Blog Archives

Some thoughts on ruCTFe 2016

Turns out, I haven’t written anything here for a while. Actually, the last post was about the 2014 ruCTFe and it ended on a positive note. This post will be a little bit different, but we will get to that in a

Posted in CTF

ruCTFe 2014 Write-Up pidometer

Our team FAUST competed in the 2014 ruCTFe and finished third overall in the competition. When the CTF started, I (this happens more frequently than one might guess) decided to look a service called pidometer. The service The service was a

Posted in General

Protected: This is where we used to work

There is no excerpt because this is a protected post.

Posted in General

rwthCTF Write-up bank

Although it was a little time ago, I felt motivated to do write-up of the bank service from rwthCTF. Also, I need to clear my head to continue writing a paper, thus.. here we go! 😉 So, bank was a

Posted in CTF

Summary of our CCS paper on DOM-based XSS

Since the traffic on my server has gone up due to the fact that Sebastian linked my paper on twitter, I thought about writing a short summary of the paper as such. So, what is DOM-based XSS? In contrast to the

Posted in WebSec

myPhD in Hamburg

So, just now I’m sitting in the train back from my trip to the myPhD workshop in Hamburg. myPhD is a workshop backed by multiple IT security professors in Germany and appearantly is done more or less round-robin in each

Posted in General, PhD

ebCTF 2013 pwn300 write-up

Sadly, I only have time right now to do this write-up, thus the service is no longer online. Basically, the service is simple gopher daemon. When we first opened netcat to the daemon, we did not get a reply. Looking at

Posted in CTF, General

Retrospect on the UbiCrypt Summer School last week

Since I only started to put content to my website just now, I was thinking about starting the blog with something positive. Hence, the summer school I attended last week came to mind, so I wanted to write about that.

Posted in General, PhD