MontréHack

Archives

• By Season
• By Topic
• By Date

By Seasons / Episodes

Season 18

Season 17

• Episode 4: Canada Crackme on 21 April 2021
• Episode 3: Hackfest CTF 2020 salt challenge (pwning) on 17 March 2021
• Episode 2: Teacher Hotline - Challenge de NorthSec 2020 on 17 February 2021
• Episode 1: Malware Analysis - Challenge du Hackfest 2020 on 27 January 2021

Season 16

• Episode 6: h0h0h0day Online Challenge Exchange Special on 16 December 2020
• Episode 5: DefCon 24 CTF Quals b3s23 on 25 November 2020
• Episode 4: NorthSec's Leaky Data Mining on 21 October 2020
• Episode 3: Heaps of Fun on 16 September 2020
• Episode 2: Introduction to Reverse Engineering Natively-Compiled OCaml Programs on 19 August 2020
• Episode 1: NorthSec 2019 Giga.ctf on 22 July 2020

Season 15

• Episode 6: NorthSec's Ruby Deserialization on 17 June 2020
• Episode 5: Vault pwning (exclusive) on 20 May 2020
• Episode 4: is-h0h0h0-lation special on 29 April 2020
• Episode 3: HQL Injection on 18 March 2020
• Episode 2: Rudimentary Rust reversing on 19 February 2020
• Episode 1: Windows malware reversing on 15 January 2020

Season 14

• Episode 6: h0h0h0day Party and Challenge Xchange! on 18 December 2019
• Episode 5: Do You Know Java? on 20 November 2019
• Episode 4: Windows track of the NorthSec CTF 2019 on 16 October 2019
• Episode 3: Some Software Challenges of the NorthSec 2019 Badge on 18 September 2019
• Episode 2: Golang Reversing Introduction on 21 August 2019
• Episode 1: Anti-debugging on 17 July 2019

Season 13

• Episode 6: Intro to Linux x86 64 shellcoding on 19 June 2019
• Episode 5: Breaking Real-World Crypto on 15 May 2019
• Episode 4: Capture-The-Flag 101 on 17 April 2019
• Episode 3: Authentication-as-a-Service on 20 March 2019
• Episode 2: ROP 101 on 20 February 2019
• Episode 1: Warp Pipes on 16 January 2019

Season 12

• Episode 5: King of the hill CTF on 21 November 2018
• Episode 4: WTF.SQL on 17 October 2018
• Episode 3: Flags from Space from NorthSec 2018 on 19 September 2018
• Episode 2: From the Internet to Your Laptop! on 15 August 2018
• Episode 1: Web and privilege escalation challenges from NorthSec 2018 on 18 July 2018

Season 11

• Episode 6: Exploiting Weaknesses of Order-Preserving Encryption on 20 June 2018
• Episode 5: SQL Injection on 16 May 2018
• Episode 4: Capture-The-Flag 101 on 18 April 2018
• Episode 3: Hackfest/iHack 2017 Web Challenges on 21 March 2018
• Episode 2: Shopiflag: Web Exploitation on 21 February 2018
• Episode 1: Battleship Reverse Engineering on 17 January 2018

Season 10

• Episode 6: Gentle Introduction to the NorthSec Badge on 18 December 2017
• Episode 5: Mini-CTF OWASP on 20 November 2017
• Episode 4: Windows Reverse Engineering - GoogleCTF Ascii Art on 16 October 2017
• Episode 3: Exploitation ARM -- Badge NorthSec on 18 September 2017
• Episode 2: Fuzzing with AFL and libFuzzer on 21 August 2017
• Episode 1: Homework on 17 July 2017

Season 9

• Episode 6: Introduction to Heap Exploitation on 19 June 2017
• Episode 5: Side channel & L3 CPU cache on 15 May 2017
• Episode 4: NorthSec Captcha Bypass on 17 April 2017
• Episode 3: Back To Basics on 20 March 2017
• Episode 2: NES Reversing on 20 February 2017
• Episode 1: Malicious Network Traffic on 16 January 2017

