackthebox/timing LOCAL FILE INCLUSION LFI can be found here: http://10.10.11.135/image.php?img=/etc/passwd but we are met with "hacking attempt detected" on a blank page. We can bypass the issue with the php wrapper php://filter as follows: http://10.10.11.135/image.php?img=php://filter/convert.base64-encode/resource=/etc/passwd decode results as base64 and find home path for the user ... Sat, 02 Apr 2022 00:00:00 GMT https://starrylord.ch/blog/hackthebox/timing https://starrylord.ch/blog/1337upctf Transforming time into flags… As an OSINT challenge I started by checking the username @0pt1muspr1me on common social media platforms, and eventually found 0pt1muspr1me's Github profile. 2 repos there with a couple commits 0pt1muspr1me repository private repository Obviously that zip file is password protected, so I started by trying fcrackzip:... Tue, 29 Mar 2022 00:00:00 GMT https://starrylord.ch/blog/1337upctf https://starrylord.ch/blog/hackthebox/intelligence Medium difficulty box - https://hackthebox.com Intelligence was a medium box I solved a few months ago. It’s also technically the first machine I decided to share a write-up for, because I really enjoyed solving it. RECON nmap -A 10.10.10.248 -Pn... Thu, 02 Sep 2021 00:00:00 GMT https://starrylord.ch/blog/hackthebox/intelligence