-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathindex.html
More file actions
146 lines (117 loc) · 16.4 KB
/
Copy pathindex.html
File metadata and controls
146 lines (117 loc) · 16.4 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
<!DOCTYPE html><html class="appearance-dark" lang="en"><head><meta charset="UTF-8"><title>NocentSec's blog</title><meta name="description"><meta name="viewport" content="width=device-width, minimum-scale=1.0, maximum-scale=1.0, user-scalable=no, initial-scale=1"><!-- Google Analytics --><!-- End Google Analytics -->
<!-- Baidu Analytics --><!-- End Baidu Analytics --><link rel="icon" href="/favicon.png"><link rel="stylesheet" href="/style/common/bulma.css"><link rel="stylesheet" href="/style/base.css"><link rel="stylesheet" href="/style/common/helper.css"><script src="/js/common.js"></script><link rel="stylesheet" href="/style/widget-post-list.css"><meta name="generator" content="Hexo 5.4.0"></head><body class="is-flex is-flex-direction-column"><header class="header-widget is-flex-shrink-0 is-hidden-mobile"><div class="container is-fullhd is-flex is-justify-content-space-between is-align-items-center is-full-height"><section class="is-hidden-mobile is-flex-shrink-0"><h2><a href="/">NocentSec's blog</a></h2></section><h3 class="is-hidden-mobile is-family-serif is-full-height is-flex is-align-items-center is-flex-shrink-0"></h3><aside class="is-flex-shrink-0"><h3 class="is-inline-block"><a href="/">Home</a></h3><h3 class="is-inline-block"><a href="/">About</a></h3><h3 class="is-inline-block"><a href="/archives">Archives</a></h3></aside></div></header><header class="is-flex header-widget is-flex-shrink-0 is-align-items-center is-justify-content-center is-hidden-tablet"><h3 class="is-inline-block"><a href="/">Home</a></h3><h3 class="is-inline-block"><a href="/">About</a></h3><h3 class="is-inline-block"><a href="/archives">Archives</a></h3></header><main><article class="post-container is-flex is-justify-content-center section container is-max-widescreen pt-4 px-2"><div class="columns is-variable is-1-tablet is-3-desktop-only is-2-widescreen is-full-width"><section class="column"><article class="post-item-card"><header class="is-relative is-flex"><div class="post-cover-backdrop is-hidden"><img src="/2021/11/22/HTB-Uni-CTF-2021-Quals/header.png" alt="loading.."></div><a class="post-cover-link has-text-centered skeleton" href="/2021/11/22/HTB-Uni-CTF-2021-Quals/"><img class="post-cover-img js-img-fadeIn" src="/2021/11/22/HTB-Uni-CTF-2021-Quals/header.png" alt="loading.." data-backdrop="true"></a></header><section class="content post-card-content p-4 pb-5"><header><a href="/tags/CTF"><i class="tag post-item-tag">CTF</i></a><a href="/tags/HackTheBox"><i class="tag post-item-tag">HackTheBox</i></a><a href="/tags/Web"><i class="tag post-item-tag">Web</i></a><a href="/tags/Misc"><i class="tag post-item-tag">Misc</i></a><a href="/tags/SQLi"><i class="tag post-item-tag">SQLi</i></a><a href="/tags/SSTI"><i class="tag post-item-tag">SSTI</i></a><a href="/tags/docker"><i class="tag post-item-tag">docker</i></a><a href="/tags/Fullpwn"><i class="tag post-item-tag">Fullpwn</i></a><a href="/tags/Maze"><i class="tag post-item-tag">Maze</i></a><a href="/tags/AWS"><i class="tag post-item-tag">AWS</i></a><a href="/tags/tarfile"><i class="tag post-item-tag">tarfile</i></a><a href="/tags/JWT"><i class="tag post-item-tag">JWT</i></a><a href="/tags/HAProxy"><i class="tag post-item-tag">HAProxy</i></a><a href="/tags/XSS"><i class="tag post-item-tag">XSS</i></a><a href="/tags/Cloud"><i class="tag post-item-tag">Cloud</i></a></header><h2 class="mt-4 mb-0 is-family-serif"><a href="/2021/11/22/HTB-Uni-CTF-2021-Quals/">HTB Uni CTF 2021 Quals</a></h2><time class="has-text-grey" datetime="2021-11-22T20:47:30.000Z">2021-11-22</time><p class="is-flex-grow-2 mt-2">
The HTB UniCTF Qualifications 2021 took place from the 19.11.2021 to the 21.11.2021. We joined our universities team TeamWBH and placed 26th out of 594 teams.
