MontréHack

Archives

By date

• Hackfest CTF 2020 salt challenge (pwning), 17 March 2021
• Teacher Hotline - Challenge de NorthSec 2020, 17 February 2021
• Malware Analysis - Challenge du Hackfest 2020, 27 January 2021
• h0h0h0day Online Challenge Exchange Special, 16 December 2020
• DefCon 24 CTF Quals b3s23, 25 November 2020
• NorthSec's Leaky Data Mining, 21 October 2020
• Heaps of Fun, 16 September 2020
• Introduction to Reverse Engineering Natively-Compiled OCaml Programs, 19 August 2020
• NorthSec 2019 Giga.ctf, 22 July 2020
• NorthSec's Ruby Deserialization, 17 June 2020
• Vault pwning (exclusive), 20 May 2020
• is-h0h0h0-lation special, 29 April 2020
• HQL Injection, 18 March 2020
• Rudimentary Rust reversing, 19 February 2020
• Windows malware reversing, 15 January 2020
• h0h0h0day Party and Challenge Xchange!, 18 December 2019
• Do You Know Java?, 20 November 2019
• Windows track of the NorthSec CTF 2019, 16 October 2019
• Some Software Challenges of the NorthSec 2019 Badge, 18 September 2019
• Golang Reversing Introduction, 21 August 2019
• Anti-debugging, 17 July 2019
• Intro to Linux x86 64 shellcoding, 19 June 2019
• Breaking Real-World Crypto, 15 May 2019
• Capture-The-Flag 101, 17 April 2019
• Authentication-as-a-Service, 20 March 2019
• ROP 101, 20 February 2019
• Warp Pipes, 16 January 2019
• King of the hill CTF, 21 November 2018
• WTF.SQL, 17 October 2018
• Flags from Space from NorthSec 2018, 19 September 2018
• From the Internet to Your Laptop!, 15 August 2018
• Web and privilege escalation challenges from NorthSec 2018, 18 July 2018
• Exploiting Weaknesses of Order-Preserving Encryption, 20 June 2018
• SQL Injection, 16 May 2018
• Capture-The-Flag 101, 18 April 2018
• Hackfest/iHack 2017 Web Challenges, 21 March 2018
• Shopiflag: Web Exploitation, 21 February 2018
• Battleship Reverse Engineering, 17 January 2018
• Gentle Introduction to the NorthSec Badge, 18 December 2017
• Mini-CTF OWASP, 20 November 2017
• Windows Reverse Engineering - GoogleCTF Ascii Art, 16 October 2017
• Exploitation ARM -- Badge NorthSec, 18 September 2017
• Fuzzing with AFL and libFuzzer, 21 August 2017
• Homework, 17 July 2017
• Introduction to Heap Exploitation, 19 June 2017
• Side channel & L3 CPU cache, 15 May 2017
• NorthSec Captcha Bypass, 17 April 2017
• Back To Basics, 20 March 2017
• NES Reversing, 20 February 2017
• Malicious Network Traffic, 16 January 2017
• Malicious Documents, 19 December 2016
• Keygen, 21 November 2016
• Malware as a service, 19 September 2016
• Trivia and Rebase as a Service, 15 August 2016
• Pinghelper and BusinessCards, 18 July 2016
• Strudel Maker from NorthSec 2016, 20 June 2016
• DCIETS CS Games 2016 Qualifications Teaser, 16 May 2016
• ROP It Like It's Hot!, 18 April 2016
• Hash Length Extension attacks, 21 March 2016
• Test d'intrusion Windows, 15 February 2016
• Hackito Ergo Sum 2010 FPGA Challenge, 18 January 2016
• h0h0h0day 2015 Party!, 20 December 2015
• Hackfest 2015 CrackMe, 16 November 2015
• ECCryptolocker, 19 October 2015
• Got Malware?, 21 September 2015
• XSS for grown-ups, 17 August 2015
• Find The Key, 20 July 2015
• Access Control, 15 June 2015
• NorthSec 2015 Warm-up Party!, 18 May 2015
• Network Forensics BKP Riverside 2015, 20 April 2015
• adctf 2014 password-checker, 16 March 2015
• Android Forensics CySCA2014, 16 February 2015
• Microcorruption initiation, 19 January 2015
• Brad Oberberg (CSAW Finals 2013), 15 December 2014
• Secure webmail and lost data, 17 November 2014
• Web Get $SHELL, 20 October 2014
• NorthSec Smartcards, 15 September 2014
• Social meetup / Rencontre sociale, 18 August 2014
• NorthSec Thank You Mr ISP, 19 May 2014
• NorthSec 2014 Pre-Party!, 21 April 2014
• Boston Key Party Reverse Engineering, 17 March 2014
• Hackfest 2013 Web Challenges, 17 February 2014
• Plaid CTF 2012 Stegano, 20 January 2014
• Silkstreet (CSAW Finals), 16 December 2013
• Hackfest 2013 Retaliation, 18 November 2013
• CSAW Quals Recap, 21 October 2013
• Password Reset "Features", 16 September 2013
• Web4Kids, 19 August 2013
• Crypto-Oracle, 15 July 2013
• Unix Exploitation, 17 June 2013
• iOS Forensics and Network, 18 April 2013
• Hackfest 2012 Web/Crypto, 13 March 2013
• Hack.lu 2012 CTF binaries, 13 February 2013

