Posts: 4
Threads: 0
Joined: Mar 2024
if anyone wants to trade for the given flags message me ,
Unbreakable, STOP DROP ROLL, Character
FakeBoost , Pursue the Tracks , Urgent , an unusual sight , It has Begun
Commander Flag , KORP Terminal , TimeKORP , Labyrinth Linguist, Locktalk
LootStash, PackedAway , BoxCutter
Iced TEA, Primary Knowledge , Dynastic, MakeShift
Writiing on the wall, Tutorial
Lucky Faucet
BunnyPass, maze
Posts: 7
Threads: 0
Joined: Dec 2023
Someone has a hint for Crypto - Partial Tenacity ? This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Scraping | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.
Posts: 10
Threads: 0
Joined: Mar 2024
Mar 13, 2024, 07:42 PM
(This post was last modified: Mar 13, 2024, 07:43 PM by kenadamsiu.)
Please help with Data Siege, I am struggling for 5 hr I found only 3rd part
Did you use XSS attack in Labyrinth Linguist?
Did you use XSS attack in Labyrinth Linguist?
Posts: 8
Threads: 0
Joined: Dec 2023
(Mar 13, 2024, 07:42 PM)kenadamsiu Wrote: Please help with Data Siege, I am struggling for 5 hr I found only 3rd part
Did you use XSS attack in Labyrinth Linguist?
Take a look at the exe, you'll find what you need to derive a key and IV which you can use to decrypt the TCP stream.
Posts: 10
Threads: 0
Joined: Mar 2024
(Mar 13, 2024, 07:43 PM)yoshihtb2 Wrote: (Mar 13, 2024, 07:42 PM)kenadamsiu Wrote: Please help with Data Siege, I am struggling for 5 hr I found only 3rd part
Did you use XSS attack in Labyrinth Linguist?
Take a look at the exe, you'll find what you need to derive a key and IV which you can use to decrypt the TCP stream.
I am not able to export or look at the exe file, how did you manage to do it ?
Posts: 5
Threads: 0
Joined: Jan 2024
How to do SerialFlow?
Found XSS reflection, but not sure how to abuse and if that is the way forward.
Posts: 8
Threads: 0
Joined: Dec 2023
(Mar 13, 2024, 07:45 PM)kenadamsiu Wrote: (Mar 13, 2024, 07:43 PM)yoshihtb2 Wrote: (Mar 13, 2024, 07:42 PM)kenadamsiu Wrote: Please help with Data Siege, I am struggling for 5 hr I found only 3rd part
Did you use XSS attack in Labyrinth Linguist?
Take a look at the exe, you'll find what you need to derive a key and IV which you can use to decrypt the TCP stream.
I am not able to export or look at the exe file, how did you manage to do it ?
I used dotPeek to decompile the exe.
Posts: 37
Threads: 1
Joined: Mar 2024
(Mar 12, 2024, 03:51 PM)Drym Wrote: (Mar 12, 2024, 03:39 PM)nnrrkk Wrote: (Mar 12, 2024, 03:24 PM)Drym Wrote: Yo, anyone can tell me why this payload :
Phreaks(Phreaks.__init__.__globals__.__getitem__("__builtins__").eval("__import__(\\"subprocess\\").getoutput(\\"ls\\")"), "", 1)
Does not pass the checks in Were Pickle Phreaks ? I can't seem to wrap my head around why this does not work, even locally.
"__builtins__" module is not allowed in the unpickle function.
Hmm yeah I noticed, but I have some payloads that were able to go through using builtins though. They didn't achieve much, but still didn't return the "Invalid Phreaks member". I'll look into why that is, thanks.
Have u found the payload?
Posts: 7
Threads: 0
Joined: Mar 2024
Mar 13, 2024, 08:41 PM
(This post was last modified: Mar 13, 2024, 08:43 PM by testing777.)
(Mar 11, 2024, 03:13 AM)ahmedsh Wrote: any hint on
Forensics
1-Game Invitation
2- Data Siege
3-Phreaky
Idk if you got something for Phreaky yet, maybe I'm late. But analyse the SMTP/IMF packets, they each contain a base64 string to be converted as well as their own unique password.
The filetype is mentioned, the total number of parts are 15.
It's to do with distribution of files in separate parts.
py7zr will come in handy. If you just want the flag, reply to this or pm me I'll give it to you, but it's better to try and fuck around a bit
Any help with blunt guys?
Posts: 10
Threads: 0
Joined: Mar 2024
Any hints on Labyrinth Linguist? Used millions XSS and nothing
|
