Skip to content
Auke Zwaan
Interesting stuff about cybersecurity
  • Tutorials
  • CTF write-ups
  • About
  • Contact

Author: AukeZwaan

Disclosures

How we hacked more than 10,000 user accounts at the University of Amsterdam

Posted on 22 May 2017 by AukeZwaan / 5 Comments

Last year, Bram ter Borch (a fellow student of the Master System and Network Engineering at the University of Amsterdam) and I did a security review of the Blac...

Tutorials

Creating a mobile P2000 receiver using a Raspberry Pi

Posted on 20 April 2017 by AukeZwaan / 4 Comments

In the Netherlands, the P2000 network is used by, amongst others, ambulances and fire brigades, to communicate about locations of emergencies. Formally, it is p...

Educational/Tutorials

Using a RAT to dump Windows credentials

Posted on 9 February 2017 by AukeZwaan / 0 Comment

Some 1,5 years ago, I wrote a really basic article about Pupy (an open source RAT). In an on-site CTF I participated in yesterday, I found it quite useful in a ...

CTF/Educational/Tutorials

Cracking an RDP password using Crunch and Hydra

Posted on 9 February 2017 by AukeZwaan / 1 Comment

Lately, I had to crack an RDP password for a known user in an on-site CTF. In this post, I will explain how I solved this challenge.

Crypto/CTF/SECCON 2016 Online CTF/Write-ups

SECCON 2016 Online CTF – Vigenere (100 points)

Posted on 16 December 2016 by AukeZwaan / 0 Comment

As the title of the challenge suggests, we are dealing with a simple Vigenere Cipher here. In Vigenere, each character of the plaintext is shifted using a key. ...

CTF/Pwn/RC3 CTF 2016/Tutorials

RC3 CTF 2016: goodtime (150 points)

Posted on 22 November 2016 by AukeZwaan / 0 Comment

After connecting, a prompt asking for the flag was displayed. After entering an incorrect flag, it would simply return "Nope\n" and quit. What I noticed after s...

CTF/Forensics/RC3 CTF 2016/Write-ups

RC3 CTF 2016: My Lil Droid (100 points)

Posted on 21 November 2016 by AukeZwaan / 0 Comment

First step, of course, is downloading the files. Turned out it was only an apk file called youtube.apk. APKs are just an archive, and can thus be extracted easi...

CTF/RC3 CTF 2016/Web/Write-ups

RC3 CTF 2016: Who’s a Good Boy? (100 points)

Posted on 21 November 2016 by AukeZwaan / 0 Comment

Let's start by having a look at the website at the URL given in the description. Then, I saw that another image was requested through an additional GET request ...

CTF/IceCTF 2016/Write-ups

IceCTF 2016: ChainedIn (75 points)

Posted on 6 October 2016 by AukeZwaan / 0 Comment

After opening the website that was given with the challenge, I was presented a simple-looking website. Of course, I tried to log in with the credentials provide...

Educational/Tutorials

Using Wikipedia’s best kept secret: Simple English

Posted on 6 October 2016 by AukeZwaan / 0 Comment

Have you ever found yourself determined to ‘finally figure something out’ about a specific topic, but giving up after reading Wikipedia pages that l...

Posts navigation

1 2 3 Next »

Recent Posts

  • How we hacked more than 10,000 user accounts at the University of Amsterdam
  • Creating a mobile P2000 receiver using a Raspberry Pi
  • Using a RAT to dump Windows credentials
  • Cracking an RDP password using Crunch and Hydra
  • SECCON 2016 Online CTF – Vigenere (100 points)
© 2025 Auke Zwaan
Powered by WordPress | Theme: Graphy by Themegraphy