Season 8

• Episode 4: Malicious Documents on 19 December 2016
• Episode 3: Keygen on 21 November 2016
• Episode 2: Malware as a service on 19 September 2016
• Episode 2: Trivia and Rebase as a Service on 15 August 2016
• Episode 1: Pinghelper and BusinessCards on 18 July 2016

Season 7

• Episode 6: Strudel Maker from NorthSec 2016 on 20 June 2016
• Episode 5: DCIETS CS Games 2016 Qualifications Teaser on 16 May 2016
• Episode 4: ROP It Like It's Hot! on 18 April 2016
• Episode 3: Hash Length Extension attacks on 21 March 2016
• Episode 2: Test d'intrusion Windows on 15 February 2016
• Episode 1: Hackito Ergo Sum 2010 FPGA Challenge on 18 January 2016

Season 6

• Episode 6: h0h0h0day 2015 Party! on 20 December 2015
• Episode 5: Hackfest 2015 CrackMe on 16 November 2015
• Episode 4: ECCryptolocker on 19 October 2015
• Episode 3: Got Malware? on 21 September 2015
• Episode 2: XSS for grown-ups on 17 August 2015
• Episode 1: Find The Key on 20 July 2015

Season 5

• Episode 6: Access Control on 15 June 2015
• Episode 5: NorthSec 2015 Warm-up Party! on 18 May 2015
• Episode 4: Network Forensics BKP Riverside 2015 on 20 April 2015
• Episode 3: adctf 2014 password-checker on 16 March 2015
• Episode 2: Android Forensics CySCA2014 on 16 February 2015
• Episode 1: Microcorruption initiation on 19 January 2015

Season 4

• Episode 5: Brad Oberberg (CSAW Finals 2013) on 15 December 2014
• Episode 4: Secure webmail and lost data on 17 November 2014
• Episode 3: Web Get $SHELL on 20 October 2014
• Episode 2: NorthSec Smartcards on 15 September 2014
• Episode 1: Social meetup / Rencontre sociale on 18 August 2014

Season 3

• Episode 5: NorthSec Thank You Mr ISP on 19 May 2014
• Episode 4: NorthSec 2014 Pre-Party! on 21 April 2014
• Episode 3: Boston Key Party Reverse Engineering on 17 March 2014
• Episode 2: Hackfest 2013 Web Challenges on 17 February 2014
• Episode 1: Plaid CTF 2012 Stegano on 20 January 2014

Season 2

• Episode 5: Silkstreet (CSAW Finals) on 16 December 2013
• Episode 4: Hackfest 2013 Retaliation on 18 November 2013
• Episode 3: CSAW Quals Recap on 21 October 2013
• Episode 2: Password Reset "Features" on 16 September 2013
• Episode 1: Web4Kids on 19 August 2013

Season 1

• Episode 5: Crypto-Oracle on 15 July 2013
• Episode 4: Unix Exploitation on 17 June 2013
• Episode 3: iOS Forensics and Network on 18 April 2013
• Episode 2: Hackfest 2012 Web/Crypto on 13 March 2013
• Episode 1: Hack.lu 2012 CTF binaries on 13 February 2013

By topic

Android

• Android Forensics CySCA2014, 16 February 2015

Arm

• Some Software Challenges of the NorthSec 2019 Badge, 18 September 2019
• Gentle Introduction to the NorthSec Badge, 18 December 2017
• Exploitation ARM -- Badge NorthSec, 18 September 2017

Bkp

• Network Forensics BKP Riverside 2015, 20 April 2015

Code-review

• NorthSec 2019 Giga.ctf, 22 July 2020

Crackme

• Canada Crackme, 21 April 2021
• Anti-debugging, 17 July 2019
• Capture-The-Flag 101, 17 April 2019
• Warp Pipes, 16 January 2019
• Battleship Reverse Engineering, 17 January 2018
• NES Reversing, 20 February 2017
• Keygen, 21 November 2016
• DCIETS CS Games 2016 Qualifications Teaser, 16 May 2016
• Hackfest 2015 CrackMe, 16 November 2015
• Find The Key, 20 July 2015
• Access Control, 15 June 2015
• adctf 2014 password-checker, 16 March 2015
• Hackfest 2013 Retaliation, 18 November 2013
• Hack.lu 2012 CTF binaries, 13 February 2013

