https://abalesluke.github.io/I am a passionate developer and a cybersecurity enthusiast! 2025-06-21T16:25:23+08:00 Anikin Luke Abales https://abalesluke.github.io/ Jekyll © 2025 Anikin Luke Abales /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png 2024-05-26T00:00:00+08:00 2024-05-26T00:00:00+08:00 https://abalesluke.github.io/posts/Nahamcon-2024-flyaway1/ Anikin Luke Abales

NahamCon CTF 2024 Lenny Kravitz lovers, this new app cleverly named “Fly Away!” can give you random lines from one of his most popular songs. Can you figure out how the songs are being sent to the app? Writeup Upload the apk to virus total, go to behavior tab and extend the HTTP Request dropdown in the Network Communication section Flag is obtained after performing a curl request to the f...

2024-05-26T00:00:00+08:00 2024-05-26T15:06:25+08:00 https://abalesluke.github.io/posts/Nahamcon-2024-BuggyJumper2/ Anikin Luke Abales

NahamCon CTF 2024 Buggy really wants the drip in the shop… Can you buy it for them? Writeup From the Buggy Jumper-1 I decompiled .gdc files and I also decompile the global.gdc outside the scripts folder (which was not shown in the buggy jumper 1 writeup). Upon reviewing the code in global.gd, we can see that data is being saved without encrypting the values. Using ADB shell to modify the ...

2024-05-26T00:00:00+08:00 2024-05-26T15:05:10+08:00 https://abalesluke.github.io/posts/Nahamcon-2024-BuggyJumper1/ Anikin Luke Abales

NahamCon CTF 2024 Buggy Jumper is a new mobile game that can be enjoyable for both gamers and hackers! There’s a lot going on, can you get some of game’s source code to see whats happening behind the scenes? Writeup Download the com.nahamcon2024.buggyjumper.apk and decompile it using apktool apktool d com.nahamcon2024.buggyjumper.apk Looking at the scripts folder from the decompiled apk ...