IntroductionThe CTF was definetly one of the harder ones we have done so far, but with a maximum team size of 10 students, 48 hours time and only 29 challenges they had to be really challenging to ..</p><a class="button is-default mt-2 has-text-weight-semibold" href="/2021/11/22/HTB-Uni-CTF-2021-Quals/">Read more</a></section></article><article class="post-item-card"><header class="is-relative is-flex"><div class="post-cover-backdrop is-hidden"><img src="/2021/10/27/Auth0-CTF/header.png" alt="loading.."></div><a class="post-cover-link has-text-centered skeleton" href="/2021/10/27/Auth0-CTF/"><img class="post-cover-img js-img-fadeIn" src="/2021/10/27/Auth0-CTF/header.png" alt="loading.." data-backdrop="true"></a></header><section class="content post-card-content p-4 pb-5"><header><a href="/tags/CTF"><i class="tag post-item-tag">CTF</i></a><a href="/tags/Auth0"><i class="tag post-item-tag">Auth0</i></a><a href="/tags/HackTheBox"><i class="tag post-item-tag">HackTheBox</i></a><a href="/tags/NoSQL"><i class="tag post-item-tag">NoSQL</i></a><a href="/tags/RSA"><i class="tag post-item-tag">RSA</i></a><a href="/tags/AES"><i class="tag post-item-tag">AES</i></a><a href="/tags/Crypto"><i class="tag post-item-tag">Crypto</i></a><a href="/tags/Web"><i class="tag post-item-tag">Web</i></a><a href="/tags/Misc"><i class="tag post-item-tag">Misc</i></a><a href="/tags/HTB"><i class="tag post-item-tag">HTB</i></a><a href="/tags/LFSR"><i class="tag post-item-tag">LFSR</i></a></header><h2 class="mt-4 mb-0 is-family-serif"><a href="/2021/10/27/Auth0-CTF/">Auth0 - CTF</a></h2><time class="has-text-grey" datetime="2021-10-27T21:46:54.000Z">2021-10-27</time><p class="is-flex-grow-2 mt-2">
The Auth0-CTF took place from the 18.10.2021 to the 25.10.2021. This was our first CTF as NocentSec, we managed to place 15th out of 613 teams with 1073 players in total as the best German team. The CTF was published by HackTheBox and organized by Auth0. Auth0 is an international enterprise which focuses on access security in web applications and well kno..</p><a class="button is-default mt-2 has-text-weight-semibold" href="/2021/10/27/Auth0-CTF/">Read more</a></section></article></section><aside class="column is-hidden-mobile is-4-tablet is-3-widescreen"><style>.search-widget .search-input {
border: none;
outline: none;
background: transparent;
color: var(--second-text-color);
}
.search-widget .search-content {
position: absolute;
left: 0;
top: calc(100% - 3px);
z-index: 2;
width: 100%;
height: 0;
max-height: 550px;
overflow: auto;
box-sizing: border-box;
background: var(--top-bar-bg-color);
backdrop-filter: blur(var(--backdropFilter));
-webkit-backdrop-filter: blur(var(--backdropFilter));
border-bottom-left-radius: var(--borderRadius);
border-bottom-right-radius: var(--borderRadius);
box-shadow: 0 12px 15px rgba(0, 0, 0, 0.08);
}
.search-widget .search-content a:hover h5 {
color: #3273dc!important;
}
</style><main class="aside-card-container search-widget is-relative"><label for="searchInput"><div class="is-flex px-4" id="searchButton"><i class="iconfont icon--search1 mr-1"></i><input class="search-input is-flex-grow-1" id="searchInput" placeholder="Search everything.."></div></label><section class="search-content content" id="searchContent"></section></main><script>var searchDatabase = []
var searchInputEl = document.getElementById('searchInput')
var searchButtonEl = document.getElementById('searchButton')
var searchResultEl = document.getElementById('searchContent')
searchInputEl.oninput = function (evt) {
var searchValue = evt.srcElement.value
var haveSearchValue = Boolean(searchValue.trim())
if (!haveSearchValue) {
searchResultEl.style.height = 0
searchResultEl.innerHTML = null
return
}
var searchResults = searching(searchValue)
if (searchResults.length > 0) {
renderSearchResults(searchResults)
}
}
function renderSearchResults(results) {
searchResultEl.innerHTML = null
var fragment = document.createDocumentFragment()
results.forEach(function (item) {
var link = document.createElement('a')
var title = document.createElement('h5')