Cryptography

• Breaking Real-World Crypto, 15 May 2019
• Exploiting Weaknesses of Order-Preserving Encryption, 20 June 2018
• Windows Reverse Engineering - GoogleCTF Ascii Art, 16 October 2017
• NorthSec Captcha Bypass, 17 April 2017
• Strudel Maker from NorthSec 2016, 20 June 2016
• Hash Length Extension attacks, 21 March 2016
• ECCryptolocker, 19 October 2015
• Secure webmail and lost data, 17 November 2014
• NorthSec Smartcards, 15 September 2014
• Password Reset "Features", 16 September 2013
• Crypto-Oracle, 15 July 2013
• Hackfest 2012 Web/Crypto, 13 March 2013

Exploit

• Hackfest CTF 2020 salt challenge (pwning), 17 March 2021
• Intro to Linux x86 64 shellcoding, 19 June 2019
• ROP 101, 20 February 2019
• Exploitation ARM -- Badge NorthSec, 18 September 2017
• Fuzzing with AFL and libFuzzer, 21 August 2017
• Introduction to Heap Exploitation, 19 June 2017
• Side channel & L3 CPU cache, 15 May 2017
• ROP It Like It's Hot!, 18 April 2016
• Test d'intrusion Windows, 15 February 2016
• Microcorruption initiation, 19 January 2015
• Brad Oberberg (CSAW Finals 2013), 15 December 2014
• Silkstreet (CSAW Finals), 16 December 2013
• Hackfest 2013 Retaliation, 18 November 2013
• CSAW Quals Recap, 21 October 2013
• Unix Exploitation, 17 June 2013
• Hack.lu 2012 CTF binaries, 13 February 2013

Exploitation

• DefCon 24 CTF Quals b3s23, 25 November 2020
• Heaps of Fun, 16 September 2020
• Do You Know Java?, 20 November 2019
• Capture-The-Flag 101, 17 April 2019
• Web and privilege escalation challenges from NorthSec 2018, 18 July 2018
• Capture-The-Flag 101, 18 April 2018

Forensic

• Back To Basics, 20 March 2017
• Network Forensics BKP Riverside 2015, 20 April 2015
• Android Forensics CySCA2014, 16 February 2015
• Secure webmail and lost data, 17 November 2014
• NorthSec Thank You Mr ISP, 19 May 2014
• iOS Forensics and Network, 18 April 2013

Forensics

• Capture-The-Flag 101, 17 April 2019

Fuzzing

• Fuzzing with AFL and libFuzzer, 21 August 2017

Hacking

• Gentle Introduction to the NorthSec Badge, 18 December 2017

Hardware

• Some Software Challenges of the NorthSec 2019 Badge, 18 September 2019
• Gentle Introduction to the NorthSec Badge, 18 December 2017
• Side channel & L3 CPU cache, 15 May 2017
• Hackito Ergo Sum 2010 FPGA Challenge, 18 January 2016
• NorthSec Smartcards, 15 September 2014

Hql

• is-h0h0h0-lation special, 29 April 2020
• HQL Injection, 18 March 2020

Injection

• Vault pwning (exclusive), 20 May 2020
• is-h0h0h0-lation special, 29 April 2020
• HQL Injection, 18 March 2020