By topic

Android

• Android Forensics CySCA2014, 16 February 2015

Arm

• Some Software Challenges of the NorthSec 2019 Badge, 18 September 2019
• Gentle Introduction to the NorthSec Badge, 18 December 2017
• Exploitation ARM -- Badge NorthSec, 18 September 2017

Bkp

• Network Forensics BKP Riverside 2015, 20 April 2015

Code-review

• NorthSec 2019 Giga.ctf, 22 July 2020

Crackme

• Anti-debugging, 17 July 2019
• Capture-The-Flag 101, 17 April 2019
• Warp Pipes, 16 January 2019
• Battleship Reverse Engineering, 17 January 2018
• NES Reversing, 20 February 2017
• Keygen, 21 November 2016
• DCIETS CS Games 2016 Qualifications Teaser, 16 May 2016
• Hackfest 2015 CrackMe, 16 November 2015
• Find The Key, 20 July 2015
• Access Control, 15 June 2015
• adctf 2014 password-checker, 16 March 2015
• Hackfest 2013 Retaliation, 18 November 2013
• Hack.lu 2012 CTF binaries, 13 February 2013

Cryptography

• Breaking Real-World Crypto, 15 May 2019
• Exploiting Weaknesses of Order-Preserving Encryption, 20 June 2018
• Windows Reverse Engineering - GoogleCTF Ascii Art, 16 October 2017
• NorthSec Captcha Bypass, 17 April 2017
• Strudel Maker from NorthSec 2016, 20 June 2016
• Hash Length Extension attacks, 21 March 2016
• ECCryptolocker, 19 October 2015
• Secure webmail and lost data, 17 November 2014
• NorthSec Smartcards, 15 September 2014
• Password Reset "Features", 16 September 2013
• Crypto-Oracle, 15 July 2013
• Hackfest 2012 Web/Crypto, 13 March 2013

Exploit

• Hackfest CTF 2020 salt challenge (pwning), 17 March 2021
• Intro to Linux x86 64 shellcoding, 19 June 2019
• ROP 101, 20 February 2019
• Exploitation ARM -- Badge NorthSec, 18 September 2017
• Fuzzing with AFL and libFuzzer, 21 August 2017
• Introduction to Heap Exploitation, 19 June 2017
• Side channel & L3 CPU cache, 15 May 2017
• ROP It Like It's Hot!, 18 April 2016
• Test d'intrusion Windows, 15 February 2016
• Microcorruption initiation, 19 January 2015
• Brad Oberberg (CSAW Finals 2013), 15 December 2014
• Silkstreet (CSAW Finals), 16 December 2013
• Hackfest 2013 Retaliation, 18 November 2013
• CSAW Quals Recap, 21 October 2013
• Unix Exploitation, 17 June 2013
• Hack.lu 2012 CTF binaries, 13 February 2013

Exploitation

• DefCon 24 CTF Quals b3s23, 25 November 2020
• Heaps of Fun, 16 September 2020
• Do You Know Java?, 20 November 2019
• Capture-The-Flag 101, 17 April 2019
• Web and privilege escalation challenges from NorthSec 2018, 18 July 2018
• Capture-The-Flag 101, 18 April 2018