var content = document.createElement('p')
title.className = 'mb-1'
title.innerText = item.title
content.innerText = item.content
link.href = item.link
link.appendChild(title)
link.appendChild(content)
link.className = 'p-4 is-block'
fragment.appendChild(link)
})
searchResultEl.appendChild(fragment)
searchResultEl.style.height = 'auto'
}
function searching(inputText) {
var inputTexts = inputText.split(' ')
var searchResults = []
inputTexts.forEach(function (searchKey) {
var haveSearchValue = Boolean(searchKey.trim())
if (!haveSearchValue) return
var key = searchKey.toLowerCase()
for (var entry of searchDatabase) {
var title = entry.getElementsByTagName('title')[0].textContent
var link = entry.getElementsByTagName('link')[0].getAttribute('href')
var contentWithTags = entry.getElementsByTagName('content')[0].textContent
var rawContent = contentWithTags.trim().replace(/<[^>]+>/g, '').toLowerCase()
var LENGTH = 80
var finalContent = ''
var contentLength = rawContent.length
var searchResultIdx = rawContent.indexOf(key)
var startIdx = searchResultIdx - 20,
endIdx = startIdx + LENGTH
if (startIdx < 0) {
startIdx = 0
endIdx = 100
}
endIdx > contentLength && (endIdx = contentLength)
finalContent = rawContent.substring(startIdx, endIdx)
if (title.indexOf(key) > -1 || searchResultIdx > -1) {
searchResults.push({
link: link,
title: title,
content: finalContent
})
}
}
})
return searchResults
}
searchButtonEl.onclick = function () {
if (searchDatabase.length > 0) return;
fetch(window.location.href + '/search.xml').then(res => res.text()).then(res => {
var domparser = new DOMParser
var doc = domparser.parseFromString(res, 'application/xml')
searchDatabase = doc.getElementsByTagName('search')[0].children
})
}</script><main class="aside-card-container profile-widget"><!-- todo: 使用取色工具动态阴影--><section class="is-flex is-flex-direction-column is-justify-content-center is-align-items-center"><section class="is-flex is-justify-content-center avatar is-clipped skeleton"><!-- debug images "https://api.ixiaowai.cn/gqapi/gqapi.php"--><img class="js-img-fadeIn" src="/avatar.jpg" alt="user avatar"></section><h3 class="user-name">NocentSec</h3><address class="has-text-centered has-text-grey"><i class="iconfont icon-location" style="margin-right: 5px;"></i><span class="has-text-grey">GER</span></address></section><section class="sns-container is-flex is-justify-content-center is-align-items-center"><!-- Github--><a title="github" target="_blank" rel="noopener nofollow" href="//github.com/NocentSec"><i class="iconfont icon-github"></i></a><!-- Ins--><!-- RSS--><!-- 知乎--><!-- 领英--><!-- 脸书--></section></main><main class="aside-card-container recent-widget"><h3>Recent</h3><ul><li class="is-flex"><!-- change to element replace image placeholder--><img class="js-img-fadeIn" src="/2021/11/22/HTB-Uni-CTF-2021-Quals/header.png" alt="cover"><!--else--><!-- div.post-img-placeholder--><section class="is-flex-grow-2"><p class="has-text-weight-semibold" style="line-height: 20px; font-size: 14px"><a href="/2021/11/22/HTB-Uni-CTF-2021-Quals/">HTB Uni CTF 2021 Quals</a></p><time class="has-text-weight-semibold has-text-grey" datetime="2021-11-22T20:47:30.000Z">2021-11-22</time></section></li><li class="is-flex"><!-- change to element replace image placeholder--><img class="js-img-fadeIn" src="/2021/10/27/Auth0-CTF/header.png" alt="cover"><!--else--><!-- div.post-img-placeholder--><section class="is-flex-grow-2"><p class="has-text-weight-semibold" style="line-height: 20px; font-size: 14px"><a href="/2021/10/27/Auth0-CTF/">Auth0 - CTF</a></p><time class="has-text-weight-semibold has-text-grey" datetime="2021-10-27T21:46:54.000Z">2021-10-27</time></section></li></ul></main><main class="aside-card-container categories-widget category-page"><h3>Categories</h3><section><ul class="category-list"><li class="category-list-item"><a class="category-list-link" href="/categories/CTF/">CTF</a><span class="category-list-count">2</span></li></ul></section></main><main class="aside-card-container archives-widget"><h3>Archives</h3><section><ul class="archive-list"><li