Nahuel D. Sánchez Blog
Hello!, As 2025 kicks off I’ll try to write more often. This time I’ll use this month’s post as a guide for my future self in case I brick my router again, but it might be helpful for someone else too. Long story short, I flashed my old TP-Link AC1750 router with OpenWRT and at some point I decided to restore the stock firmware, thinking it was an easy task…
This challenge recreates in an simpler mode a vulnerability found in September 2021 in the UUPS Proxy contract library. The idea is that we have to find a way to execute the selfdestruct() operation in the implementation or logic contract.
Hello everyone! almost finishing my saga for Ethernaut challenges. In today’s post I’ll share my solution for the “Puzzle Wallet” challenge. I hope that you enjoy it!
Hello there! Today’s post covers solutions for Ethernaut challenges 20 and 21.
Continuing the saga for Ethernaut Solutions. My post for today explains how I solved challenges 17 to 19.
Enjoy!
Hi There! Let’s continue reviewing my solutions for Ethernaut. In today’s post, we’ll review challenges 13 to 16.
Hi there, almost finishing this saga!. Today’s post explains how I solved challenge #12 - Climber. So far this level has been the hardest for me. I hope you enjoy the walkthrough. If you want to play with this level, I ported it to Brownie, you can find it here.
In this blog post you’ll read about:
Hi There!. Today’s post continues the saga of solutions to Ethernaut. Today’s post tackles challenges 08 to 12.
Hello everyone, I’m continuing with Damn Vulnerable DeFi challenges. In today’s post I’ll be solving challenge #11 - Backdoor.
This was a very interesting challenge that allowed me to learn and play with the following topics:
I also ported this challenge to my project DVD Brownie, you can solve it using Python.
I hope you enjoy the read!.
Hi There!. I’m continuing writing about my work solving different DeFi wargames and challenges. This time is the turn of Ethernaut. In this first post I’ll detail the solutions for challenges one to seven. I hope that you enjoy it.
Hello! I wanted to continue the habit of publishing regularly. Today’s posts continues our saga solving and porting Damn Vulnerable DeFi challenges. During the last week I spent some time solving challenge #10 - Free Rider. I really liked it as it challenged me learning about the following topics:
loops and msg.valueI’ve ported this challenge to Brownie, you can find it here
Let’s dive into it!.
Hi there! coming back to some writing after a long break. Today’s post continues the saga on Damn Vulnerable DeFi Challenges. I solved and ported to my project Damn Vulnerable DeFi Challenges in Brownie, challenge #9, “Puppet V2”. I hope that you enjoy it.
Hello, coming back from some holidays! I had some time to continue solving Damn Vulnerable Defi Challenges. Today’s post explains the way I approached and solved Challenge 8 - Puppet. Enjoy!.
Hello there, I missed Monday for the second time, but it’s better late than never!. I had some time during the weekend to continue with Damn Vulnerable DeFi Challenges. This time I solved challenge #7, titled “Compromised”. So far is the challenge that I enjoyed the most. I’ll share the way approached it, enjoy!.
Hello!. Today’s post continues with the Damn Vulnerable DeFi Challenges saga. I’ll share my solutions for challenges #5 - The rewarder and #6 - Selfie. I hope that you find it useful!.
Hello there! Continuing with Damn Vulnerable DeFi Challenges, in today’s post I share my solutions for challenges #3 - Truster, and #4 - Side entrance.
Hello! In today’s short blog post I’ll quickly explain how I solved Damn Vulnerable DeFi Challenges “Unstoppable” and “Naive Receiver”.
Hello, happy new year! In the last months of 2021, I’ve been working on this project. Thanks to my friend and colleague Pablo Artuso I started to learn about Blockchain and the challenges and opportunities that this new technology has.
I was quickly interested in the security aspects of smart contracts. As part of my learning process I found damn vulnerable DeFi challenges, created by @tinchoabbate. that seemed a good place to start practicing.
Hi there, I hope that you are doing well!. In this second blog post about Terraform and AWS I’ll try to shared with you what I learned about AWS S3 Buckets and how Terraform can be used to interact with them. This is a brief list of the topics that I plan to cover with today’s post:
As you can see we have a long road ahead!. So, let’s start.
Hello, after some time without posting we are back!. Today’s post will be focused on Terraform. For those that never heard about it, Terraform allows you to build infrastructure as if you were writing code.
I started playing with it mainly for two reasons: In the first place, I’m reading the book Test-Driven Development with Python, and at some point I had to setup my own machine with a webserver to deploy an application. I thought that having some kind of automation for it was a good idea. Secondly, I needed a good excuse to learn some AWS magic, and this was the perfect excuse for that!.
So, in this blogpost I’ll share what I learned about Terraform and my progress from zero to feeling a bit less confused with AWS and the idea of Infrastructure as Code. I’ll show you how to automate the creation of an EC2 Instance running Nginx in a non-default VPC.
Hello! In today’s post I’ll explain my first steps in the fuzzing world. I’ll detail the steps I took to fuzz some code part of the open source code released by TP-Link for the TL-WR841N Router.
Disclaimer: This blog post will be very basic and just cover the fundamentals. No bugs were found but I learned a lot :)
Having the idea of experimenting a bit with fuzzing, I decided to focus my attention towards one of the TL-WR841N services. Specifically the router’s UPnP daemon, running on port TCP and UDP 1900. Doing a quick check, I issued an HTTP request to that port and to my surprise, it answer back with a 404, page not found error.
Hello! In this blogpost we’ll continue with our TP-Link TL-WR841N Saga. Today’s post will explain the steps that I followed to bypass a silly limitation in the Router’s Stock firmware for Latin America (ES) models that did not allow me to install the latest US firmware.
Hi there! In this short blog post I’ll describe the steps that I followed to be able to (remotely) debug a process running in a TP-Link TL-WR841N Router. This has been explained several times and I use this blog post more as a personal note than a post, but maybe it could be useful for someone else.
Hi there! I’m launching a new version of the blog… and needed some good excuse for this, so here we have a new blog post!. This time I decided to take a look at how packers work and for that I had to learn quite a few things about the PE file format, how windows load files and spend a lot of time banging my head against the keyboard.