Dreaming of You TYPE: TRAFFIC ANALYSIS PCAP Challenge Someone doesn´t understand networking traffic. Now I know their deepest crush. Can you find the flag from the PCAP file? Submit the flag as flag{text}. Download File SHA1: 1c99dee5307143e7dad0f0a19e58ad431eb5b8ce Solution Downloaded the provided file and opened it with wireshark. Just searched for flag and here it is: EASY 5 points: flag{longing_for_nancy}
GOING OLD SCHOOL TYPE: CRYPTOGRAPHY Challenge Unable to use their RSA encryption program, luciafer resorts to using old school techniques to send a message out to the team. Can you decipher the code and find the flag? Submit the flag as flag{flag text} Download Image SHA1: 1afcf5cc3a64f3924f27425ed344fbe4545c5554 env.deadface.io Solution The link provided was the following image. At first sight we
Pandora´s Box TYPE: CRYPTOGRAPHY Challenge Pandora´s box, we have found it! Even better, the last travelers knew the numbered code to get in but they couldn’t figure out the transcription. Figure out the the transcription’s translation to find the flag! Download Image SHA1: 8e613787658d2d5828448aa182e2bb4904c124a8 Submit the flag as: flag{word_word_word_word} Solution Given was the follwing image So it looks like that
Passing on Complexity TYPE: TRAFFIC ANALYSIS PCAP Challenge ESU’s IT staff swears up and down that the backup user’s password is secure and follows best practice. Their internal auditors are not convinced and are asking for your help to determine the backup user’s password at the time of the breach. Submit the flag as flag{password}. Use the packet capture from
Gone But Not Forgotten TYPE: OSINT Challenge It looks like DEADFACE members shared their public keys last month. All of them sent their keys over Signal or email except for spookyboi. He mentioned uploading his key to portal.deadface.io, but none of our analysts can get to the site. Submit the MD5 hash of the public key file as the flag.
Under Public Scrutiny TYPE: OSINT Challenge DEADFACE mentioned on Ghost Town that they have a public GitHub repository. See if you can find a flag hidden that belongs to DEADFACE. Submit the flag as: flag{flag-text}. Solution I´ve started looking at the Ghost Town forum and searched for github. Only two threads – this is first one: So since I now
SQL Challenges Like last year, there were several SQL Challenges that build on each other and whose solutions are discussed below. Prepare SQL To work with the SQL files we suggest to import the backup into a MySQL DBMS, so you can connect to the database and select the infos out of it 🙂 I used a maria-db docker container.
Here are the flags and the walkthrough Shop-Knock Knock Knock Okay then, this should be something easy… lets look for a bunch of logins from the same ip. You could use something like this or even look into the file… cat DownUnderShop.JSON# | jq '. | .origin, .url' | grep -B1 login Then you will see, that the IP of
Ogres are like onions First of all, we do as we are told and download the docker container. Like described in the task, we can do this with docker run -tp 8000:8000 downunderctf/onions After container is started, we can open the webpage provided by the docker container. There are four memes of shrek and one image is not accessable (if
Just the 2 of us solved 150 points Solves: 140 Medium Tell us the name of these 2 musical instruments Flag format: EZ-CTF{Instrument1_Instrument2} (From left to right) Solving This was not as easy as I thought in the first place. I ended up, splitting the two files and search for each of them. For the second one, I found this