-
Notifications
You must be signed in to change notification settings - Fork 1
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
63 changed files
with
1,613 additions
and
8,162 deletions.
There are no files selected for viewing
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,98 @@ | ||
| <!DOCTYPE html> | ||
| <html lang="en" prefix="og: http://ogp.me/ns#"> | ||
| <head> | ||
| <link href="http://gmpg.org/xfn/11" rel="profile"> | ||
| <meta http-equiv="X-UA-Compatible" content="IE=edge"> | ||
| <meta http-equiv="content-type" content="text/html; charset=utf-8"> | ||
|
|
||
| <!-- Metadata --> | ||
| <meta name="description" content="cfreal Charles Fol blog" /> | ||
| <meta property="og:description" content="cfreal Charles Fol blog" /> | ||
| <meta property="og:title" content="cfreal's blog" /> | ||
| <meta property="og:type" content="website" /> | ||
| <meta property="og:url" content="" /> | ||
| <meta property="og:image" content="/images/profile.jpg" /> | ||
|
|
||
| <!-- Enable responsiveness on mobile devices--> | ||
| <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1"> | ||
|
|
||
| <title>cfreal's blog - Articles by cfreal</title> | ||
|
|
||
| <!-- CSS --> | ||
| <link href="//fonts.googleapis.com/" rel="dns-prefetch"> | ||
| <link href="//fonts.googleapis.com/css?family=Droid+Serif:400,700,400italic|Abril+Fatface|PT+Sans:400,400italic,700&subset=latin,latin-ext" rel="stylesheet"> | ||
|
|
||
|
|
||
| <link rel="stylesheet" href="/theme/css/poole.css" /> | ||
| <link rel="stylesheet" href="/theme/css/hyde.css" /> | ||
| <link rel="stylesheet" href="/theme/css/syntax.css" /> | ||
| <link rel="stylesheet" href="/theme/css/style.css" /> | ||
| <link rel="stylesheet" href="https://use.fontawesome.com/releases/v6.7.1/css/all.css" crossorigin="anonymous"> | ||
|
|
||
| <!-- Feeds --> | ||
| <link href="/feeds/all.atom.xml" type="application/atom+xml" rel="alternate" title="cfreal's blog Full Atom Feed" /> | ||
|
|
||
| <!-- Analytics --> | ||
| </head> | ||
|
|
||
| <body class="theme-base-0d"> | ||
| <div class="sidebar"> | ||
| <div class="container sidebar-sticky"> | ||
| <div class="sidebar-about"> | ||
|
|
||
| <h1> | ||
| <a href="/"> | ||
| <img class="profile-picture" src="/images/profile.jpg"> | ||
| cfreal's blog | ||
| </a> | ||
| </h1> | ||
| <p class="lead"></p> | ||
| <p class="lead">Hacker.<br/> | ||
| Maintainer of <a href="https://github.com/ambionics/phpggc">PHPGGC</a>, <a href="https://github.com/cfreal/ten">ten</a>...<br/> | ||
| Previous <a href="/pages/research.html">research</a>. | ||
| </p> | ||
| <p></p> | ||
| </div> | ||
| <nav class="sidebar-social"> | ||
| <a class="sidebar-social-item" href="https://twitter.com/cfreal_" target="_blank"> | ||
| <i class="fab fa-twitter"></i> | ||
| </a> | ||
| <a class="sidebar-social-item" href="https://bsky.app/profile/cfreal.bsky.social" target="_blank"> | ||
| <i class="fab fa-bluesky"></i> | ||
| </a> | ||
| <a class="sidebar-social-item" href="https://www.linkedin.com/in/charles-fol-85996b125" target="_blank"> | ||
| <i class="fab fa-linkedin"></i> | ||
| </a> | ||
| <a class="sidebar-social-item" href="https://github.com/cfreal" target="_blank"> | ||
| <i class="fab fa-github"></i> | ||
| </a> | ||
| </nav> | ||
| </div> | ||
| </div> <div class="content container"> | ||
| <div class="posts"> | ||
| <div class="post"> | ||
| <h1 class="post-title" href="/google-ctf-2019-glotto-writeup.html"> | ||
| <a href="/google-ctf-2019-glotto-writeup.html">Google CTF Quals 2019: GLotto Writeup</a> | ||
| </h1> | ||
| <span class="post-date">jeu. 27 juin 2019</span> | ||
| <p> | ||
| <h1>Introduction</h1> | ||
| <p>The Google CTF 2019 Quals happened this week-end and a friend told me about the GLotto web challenge, which seemed really fun. Can you imagine this ? A <em>fun</em> web challenge ! I had a go at it and here's my writeup. The idea is to push an ORDER BY SQL …</p> | ||
| </p> | ||
| <a class="read-more" href="google-ctf-2019-glotto-writeup.html">Continue reading »</a> | ||
| </div> | ||
| <div class="post"> | ||
| <h1 class="post-title" href="/carpe-diem-cve-2019-0211-apache-local-root.html"> | ||
| <a href="/carpe-diem-cve-2019-0211-apache-local-root.html">CARPE (DIEM): CVE-2019-0211 Apache Root Privilege Escalation</a> | ||
| </h1> | ||
| <span class="post-date">mer. 03 avril 2019</span> | ||
| <p> | ||
| <h1>Introduction</h1> | ||
| <p>From version 2.4.17 (Oct 9, 2015) to version 2.4.38 (Apr 1, 2019), Apache HTTP suffers from a local root privilege escalation vulnerability due to an out-of-bounds array access leading to an arbitrary function call. The vulnerability is triggered when Apache gracefully restarts (<code>apache2ctl graceful</code>). In …</p> | ||
| </p> | ||
| <a class="read-more" href="carpe-diem-cve-2019-0211-apache-local-root.html">Continue reading »</a> | ||
| </div> | ||
| </div> | ||
| </div> | ||
| </body> | ||
| </html> |
This file was deleted.
Oops, something went wrong.
Oops, something went wrong.