Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/timyiu478/pwn.college

Learn to Hack in a hands-on fashion
https://github.com/timyiu478/pwn.college

binary-exploitation cryptography hacking network-security reverse-engineering system-security web-security

Last synced: 4 months ago
JSON representation

Learn to Hack in a hands-on fashion

Awesome Lists containing this project

README 

          
# pwn.college



This repository contains some of my notes to the pwn.college challenges.



> Note: These notes are provided as learning resources only. Please do **not** copy them — they're here to support understanding, not serve as plug-and-play answers.



# Selected Notes



| #  | Name                   | Link              | Tags     |

|----|--------------------------------|------------------|---------|

| 1  | Rev Eng: Version Information in x86         | [View](notes/intro_to_cyber/rev_eng/version_info_x86.md) | `Reverse Engineering`, `x86`, `gdb`        |

| 2  | ARP Spoofing: Man In the Middle Attack         | [View](notes/intro_to_cyber/net_comm/mitm.md) | `ARP Spoofing`, `TCP`, `Man-in-the-middle`        |

| 3  | SQL Injection: Guess password even if the actual data is not shown         | [View](notes/intro_to_cyber/web_sec/sqli.md#5) | `SQL`, `Authentication`        |

| 4  | Transport Layer Security: Hand Shake        | [View](notes/intro_to_cyber/crypto/tls.md#2) | `TLS`, `Diffie-Hellman`, `RSA`, `AES`, `SHA`        |

| 5  | Provable Access Control: Bell-LaPadula Model        | [View](notes/intro_to_cyber/access_control/README.md) | `POSIX Access Control`, `Mandatory Access Control`, `Bell-LaPadula Model`      |

| 6  | Use XSS to exfiltrate victim authentication data       | [View](notes/intro_to_cyber/web_sec/xss.md#7) | `Cross Site Scripting`, `HTTP Cookies`     |