Kick off to a new post series covering 'the narrative' of the last decade of being in an Infosec Operations team. This post will introduce the topics to be covered and give an introduction to the overall reason for doing this - sharing my hard earned knowledge and hopefully inspiring future generations that follow similar paths.

Walkthrough of NSEC 2021's hardware badge 10th and final flag. Unlike the first nine, this flag was captured by dumping the badge firmware, reverse engineering the the firmware to understand the memory storage structure, manually modifying the ESP32 chip's NVS partition, and then finally reflashing the modified firmware back on to the badge.

Walkthrough of the first 9 badge flags for NSEC 2021's hardware badge challenge. The writeup will go through the various in-game solutions as well as the more esoteric ways the flags were discovered. Additionally this will have a first introduction to the ESP32 architecture that while useful in these flag captures was essentially an introduction for the 10th and final flag which required reverse engineering the badge's firmware.

Walkthrough and approach of NSEC2021's the Choir of Infinite Verses challenge. By leveraging an insecure nonce reuse we are able to leverage RC4 Keystream reuse and craft our own modified cookie values.

Walkthrough and approach of the Knight's Siege Arsenal track of NSEC2021. An infrastructure based tracked that focused around ossec, a host intrusion detection system, we were tasked by the Knight Defender of North Sectoria to help test the castle's defences and report any weaknesses.

Overview and walkthrough of a top 20 finish in the 2021 ICPC Qiskit Quantum Challenge with a focus on how the challenges were solved and how complexity was reduced.