Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Stripe CTF 3.0 - Follow Up

Avatar for Bogdan Gaza Bogdan Gaza
July 01, 2014
Programming
140
1

Stripe CTF 3.0 - Follow Up

From BigData Meetup #4 - Timisoara, June 2014

Avatar for Bogdan Gaza

Bogdan Gaza

July 01, 2014

More Decks by Bogdan Gaza

See All by Bogdan Gaza
Continuous delivery pipelines using Python and Docker
Avatar for Bogdan Gaza hurrycane
1
500
RailsGirls Timisoara - Web Applications
Avatar for Bogdan Gaza hurrycane
2
70
Real time webapps using python
Avatar for Bogdan Gaza hurrycane
3
190

Other Decks in Programming

See All in Programming
L’IA au service des devs : Anatomie d'un assistant de Code Review
Avatar for Thomas Boileau toham
0
180
夢の無限スパゲッティ製造機 -実装篇- #phpstudy
Avatar for hideki kinjyo o0h
PRO
0
190
The free-lunch guide to idea circularity
Avatar for Holly Cummins hollycummins
0
400
我々はなぜ「層」を分けるのか〜「関心の分離」と「抽象化」で手に入れる変更に強いシンプルな設計〜 #phperkaigi / PHPerKaigi 2026
Avatar for shogogg shogogg
2
750
安いハードウェアでVulkan
Avatar for Fadis fadis
1
870
LM Linkで(非力な!)ノートPCでローカルLLM
Avatar for 瀬尾佳隆 seosoft
0
330
「効かない!」依存性注入(DI)を活用したAPI Platformのエラーハンドリング奮闘記
Avatar for Maki Hayashi mkmk884
0
290
PHPのバージョンアップ時にも役立ったAST(2026年版)
Avatar for Atsushi Matsuo matsuo_atsushi
0
280
PHPで TLSのプロトコルを実装してみる
Avatar for higaki higaki_program
0
730
S3ストレージクラスの「見える」「ある」「使える」は全部違う ─ 体験から見た、仕様の深淵を覗く
Avatar for ya_ma23 ya_ma23
0
1.2k
事業会社でのセキュリティ長期インターンについて
Avatar for inlet-back masachikaura
0
200
Everything Claude Code OSS詳細 — 5層構造の中身と導入方法
Avatar for techs-targe targe
0
160

Featured

See All Featured
Making the Leap to Tech Lead
Avatar for Ryan Cromwell cromwellryan
135
9.8k
Deep Space Network (abreviated)
Avatar for Tony Rice tonyrice
0
100
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
Avatar for Eileen M. Uchitelle eileencodes
27
3.4k
Mozcon NYC 2025: Stop Losing SEO Traffic
Avatar for Sam Torres samtorres
0
190
Practical Tips for Bootstrapping Information Extraction Pipelines
Avatar for Matthew Honnibal honnibal
25
1.8k
Practical Orchestrator
Avatar for Shlomi Noach shlominoach
191
11k
Building a Scalable Design System with Sketch
Avatar for Laura Van Doore lauravandoore
463
34k
What the history of the web can teach us about the future of AI
Avatar for Ines Montani inesmontani
PRO
1
500
Amusing Abliteration
Avatar for ianozsvald ianozsvald
1
150
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
Avatar for Stéphanie Walter stephaniewalter
287
14k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
Avatar for Vitaly Friedman smashingmag
254
22k
Easily Structure & Communicate Ideas using Wireframe
Avatar for Afnizar Nur Ghifari afnizarnur
194
17k

Transcript

  1. A distributed systems challenge: Stripe CTF Bogdan Gâza Big Data

    #5 Bogdan Gâza

  2. Big Data #5 Bogdan Gâza $whoami

  3. Big Data #5 Bogdan Gâza

  4. Big Data #5 Bogdan Gâza Level 0 The mysterious program

  5. Big Data #5 Bogdan Gâza

  6. Big Data #5 Bogdan Gâza Different hash: open addressing v

    hash(V) hash(X) x

  7. Big Data #5 Bogdan Gâza Bloom filters N hash functions

    k1 k2 k3 kn probabilistic fals positives / no fals negatives

  8. Big Data #5 Bogdan Gâza Level 1 Gitcoins

  9. Big Data #5 Bogdan Gâza Level 1 Gitcoins

  10. Big Data #5 Bogdan Gâza

  11. Big Data #5 Bogdan Gâza SHA1 - ridiculous parallel bash:

    400 Hash/s stripe go miners: 1.9 MHash/s gpu: 1-2 GHash/s

  12. Big Data #5 Bogdan Gâza Level 2 DDos Defense

  13. Big Data #5 Bogdan Gâza Proxy Node Node Node

  14. Big Data #5 Bogdan Gâza Load balancing algorithm 4 req

    / ip request requests < 25 ms apart Solution

  15. Big Data #5 Bogdan Gâza Level 3 Instant code search

  16. Big Data #5 Bogdan Gâza LB Indexer Indexer Indexer 4

    minutes to index 4 nodes with 500MB of RAM Scala Latency based scoring To pass the level < 0.15s / query Around 100M words Arbitrary substring

  17. Big Data #5 Bogdan Gâza Twitter Stack: finagle / twitter

    server Problem

  18. Big Data #5 Bogdan Gâza

  19. Big Data #5 Bogdan Gâza 1st approach: inverted index vs

    substring search Solution Trie vs substring search marisa / patricia Trie / radix tree / suffix tree vs substring search DAWG vs substring search Sharding

  20. Big Data #5 Bogdan Gâza Level 4 SQLCluster

  21. Big Data #5 Bogdan Gâza SQLite SQLite SQLite SQLite SQLite

    SQLite Unreliable network ! octopus octopus simulates: netsplit / lagsplit / SPOF

  22. Big Data #5 Bogdan Gâza Consensus Reliability in the presence

    of faulty processes examples: who can commit to the DB who is the leader state machine replication

  23. Big Data #5 Bogdan Gâza ZAB - High performance broadcast

    in primary backup systems - 2011 RAFT - Understandable consensus algorithm - 2013 Paxos - Part-time parliament - Laslie Lamport ‘90 Consensus

  24. Big Data #5 Bogdan Gâza ZAB - High performance broadcast

    in primary backup systems - 2011 RAFT - Understandable consensus algorithm - 2013 Paxos - Part-time parliament - Laslie Lamport ‘90 Consensus

  25. Big Data #5 Bogdan Gâza

  26. Big Data #5 Bogdan Gâza

  27. Big Data #5 Bogdan Gâza

  28. Big Data #5 Bogdan Gâza Thanks!