You can control the time!

Time in your hands Challenge

1 min readJun 28, 2021

--

You found login source code of the bank on the dark web.You test the administrator password on bank site, but it already changes.How can you exploit this system?

Questions.

What is the problem of this code?
What kind of attack is used?
how you retrieve real password and know its length?

mucomplex

Written by mucomplex

Security consultant and researcher

More from mucomplex

mucomplex

Remote Procedure Call and Active Directory enumeration

Before we start going deeper,let me introduce you what is RPC(Remote Procedure call)?, based on Microsoft documentation:

5 min readJan 28, 2020

--

mucomplex

Python Jailbreak Mastery

If you ever get a second chance in life for something, you’ve got to go all the way. A man deserves a second chance, but keep an eye on…

8 min readApr 4, 2020

--

mucomplex

Undisclosed CVE-2019–19484,CVE-2019–19486,CVE-2019–19487

Last year on October 2019 after one week Centreon 19.04 (version Oct. 16, 2019) release, I manage to found few vulnerabilities that…

4 min readJan 11, 2020

--

mucomplex
in
mucomplex

Bypass with PHP non-alpha encoder

In this tutorial, I will cover PHP non-alpha encoder. I will show some basic concept first before we going deeper which may cause brain…

5 min readJan 10, 2020

--

See all from mucomplex

Recommended from Medium

Unbecoming

10 Seconds That Ended My 20 Year Marriage

It’s August in Northern Virginia, hot and humid. I still haven’t showered from my morning trail run. I’m wearing my stay-at-home mom…

4 min readFeb 16, 2022

--

The PyCoach
in
Artificial Corner

You’re Using ChatGPT Wrong! Here’s How to Be Ahead of 99% of ChatGPT Users

Master ChatGPT by learning prompt engineering.

7 min readMar 17

--

Lists

Stories to Help You Grow as a Software Developer

19 stories64 saves

Leadership

30 stories27 saves

How to Run More Meaningful 1:1 Meetings

11 stories31 saves

Stories to Help You Level-Up at Work

19 stories52 saves

Aleid ter Weel
in
Better Advice

10 Things To Do In The Evening Instead Of Watching Netflix

Device-free habits to increase your productivity and happiness.

5 min readFeb 15, 2022

--

Alexander Nguyen
in
Level Up Coding

Why I Keep Failing Candidates During Google Interviews…

They don’t meet the bar.

4 min readApr 13

--

Somnath Singh
in
JavaScript in Plain English

Coding Won’t Exist In 5 Years. This Is Why

Those who won’t adapt would cease to exist.

8 min readJan 20

--

Alex Mathers

14 things I wish I knew at 25 (now that I’m 38)

I’m writing soon after my 38th birthday. It’s a time to reflect.

4 min readDec 27, 2022

--

See more recommendations

Help
Status
Writers
Blog
Careers
Privacy
Terms
About
Text to speech