1. sha1lcode

    • Solved by: samuirai
    • Writeup Author: samuirai

    The name of the challange sha1lcode already hints on the overall idea - writing shellcode that has something todo with sha1 hashes.

    So let's have a first look at the provided binary file:

    $ file sha1lcode-5b43cc13b0fb249726e0ae175dbef3fe
    sha1lcode-5b43cc13b0fb249726e0ae175dbef3fe: ELF 64-bit LSB ...
    Tagged as : sha1lcode hitconctf2014
  2. Be a Robot

    • Solved by: makefu


    First of all, this is a post-mortem solution for pwn200 as we failed to finish it within ctf time both because the challenge was offline alot of the time and that we were not experienced enough to find a solution.

    The challenge was to elevate privileges ...

  3. ROT

    • Solved by: momorientes, exco, ttb, makefu
    • Author First Part: momorientes
    • Author Second Part: makefu


    We got a raw-socket ip and port and when connecting to it we received an ASCII clob. After cracking the code you have to send the passcode back within 2 seconds.

    The == at the end ...

    Tagged as : crackme pwnium2014 captcha
  4. 2048

    Fri 18 July 2014
    By exco
    • Solved by: exco, ttb
    • Writeup Author: exco


    The task was to connect to some ip port 2048 with nc $ nc 2048 and solve 2048, the game in less than 6 minutes. The time was later reduced to 3.5 minutes.

    2048 on that server looked roughly like this:

    2048 bash example

    u ...

    Tagged as : 2048 pwnium2014
  5. Crackme Fast

    • Solved by: ttb,exco,makefu
    • Writeup Author: makefu


    We got an url, and are being told to return the password of the crackme in 3 seconds to

    Analyse what we've got

    at first, look what we receive:

    $ curl ...
    Tagged as : crackme pwnium2014
  6. Crack me

    • Solved by: exco, ttb, makefu
    • Author: momorientes

    QlpoOTFBWSZTWTxSmOAAAAsJAF/gOwAgADEAAAiZMNT0JbKzhCQcyQtA2gNbvXgSvxdyRThQkDxSmOA= was the only information avaliable.
    The trailing = is always a good hint for base64, so we'll try that:

    echo -n QlpoOTFBWSZTWTxSmOAAAAsJAF/gOwAgADEAAAiZMNT0JbKzhCQcyQtA2gNbvXgSvxdyRThQkDxSmOA= | base64 -d                                
                    _à; 0Ôô%²³[½x¿rE8P<R

    While this might look like ...

    Tagged as : crackme pwnium2014
  7. for1 USB Dump

    • Solved by: momorientes, makefu
    • Author: makefu

    Finding the needle in the haystack

    We received an dump file which was loadable via wireshark. The dump looks like some usb-traffic between a computer and a USB-SATA Hard Disk.

    Normally it is a good idea to sort traces by size as bigger packets ...

    Tagged as : crackme pwnium2014 captcha

Page 1 / 1