class="archive-list-item"><a class="archive-list-link" href="/archives/2021/11/">November 2021</a><span class="archive-list-count">1</span></li><li class="archive-list-item"><a class="archive-list-link" href="/archives/2021/10/">October 2021</a><span class="archive-list-count">1</span></li></ul></section></main><main class="aside-card-container tag-widget"><h3>Tags</h3><section><a href="/tags/CTF"><span class="tag post-item-tag" style="margin-bottom: 5px;">CTF</span></a><a href="/tags/Auth0"><span class="tag post-item-tag" style="margin-bottom: 5px;">Auth0</span></a><a href="/tags/HackTheBox"><span class="tag post-item-tag" style="margin-bottom: 5px;">HackTheBox</span></a><a href="/tags/NoSQL"><span class="tag post-item-tag" style="margin-bottom: 5px;">NoSQL</span></a><a href="/tags/RSA"><span class="tag post-item-tag" style="margin-bottom: 5px;">RSA</span></a><a href="/tags/AES"><span class="tag post-item-tag" style="margin-bottom: 5px;">AES</span></a><a href="/tags/Crypto"><span class="tag post-item-tag" style="margin-bottom: 5px;">Crypto</span></a><a href="/tags/Web"><span class="tag post-item-tag" style="margin-bottom: 5px;">Web</span></a><a href="/tags/Misc"><span class="tag post-item-tag" style="margin-bottom: 5px;">Misc</span></a><a href="/tags/HTB"><span class="tag post-item-tag" style="margin-bottom: 5px;">HTB</span></a><a href="/tags/LFSR"><span class="tag post-item-tag" style="margin-bottom: 5px;">LFSR</span></a><a href="/tags/SQLi"><span class="tag post-item-tag" style="margin-bottom: 5px;">SQLi</span></a><a href="/tags/SSTI"><span class="tag post-item-tag" style="margin-bottom: 5px;">SSTI</span></a><a href="/tags/docker"><span class="tag post-item-tag" style="margin-bottom: 5px;">docker</span></a><a href="/tags/Fullpwn"><span class="tag post-item-tag" style="margin-bottom: 5px;">Fullpwn</span></a><a href="/tags/Maze"><span class="tag post-item-tag" style="margin-bottom: 5px;">Maze</span></a><a href="/tags/AWS"><span class="tag post-item-tag" style="margin-bottom: 5px;">AWS</span></a><a href="/tags/tarfile"><span class="tag post-item-tag" style="margin-bottom: 5px;">tarfile</span></a><a href="/tags/JWT"><span class="tag post-item-tag" style="margin-bottom: 5px;">JWT</span></a><a href="/tags/HAProxy"><span class="tag post-item-tag" style="margin-bottom: 5px;">HAProxy</span></a><a href="/tags/XSS"><span class="tag post-item-tag" style="margin-bottom: 5px;">XSS</span></a><a href="/tags/Cloud"><span class="tag post-item-tag" style="margin-bottom: 5px;">Cloud</span></a></section></main></aside></div></article><script>$claudia.fadeInImage(null, $claudia.blurBackdropImg)
window.addEventListener('resize', $claudia.throttle(function () {
var images = document.querySelectorAll('.js-img-fadeIn')
images.forEach($claudia.blurBackdropImg)
}, 150))</script></main><footer class="is-flex is-flex-direction-column is-align-items-center is-flex-shrink-0 is-family-serif"><section class="sns-container"><!-- Github--><a title="github" target="_blank" rel="noopener nofollow" href="//github.com/NocentSec"><i class="iconfont icon-github"></i></a><!-- Ins--><!-- RSS--><!-- 知乎--><!-- 领英--><!-- 脸书--></section><p><span>Copyright ©</span><span> NocentSec 2021</span></p><div class="is-flex is-justify-content-center is-flex-wrap-wrap"><p>Powered by Hexo | </p><p class="is-flex is-justify-content-center"><a title="Hexo theme author" target="_blank" rel="noopener" href="//github.com/haojen">Theme by Haojen </a></p><div style="margin-top: 2px"><a class="github-button" title="github-button" target="_blank" rel="noopener" href="https://github.com/haojen/hexo-theme-Claudia" data-color-scheme="no-preference: light; light: light; dark: dark;" data-show-count="true"></a></div></div><div><span></span></div></footer><script async defer src="https://buttons.github.io/buttons.js"></script><script>$claudia.fadeInImage(null, $claudia.blurBackdropImg)
window.addEventListener('resize', $claudia.throttle(function () {
var images = document.querySelectorAll('.js-img-fadeIn')
images.forEach($claudia.blurBackdropImg)
}, 150))</script></body></html>