Ios

• iOS Forensics and Network, 18 April 2013

Linux

• Intro to Linux x86 64 shellcoding, 19 June 2019
• ROP 101, 20 February 2019
• Battleship Reverse Engineering, 17 January 2018
• Mini-CTF OWASP, 20 November 2017
• Introduction to Heap Exploitation, 19 June 2017
• Keygen, 21 November 2016
• Malware as a service, 19 September 2016
• ROP It Like It's Hot!, 18 April 2016
• Brad Oberberg (CSAW Finals 2013), 15 December 2014
• Boston Key Party Reverse Engineering, 17 March 2014
• Silkstreet (CSAW Finals), 16 December 2013
• Hack.lu 2012 CTF binaries, 13 February 2013

Malware

• Malware Analysis - Challenge du Hackfest 2020, 27 January 2021
• Windows malware reversing, 15 January 2020
• Malicious Network Traffic, 16 January 2017
• Malicious Documents, 19 December 2016
• Malware as a service, 19 September 2016
• ECCryptolocker, 19 October 2015
• Got Malware?, 21 September 2015

Network

• NorthSec 2019 Giga.ctf, 22 July 2020
• Capture-The-Flag 101, 17 April 2019
• Capture-The-Flag 101, 18 April 2018
• Windows Reverse Engineering - GoogleCTF Ascii Art, 16 October 2017
• Back To Basics, 20 March 2017
• Malicious Network Traffic, 16 January 2017
• Network Forensics BKP Riverside 2015, 20 April 2015
• Secure webmail and lost data, 17 November 2014
• NorthSec Thank You Mr ISP, 19 May 2014
• iOS Forensics and Network, 18 April 2013

Pentest

• Windows track of the NorthSec CTF 2019, 16 October 2019
• Authentication-as-a-Service, 20 March 2019
• From the Internet to Your Laptop!, 15 August 2018
• Test d'intrusion Windows, 15 February 2016

Privilege-escalation

• Windows track of the NorthSec CTF 2019, 16 October 2019
• Web and privilege escalation challenges from NorthSec 2018, 18 July 2018

Pwning

• Vault pwning (exclusive), 20 May 2020

Reverse-engineering

• Canada Crackme, 21 April 2021
• Hackfest CTF 2020 salt challenge (pwning), 17 March 2021
• Malware Analysis - Challenge du Hackfest 2020, 27 January 2021
• Rudimentary Rust reversing, 19 February 2020
• Windows malware reversing, 15 January 2020
• Anti-debugging, 17 July 2019
• Capture-The-Flag 101, 17 April 2019
• Warp Pipes, 16 January 2019
• Capture-The-Flag 101, 18 April 2018
• Battleship Reverse Engineering, 17 January 2018
• Windows Reverse Engineering - GoogleCTF Ascii Art, 16 October 2017
• Exploitation ARM -- Badge NorthSec, 18 September 2017
• Introduction to Heap Exploitation, 19 June 2017
• NES Reversing, 20 February 2017
• Malicious Network Traffic, 16 January 2017
• Malicious Documents, 19 December 2016
• Keygen, 21 November 2016
• Malware as a service, 19 September 2016
• DCIETS CS Games 2016 Qualifications Teaser, 16 May 2016
• Hackito Ergo Sum 2010 FPGA Challenge, 18 January 2016
• Hackfest 2015 CrackMe, 16 November 2015
• Find The Key, 20 July 2015
• Access Control, 15 June 2015
• adctf 2014 password-checker, 16 March 2015
• Microcorruption initiation, 19 January 2015
• Boston Key Party Reverse Engineering, 17 March 2014

Reversing

• Introduction to Reverse Engineering Natively-Compiled OCaml Programs, 19 August 2020
• Golang Reversing Introduction, 21 August 2019

Rust

• Rudimentary Rust reversing, 19 February 2020

Side-channel

• Exploiting Weaknesses of Order-Preserving Encryption, 20 June 2018

Sql

• WTF.SQL, 17 October 2018

Sql-injection

• SQL Injection, 16 May 2018
• Shopiflag: Web Exploitation, 21 February 2018
• Mini-CTF OWASP, 20 November 2017
• Homework, 17 July 2017
• Hackfest 2013 Retaliation, 18 November 2013
• Web4Kids, 19 August 2013

