start to web and changed steg

vinamrabhatia · May 28, 2014 · 9d9ce56 · 9d9ce56
1 parent cbe02fc
commit 9d9ce56
Show file tree

Hide file tree

Showing 3 changed files with 16 additions and 28 deletions.
diff --git a/topics/cryptography/README.md b/topics/cryptography/README.md
@@ -1,6 +1,6 @@
-#Cryptography
+# Cryptography
 
-##Quick Start
+## Quick Start
 
 1. Is the text relatively small? a few sentences?
 

diff --git a/topics/steganography/invisible-text/README.md b/topics/steganography/invisible-text/README.md
@@ -1,35 +1,21 @@
 # Hidden Text in Images
 
-A simple steganography trick that is often used for watermarks instead of outright steganography is the act of hiding nearly invisible text in images. The text can be hidden by making it nearly invisible (turning down it's opacity to below 5%) or using certain colors and filters on it. Although the text is undiscernable to the naked eye, it is still there, and there are a variety of tools which allow the text to be extracted.
+Text can be hidden by making it nearly invisible (turning down it's opacity to below 5%) or using certain colors and filters on it. Although the text is indiscernible to the naked eye, it is still there, and there are a variety of tools which allow the text to be extracted.
 
-### Example
+## Use
 
-Using the tactics detailed below, can you find the flag in this image?
+* Create
 
-![flag](example.png)
+ * Watermark example [in GIMP](https://www.wikihow.com/Create-Hidden-Watermarks-in-GIMP)
 
-## Detecting
+* Find
 
-Detecting this type of steganography can be somewhat challenging, but once you know it is being used there are a multitude of tools you can use to find the flag. If you find that there are no other files hidden in the image (e.g. .zip files), you should try to find flags hidden with this method.
+ * [GIMP](https://www.gimp.org/) or [Photoshop](https://www.photoshop.com/) can be used to uncover the flag by using different filters and color ranges, as shown in the same [watermark guide](https://www.wikihow.com/Create-Hidden-Watermarks-in-GIMP) as above.
 
-## Solving
+ * [Stegsolve](https://www.wechall.net/forum/show/thread/527/Stegsolve_1.3/page-1) is an immensely useful program for many steganography challenges, allowing you to go through dozens of filters to try to uncover hidden text.
 
-There are multiple ways to find flags hidden in this manner:
+ * There are many scripts that have been written to substitute certain colors and make hidden the text legible, for example [this](https://pastebin.com/46VmzrRU) Ruby script highlights colors passed to it in the image.
 
-* [GIMP](https://www.gimp.org/) or [Photoshop](https://www.photoshop.com/) can be used to uncover the flag by using different filters and color ranges. [This](https://www.wikihow.com/Create-Hidden-Watermarks-in-GIMP) tutorial works remarkably well for finding hidden text.
-
-* [Stegsolve](https://www.wechall.net/forum/show/thread/527/Stegsolve_1.3/page-1) is an immensly useful program for many steganography challenges, allowing you to go through dozens of color filters to try to uncover hidden text.
-
-* There are many scripts that have been written to substitute certain colors and make hidden the text legible, for example [this](https://pastebin.com/46VmzrRU) Ruby script highlights colors passed to it in the image.
-
-## CTF Example
-
-PlaidCTF 2014 had a steganography challenge recently with this image:
-
-![ctf-example](ctf-example.png)
-
-The write-up for this challenge can be found [here](https://github.com/ctfs/write-ups/tree/master/plaid-ctf-2014/doge-stege)
-
-## Sources/See More
+## More
 
 
diff --git a/topics/web/README.md b/topics/web/README.md
@@ -1,10 +1,12 @@
 #Web
 
-Web challenges in CTF competitions usually involve the use of HTTP (or similar protocols) and technologies involved in information transfer and display over the internet like PHP, CMS's (e.g. Django), SQL, Javascript, and more. There are many tools used to access and interact with the web tasks, and choosing the right one is a major facet of the challenges. Although web browsers are the most common and well known way of interacting with the internet, tools like `curl` and `nc` allow for extra options and parameters to be passed and utilized.
+##Quick Start
+
+1. Login field/text input a central part of website? Likely a [SQL injection](./sql-injections/)
 
-###Example
+##About
 
-*To-Do (need a website/server)*
+Web challenges in CTF competitions usually involve the use of HTTP (or similar protocols) and technologies involved in information transfer and display over the internet like PHP, CMS's (e.g. Django), SQL, Javascript, and more. There are many tools used to access and interact with the web tasks, and choosing the right one is a major facet of the challenges. Although web browsers are the most common and well known way of interacting with the internet, tools like `curl` and `nc` allow for extra options and parameters to be passed and utilized.
 
 ##Getting Started