Forensic

• Back To Basics, 20 March 2017
• Network Forensics BKP Riverside 2015, 20 April 2015
• Android Forensics CySCA2014, 16 February 2015
• Secure webmail and lost data, 17 November 2014
• NorthSec Thank You Mr ISP, 19 May 2014
• iOS Forensics and Network, 18 April 2013

Forensics

• Capture-The-Flag 101, 17 April 2019

Fuzzing

• Fuzzing with AFL and libFuzzer, 21 August 2017

Hacking

• Gentle Introduction to the NorthSec Badge, 18 December 2017

Hardware

• Some Software Challenges of the NorthSec 2019 Badge, 18 September 2019
• Gentle Introduction to the NorthSec Badge, 18 December 2017
• Side channel & L3 CPU cache, 15 May 2017
• Hackito Ergo Sum 2010 FPGA Challenge, 18 January 2016
• NorthSec Smartcards, 15 September 2014

Hql

• is-h0h0h0-lation special, 29 April 2020
• HQL Injection, 18 March 2020

Injection

• Vault pwning (exclusive), 20 May 2020
• is-h0h0h0-lation special, 29 April 2020
• HQL Injection, 18 March 2020

Ios

• iOS Forensics and Network, 18 April 2013

Linux

• Intro to Linux x86 64 shellcoding, 19 June 2019
• ROP 101, 20 February 2019
• Battleship Reverse Engineering, 17 January 2018
• Mini-CTF OWASP, 20 November 2017
• Introduction to Heap Exploitation, 19 June 2017
• Keygen, 21 November 2016
• Malware as a service, 19 September 2016
• ROP It Like It's Hot!, 18 April 2016
• Brad Oberberg (CSAW Finals 2013), 15 December 2014
• Boston Key Party Reverse Engineering, 17 March 2014
• Silkstreet (CSAW Finals), 16 December 2013
• Hack.lu 2012 CTF binaries, 13 February 2013

Malware

• Malware Analysis - Challenge du Hackfest 2020, 27 January 2021
• Windows malware reversing, 15 January 2020
• Malicious Network Traffic, 16 January 2017
• Malicious Documents, 19 December 2016
• Malware as a service, 19 September 2016
• ECCryptolocker, 19 October 2015
• Got Malware?, 21 September 2015

Network

• NorthSec 2019 Giga.ctf, 22 July 2020
• Capture-The-Flag 101, 17 April 2019
• Capture-The-Flag 101, 18 April 2018
• Windows Reverse Engineering - GoogleCTF Ascii Art, 16 October 2017
• Back To Basics, 20 March 2017
• Malicious Network Traffic, 16 January 2017
• Network Forensics BKP Riverside 2015, 20 April 2015
• Secure webmail and lost data, 17 November 2014
• NorthSec Thank You Mr ISP, 19 May 2014
• iOS Forensics and Network, 18 April 2013

Pentest

• Windows track of the NorthSec CTF 2019, 16 October 2019
• Authentication-as-a-Service, 20 March 2019
• From the Internet to Your Laptop!, 15 August 2018
• Test d'intrusion Windows, 15 February 2016

Privilege-escalation

• Windows track of the NorthSec CTF 2019, 16 October 2019
• Web and privilege escalation challenges from NorthSec 2018, 18 July 2018

Pwning

• Vault pwning (exclusive), 20 May 2020

Reverse-engineering

• Hackfest CTF 2020 salt challenge (pwning), 17 March 2021
• Malware Analysis - Challenge du Hackfest 2020, 27 January 2021
• Rudimentary Rust reversing, 19 February 2020
• Windows malware reversing, 15 January 2020
• Anti-debugging, 17 July 2019
• Capture-The-Flag 101, 17 April 2019
• Warp Pipes, 16 January 2019
• Capture-The-Flag 101, 18 April 2018
• Battleship Reverse Engineering, 17 January 2018
• Windows Reverse Engineering - GoogleCTF Ascii Art, 16 October 2017
• Exploitation ARM -- Badge NorthSec, 18 September 2017
• Introduction to Heap Exploitation, 19 June 2017
• NES Reversing, 20 February 2017
• Malicious Network Traffic, 16 January 2017
• Malicious Documents, 19 December 2016
• Keygen, 21 November 2016
• Malware as a service, 19 September 2016
• DCIETS CS Games 2016 Qualifications Teaser, 16 May 2016
• Hackito Ergo Sum 2010 FPGA Challenge, 18 January 2016
• Hackfest 2015 CrackMe, 16 November 2015
• Find The Key, 20 July 2015
• Access Control, 15 June 2015
• adctf 2014 password-checker, 16 March 2015
• Microcorruption initiation, 19 January 2015
• Boston Key Party Reverse Engineering, 17 March 2014

