A writeup of the challenges from Pwnable.kr, a systems exploitation war game, that I've done

Using buffer overflows, breakpoints and guesswork, I worked my way through a series of reverse engineering challenges.

A final reflection for CS373 Software Engineering

A weekly update for my software engineering class where I discuss: Nameservers, becoming an Information & Systems Security Society officer and our group presentations for our software engineering class

A weekly update for my software engineering class where I discuss: Implementing crosscore communications for my multi-core operating systems class.

The resources on the page are for educational purposes only. Challenges Capture the Flags CTF Time Cryptology crypto pals Exploitation hack the box pwnable.kr exploit.education Reverse Engineering microcorruption Flare On Crackmes.one Penetration Testing Hack The Box Resources Pwn Binary Exploitation Live Overflow Reverse Engineering Malware Analysis open rce malware unicorn malware tech Youtubers Live Overflow Ghidra Ninja IppSec IppSec focuses primarily on penetration testing Reverse engineering GodBolt …

Mango was the first Hack The Box I got user-level access to! Here's how I used nmap, tls certificates, and NoSql injection to get access to the box.

1. What did you do this past week? This past week I worked on implementing search, filtering and sorting on the model pages for our software engineering project. It took me a while to combine a bunch of fetch requests. Our API didn’t support sorting or filtering so I decided to implement these features on the client side. This meant that the site had to request all the pages of results in order to filter them. …

1. What did you do this past week? This past week I worked on implementing searching on our software engineering site. It took me a surprisingly long time to implement unit testing for React components. One of the issues with unit testing was that we make use of the Router react-router component which expects a browser history, which isn’t present in the testing environment. I ended up wrapping the test component with the MemoryRouter component which emulates the browser’s history. …

Elasticsearch isn't configured for HTTPS requests out of the box. Here are the config changes necessary to make https queries and how to query Elasticsearch from React