Steganography

• Back To Basics, 20 March 2017
• Plaid CTF 2012 Stegano, 20 January 2014

Things-humans-do

• h0h0h0day Online Challenge Exchange Special, 16 December 2020
• h0h0h0day Party and Challenge Xchange!, 18 December 2019
• h0h0h0day 2015 Party!, 20 December 2015
• NorthSec 2015 Warm-up Party!, 18 May 2015
• Social meetup / Rencontre sociale, 18 August 2014
• NorthSec 2014 Pre-Party!, 21 April 2014

Tutorial

• Some Software Challenges of the NorthSec 2019 Badge, 18 September 2019
• Gentle Introduction to the NorthSec Badge, 18 December 2017
• Mini-CTF OWASP, 20 November 2017
• Introduction to Heap Exploitation, 19 June 2017
• Side channel & L3 CPU cache, 15 May 2017
• Back To Basics, 20 March 2017
• DCIETS CS Games 2016 Qualifications Teaser, 16 May 2016

Web

• Teacher Hotline - Challenge de NorthSec 2020, 17 February 2021
• NorthSec's Leaky Data Mining, 21 October 2020
• NorthSec 2019 Giga.ctf, 22 July 2020
• NorthSec's Ruby Deserialization, 17 June 2020
• Do You Know Java?, 20 November 2019
• Golang Reversing Introduction, 21 August 2019
• Breaking Real-World Crypto, 15 May 2019
• Capture-The-Flag 101, 17 April 2019
• Authentication-as-a-Service, 20 March 2019
• King of the hill CTF, 21 November 2018
• WTF.SQL, 17 October 2018
• Flags from Space from NorthSec 2018, 19 September 2018
• Web and privilege escalation challenges from NorthSec 2018, 18 July 2018
• SQL Injection, 16 May 2018
• Capture-The-Flag 101, 18 April 2018
• Hackfest/iHack 2017 Web Challenges, 21 March 2018
• Shopiflag: Web Exploitation, 21 February 2018
• Mini-CTF OWASP, 20 November 2017
• Homework, 17 July 2017
• NorthSec Captcha Bypass, 17 April 2017
• Back To Basics, 20 March 2017
• Pinghelper and BusinessCards, 18 July 2016
• Strudel Maker from NorthSec 2016, 20 June 2016
• XSS for grown-ups, 17 August 2015
• Secure webmail and lost data, 17 November 2014
• Web Get $SHELL, 20 October 2014
• NorthSec Thank You Mr ISP, 19 May 2014
• Hackfest 2013 Web Challenges, 17 February 2014
• Password Reset "Features", 16 September 2013
• Web4Kids, 19 August 2013
• Hackfest 2012 Web/Crypto, 13 March 2013

Windows

• Malware Analysis - Challenge du Hackfest 2020, 27 January 2021
• Windows malware reversing, 15 January 2020
• Windows track of the NorthSec CTF 2019, 16 October 2019
• From the Internet to Your Laptop!, 15 August 2018
• Malicious Network Traffic, 16 January 2017
• Malicious Documents, 19 December 2016
• Malware as a service, 19 September 2016
• Test d'intrusion Windows, 15 February 2016
• Hackfest 2015 CrackMe, 16 November 2015

Xss

• Shopiflag: Web Exploitation, 21 February 2018
• Mini-CTF OWASP, 20 November 2017
• XSS for grown-ups, 17 August 2015
• Web4Kids, 19 August 2013

By date

2021

• Canada Crackme, April 21
• Hackfest CTF 2020 salt challenge (pwning), March 17
• Teacher Hotline - Challenge de NorthSec 2020, February 17
• Malware Analysis - Challenge du Hackfest 2020, January 27