Reversing

• Introduction to Reverse Engineering Natively-Compiled OCaml Programs, 19 August 2020
• Golang Reversing Introduction, 21 August 2019

Rust

• Rudimentary Rust reversing, 19 February 2020

Side-channel

• Exploiting Weaknesses of Order-Preserving Encryption, 20 June 2018

Sql

• WTF.SQL, 17 October 2018

Sql-injection

• SQL Injection, 16 May 2018
• Shopiflag: Web Exploitation, 21 February 2018
• Mini-CTF OWASP, 20 November 2017
• Homework, 17 July 2017
• Hackfest 2013 Retaliation, 18 November 2013

Steganography

• Back To Basics, 20 March 2017
• Plaid CTF 2012 Stegano, 20 January 2014

Things-humans-do

• h0h0h0day Online Challenge Exchange Special, 16 December 2020
• h0h0h0day Party and Challenge Xchange!, 18 December 2019
• h0h0h0day 2015 Party!, 20 December 2015
• NorthSec 2015 Warm-up Party!, 18 May 2015
• Social meetup / Rencontre sociale, 18 August 2014
• NorthSec 2014 Pre-Party!, 21 April 2014

Tutorial

• Some Software Challenges of the NorthSec 2019 Badge, 18 September 2019
• Gentle Introduction to the NorthSec Badge, 18 December 2017
• Mini-CTF OWASP, 20 November 2017
• Introduction to Heap Exploitation, 19 June 2017
• Side channel & L3 CPU cache, 15 May 2017
• Back To Basics, 20 March 2017
• DCIETS CS Games 2016 Qualifications Teaser, 16 May 2016

Web

• Teacher Hotline - Challenge de NorthSec 2020, 17 February 2021
• NorthSec's Leaky Data Mining, 21 October 2020
• NorthSec 2019 Giga.ctf, 22 July 2020
• NorthSec's Ruby Deserialization, 17 June 2020
• Do You Know Java?, 20 November 2019
• Golang Reversing Introduction, 21 August 2019
• Breaking Real-World Crypto, 15 May 2019
• Capture-The-Flag 101, 17 April 2019
• Authentication-as-a-Service, 20 March 2019
• King of the hill CTF, 21 November 2018
• WTF.SQL, 17 October 2018
• Flags from Space from NorthSec 2018, 19 September 2018
• Web and privilege escalation challenges from NorthSec 2018, 18 July 2018
• SQL Injection, 16 May 2018
• Capture-The-Flag 101, 18 April 2018
• Hackfest/iHack 2017 Web Challenges, 21 March 2018
• Shopiflag: Web Exploitation, 21 February 2018
• Mini-CTF OWASP, 20 November 2017
• Homework, 17 July 2017
• NorthSec Captcha Bypass, 17 April 2017
• Back To Basics, 20 March 2017
• Pinghelper and BusinessCards, 18 July 2016
• Strudel Maker from NorthSec 2016, 20 June 2016
• XSS for grown-ups, 17 August 2015
• Secure webmail and lost data, 17 November 2014
• Web Get $SHELL, 20 October 2014
• NorthSec Thank You Mr ISP, 19 May 2014
• Hackfest 2013 Web Challenges, 17 February 2014
• Password Reset "Features", 16 September 2013
• Web4Kids, 19 August 2013
• Hackfest 2012 Web/Crypto, 13 March 2013

Windows

• Malware Analysis - Challenge du Hackfest 2020, 27 January 2021
• Windows malware reversing, 15 January 2020
• Windows track of the NorthSec CTF 2019, 16 October 2019
• From the Internet to Your Laptop!, 15 August 2018
• Malicious Network Traffic, 16 January 2017
• Malicious Documents, 19 December 2016
• Malware as a service, 19 September 2016
• Test d'intrusion Windows, 15 February 2016
• Hackfest 2015 CrackMe, 16 November 2015

Xss

• Shopiflag: Web Exploitation, 21 February 2018
• Mini-CTF OWASP, 20 November 2017
• XSS for grown-ups, 17 August 2015