@darkpills cybersecurity blog

Sharing knowledge and experiments on cyber security topics.

BreizhCTF 2024 - Mobile OwnApp and Web Popup Creator Write-ups

2024-05-23 by Vincent MICHEL in write-ups breizhctf, ctf, write-ups

BreizhCTF is the largest physical CTF in France and gathered 600 participants the 17th may 2024. This post is the write-up of 3 excellent challenges written by Worty: 2 mobile challs on “OwnApp” and 1 web on Popup Creator. I’d like to thank all BreizhCTF team for the great work they are doing each year so that this event is a success: BDI, Kaluche, Saax, Icodia, and all the challs creators from ESNA! Read more →

Breaking Java Random PRNG: UYBHYS 2022 challenge Writeup

2022-11-03 by Vincent MICHEL in write-ups unlock-your-brain, ctf, sponsor-challenge, write-ups

A little challenge was introduced on twitter to win a ticket to Unlock Your Brain 2022 conference. This article is a write-up of the solution and explores the implementation of Java Random PRNG. Disclaimer: I am not a cryptographic expert, just a security enthousiast. The conference The conference Unlock Your Brain Harden Your System aka “Unlock” or #UYBHYS is organized since 2015 by the Cantine numérique Brest and DIATEAM in Brest (France). Read more →

Vincent MICHEL (@darkpills)

I work as a pentester in a cyber security company. This blog aims at sharing my thoughts and experiments on different topics if it can help otheres: web and internal penetration tests, vulnerability research, write-ups, exploit development, security best practices, tooling, and so on... I previously worked as a senior software developer and switched to this wonderfull land of security :)