2020

• h0h0h0day Online Challenge Exchange Special, December 16
• DefCon 24 CTF Quals b3s23, November 25
• NorthSec's Leaky Data Mining, October 21
• Heaps of Fun, September 16
• Introduction to Reverse Engineering Natively-Compiled OCaml Programs, August 19
• NorthSec 2019 Giga.ctf, July 22
• NorthSec's Ruby Deserialization, June 17
• Vault pwning (exclusive), May 20
• is-h0h0h0-lation special, April 29
• HQL Injection, March 18
• Rudimentary Rust reversing, February 19
• Windows malware reversing, January 15

2019

• h0h0h0day Party and Challenge Xchange!, December 18
• Do You Know Java?, November 20
• Windows track of the NorthSec CTF 2019, October 16
• Some Software Challenges of the NorthSec 2019 Badge, September 18
• Golang Reversing Introduction, August 21
• Anti-debugging, July 17
• Intro to Linux x86 64 shellcoding, June 19
• Breaking Real-World Crypto, May 15
• Capture-The-Flag 101, April 17
• Authentication-as-a-Service, March 20
• ROP 101, February 20
• Warp Pipes, January 16

2018

• King of the hill CTF, November 21
• WTF.SQL, October 17
• Flags from Space from NorthSec 2018, September 19
• From the Internet to Your Laptop!, August 15
• Web and privilege escalation challenges from NorthSec 2018, July 18
• Exploiting Weaknesses of Order-Preserving Encryption, June 20
• SQL Injection, May 16
• Capture-The-Flag 101, April 18
• Hackfest/iHack 2017 Web Challenges, March 21
• Shopiflag: Web Exploitation, February 21
• Battleship Reverse Engineering, January 17

2017

• Gentle Introduction to the NorthSec Badge, December 18
• Mini-CTF OWASP, November 20
• Windows Reverse Engineering - GoogleCTF Ascii Art, October 16
• Exploitation ARM -- Badge NorthSec, September 18
• Fuzzing with AFL and libFuzzer, August 21
• Homework, July 17
• Introduction to Heap Exploitation, June 19
• Side channel & L3 CPU cache, May 15
• NorthSec Captcha Bypass, April 17
• Back To Basics, March 20
• NES Reversing, February 20
• Malicious Network Traffic, January 16

2016

• Malicious Documents, December 19
• Keygen, November 21
• Malware as a service, September 19
• Trivia and Rebase as a Service, August 15
• Pinghelper and BusinessCards, July 18
• Strudel Maker from NorthSec 2016, June 20
• DCIETS CS Games 2016 Qualifications Teaser, May 16
• ROP It Like It's Hot!, April 18
• Hash Length Extension attacks, March 21
• Test d'intrusion Windows, February 15
• Hackito Ergo Sum 2010 FPGA Challenge, January 18

2015

• h0h0h0day 2015 Party!, December 20
• Hackfest 2015 CrackMe, November 16
• ECCryptolocker, October 19
• Got Malware?, September 21
• XSS for grown-ups, August 17
• Find The Key, July 20
• Access Control, June 15
• NorthSec 2015 Warm-up Party!, May 18
• Network Forensics BKP Riverside 2015, April 20
• adctf 2014 password-checker, March 16
• Android Forensics CySCA2014, February 16
• Microcorruption initiation, January 19

2014

• Brad Oberberg (CSAW Finals 2013), December 15
• Secure webmail and lost data, November 17
• Web Get $SHELL, October 20
• NorthSec Smartcards, September 15
• Social meetup / Rencontre sociale, August 18
• NorthSec Thank You Mr ISP, May 19
• NorthSec 2014 Pre-Party!, April 21
• Boston Key Party Reverse Engineering, March 17
• Hackfest 2013 Web Challenges, February 17
• Plaid CTF 2012 Stegano, January 20

2013

• Silkstreet (CSAW Finals), December 16
• Hackfest 2013 Retaliation, November 18
• CSAW Quals Recap, October 21
• Password Reset "Features", September 16
• Web4Kids, August 19
• Crypto-Oracle, July 15
• Unix Exploitation, June 17
• iOS Forensics and Network, April 18
• Hackfest 2012 Web/Crypto, March 13
• Hack.lu 2012 CTF binaries, February 13