📔
Notes
  • Notes
  • Starting with (n)vim
  • Bluetooth
  • Hacking boot2root/ OSCP notes
  • Capture the flag(CTF)
    • Commonly Used Tools
    • Web
    • Cryptography
    • Forensics
  • Making a boot2root VM
    • Important rules
    • [General things](VM/Make boot2root VM.md)
    • Setting Systemd services
    • Setting fail2ban
  • BugBounty notes for Android
    • General
    • Adb/drozer commands
    • Intents
    • Permissions
    • Activities
    • Broadcast Receivers
    • Content Providers
    • Services
  • BugBounty notes for WEB
    • Authentication
    • CORS
    • General Web
    • HTTP Parameter poisoning
    • IDOR
    • graphql
  • Age of Empires IV
    • Age Of Empires
    • Build Orders
      • English Civ
    • Sheep scouting
Powered by GitBook
On this page
  • CTF Tools
  • Leaks
  • Other lists
  1. Capture the flag(CTF)

Commonly Used Tools

PreviousCapture the flag(CTF)NextWeb

Last updated 3 years ago

CTF Tools

Just some tools we use

web

  • Nikito:

  • SQLmap

Reversing

  • Radare2

    • cutter:

      • GUI mode of radare2

  • pwndbg

    • with

      • pedas:

      • voltron:

  • checksec

      • Check if canary etc are enabled or not

Crypto

    • Use this if you have no clue which type of cipher it is.

  • General

  • RSA:

      • Best for factorizing etc

    • Also some scripts written in python.

    • libnum

      • Python library

  • md5 hash

Misc

  • For mathematics

    • Use sympy or sage

      • sage:

  • John the ripper

  • Metasploit framwork

  • Git related task:

  • vsftp

    • First thing to check is that if the given vsftp version isn't vulnerable to any kind of know vulnerability

    • Look for all the accesible directories on a server

    • Not always useful but sometime a life saver

Shell

  • Ripgrep

  • strings

  • cat

  • |(pipe)

Leaks

  • Hack scripts

  • books

  • CTF wiki

  • Terminator ?

Other lists

There are already many great lists that would help you during CTF. Some good list to check out are:

    • A very good guide to get an idea about CTFs and different type of challenges

    • Really good and short notes.

    • He keeps track of all the not so common challenges from CTFs

    • Good notes on web challenges

    • Very good notes on WEB and RE/PWN category

    • Good notes on WEB and CRYPTO

caesar:

vignere:

rot:

Substituion:

sympy:

gittools:

Could be simple as:

hydra along with our lovely

trailofbit's

John Hammond's

https://github.com/sullo/nikto
https://github.com/sqlmapproject/sqlmap
https://github.com/radare/radare2
https://github.com/radareorg/cutter
https://github.com/pwndbg/pwndbg
https://github.com/longld/peda
https://github.com/snare/voltron
https://github.com/slimm609/checksec.sh
https://quipqiup.com/
https://cryptii.com/pipes/caesar-cipher
https://www.guballa.de/vigenere-solver
https://www.dcode.fr/rot-cipher
https://www.guballa.de/substitution-solver
I.C calculator
https://quipqiup.com/
https://github.com/Ganapati/RsaCtfTool
https://github.com/ius/rsatool
https://www.alpertron.com.ar/ECM.HTM
https://github.com/hellman/libnum
https://www.md5online.org
https://github.com/sympy/sympy
https://www.openwall.com/john/
https://github.com/magnumripper/JohnTheRipper
https://github.com/rapid7/metasploit-framework
https://github.com/internetwache/GitTools/
https://ctftime.org/writeup/12060
https://en.wikipedia.org/wiki/Vsftpd
dirb
rockyou.txt
https://github.com/BurntSushi/ripgrep
https://gitlab.com/glicOne/shadowbroker
https://gitlab.com/glicOne/hack_scripts
https://gitlab.com/glicOne/knowledge-base
https://github.com/RomaniukVadim/knowledge-base
https://gitlab.com/glicOne/ctf-wiki
https://gitlab.com/glicOne/Terminator
CTF Guide
CTF Katana
CTF Candy
Security tips
CTF Wiki
Knowledge base