Monthly Archives February 2016

Another puzzle we solved late into the piece. We had a TGZ file containig two things a PCAP file and a Clue.txt. The PCAP file contained a single packet with the following data inside: root@kali:~/pragyan/forensics/crack-this# tcpdump -r problem.pcap -A reading from file problem.pcap, link-type EN10MB (Ethernet) 05:59:54.303760 IP localhost.32769 > localhost.9600: UDP, length 20 E..0..@.@.<...........%.....rukgzuzfiuypreymqcja The Clue.txt had just the…

Pragyan CTF might not have been on the CTFTime timetable this year but it ran during the week so we took part. We in fact finished 2nd outright with 1251 points. Equal in points to first place but arriving there later and only one challenge remained unsolved. A minor 35 points for this harmless looking stego challenge so how hard…

Creative challenge that involved several layers of encoding to reveal a flag. The challenge being the obscurity of the first layer. We're given a ZIP containing one file and a clue with some hints that the cipher may be of East German origin. Some googling quickly gives us the name of the cipher "Tapir" which fits as it's an anagram…

Fun and quick challenge this one. The link they give you takes you to a web form which allows you to run PostgreSQL queries: Solving the sha1 proof-of-work challenge is no sweat as we can simply re-use code from before. The complications here are: You cannot use the WHERE clause You only receive the top 3 rows of the query…

Good fun this one, and worth a lot of points also as I solved it very early. It involves a small file of "unknown" data which we're told is probably not complete in the clue. First things first let's grab the file and check it out: root@kali:~/sharif/blocks# file data3 data3: data Ok that's of no help, what about strings: root@kali:~/sharif/blocks#…

I don't really want to get into all of the commentary surrounding HackIM as a CTF. I do recommend if you're interested to know whether HackIM should even be rated on CTFTime you should read the comments there. I agree with the comments there for the most part. This was a 500 point challenge in the cryptography category. This one…

Close