HackFu 2015 – Challenge 7 – In Too Deep

Note: This page is part of my write up for the MWR HackFu 2015 Challenge. The start page for this sequence is HERE and the other challenges are listed at the bottom of this post.

This final challenge looked like a bit of binary reversing. The story has our hero trying to gain access the console on the Baron’s spaceship in order to disarm the bomb, we’re told the supplied shipbinary executable needs to run to completion to solve the challenge.
Continue reading

Posted in CTF, Hacking | Leave a comment

HackFu 2015 – Challenge 6 – Open the Gates

Note: This page is part of my write up for the MWR HackFu 2015 Challenge. The start page for this sequence is HERE and the other challenges are listed at the bottom of this post.

Having located the Baron’s crashed spacecraft, we discover that a hardware decoder stands between us and the next passphrase. A circuit diagram with a bunch of logic gates and a huge string of binary are the clues to this puzzle.
Continue reading

Posted in CTF, Hacking | Leave a comment

HackFu 2015 – Challenge 5 – One Ping Only

Note: This page is part of my write up for the MWR HackFu 2015 Challenge. The start page for this sequence is HERE and the other challenges are listed at the bottom of this post.

After completing the last challenge and decrypting the audio file, we find a 1Mb audio file named shipsignal. We’re told that this file holds the location of the Baron’s ship, time is running out and playing back the file only seems to reveal a static hiss.
Continue reading

Posted in CTF, Hacking | 1 Comment

HackFu 2015 – Challenge 4 – Not The Droids You’re Looking For

Note: This page is part of my write up for the MWR HackFu 2015 Challenge. The start page for this sequence is HERE and the other challenges are listed at the bottom of this post.

After opening the safety deposit box, we find an encoded audio file named 'SSH ADMIN SHIP LAST LOCATION TRANSMISSION' and a smartphone. This challenge required the three Android APK applications found on the phone to be manipulated to give up a passphrase.
Continue reading

Posted in CTF, Hacking | Leave a comment

HackFu 2015 – Challenge 3 – What’s In The Box?

Note: This page is part of my write up for the MWR HackFu 2015 Challenge. The start page for this sequence is HERE and the other challenges are listed at the bottom of this post.

Challenge 3 sees our intrepid agent arriving at the Galactic bank and locating the safety deposit box. Unfortunately, the box will only open in response to a passphrase. The challenge is simply presented as a Base64 encoded string in the orders.txt file.
Continue reading

Posted in CTF, Hacking | Leave a comment

HackFu 2015 – Challenge 2 – A Picture Paints a Thousand Words

Note: This page is part of my write up for the MWR HackFu 2015 Challenge. The start page for this sequence is HERE and the other challenges are listed at the bottom of this post.

The second challenge takes place at the high rolling poker tournament. We have managed to bump into Murdox and clone the contents of his phone in the process. The recovered data consists of an email and two files; they appear to be a bitmap image and a text file filled with hexadecimal digits. The email tells us we are looking for a safety deposit box, but where is it?
Continue reading

Posted in CTF, Hacking | Leave a comment

HackFu 2015 – Challenge 1 – Card Counting

Note: This page is part of my write up for the MWR HackFu 2015 Challenge. The start page for this sequence is HERE and the other challenges are listed at the bottom of this post.

The first HackFu2015 challenge places you at the seedy bar, but instead of meeting an informant, we find a murder scene. Our contact is dead, but a few clues can be found including a pack of cards and two notes. It seems that the one of Baron Yapster’s associates, Mad Murdox will be at an exclusive poker tournament, but we need to discover a pass phrase to get in.
Continue reading

Posted in CTF, Hacking | Leave a comment

HackFu 2015 – Challenge 0 – Getting Started

MWR Labs published their HackFu challenges for 2015 on March 16th. The initial download was a zip file (Link) containing an AES encrypted zip file and a text file with a scenario description, a pass phrase and a block of encrypted text as the next step.

The initial scenario introduced a story with strong hints of 80s classic Sci-Fi like Blade Runner, The Stainless Steel Rat and Douglas Adams’ Hitch-hiker Series. We are told that an anarchist named Baron Yapster has been arrested, but has a bomb aboard a spaceship which will destroy an entire planet in 60 hours. We will be taking the role of a special operative who will try to avert this disaster. Our first lead is to meet a contact behind a shady bar to discover the next step, but first we need to decode the rest of the message.
Continue reading

Posted in CTF, Hacking | Leave a comment

Hacking a Big Red Button – Part 2

To add some sound to the broken Big Red Button I looked at a bunch of options including pre-built kits like the Maplin message recorder or the TalkingProducts 40sec sound chip. However, all of the kits were a bit bulky to fit in the existing button enclosure and I wanted to use a WAV or MP3 file rather than recording a sound. Digging deeper revealed the ISD Chipcorder and Honsitak HK82x chips that powered many of the kits. These ICs provide most of the functionality in a single package, but like the kits they seemed to be focused on recording and playback. I suspect the original role for these ICs was in devices like telephone answering machines.

A little more searching lead me to the WTV020-SD Module. There seemed to be a bunch of variants on this IC and the WTV020-SD-16P looked perfect for my requirements; a small unit on a 16 Pin DIP, only 17mm x 20mm, 3.3v power, samples played from a microSD Card, a variety of options for controlling the playback and no need for an external amp. I wasted no time in ordering one from eBay for the throwaway price of £4.
Continue reading

Posted in Electronics, Hacking, Hardware | 3 Comments

Hacking a Big Red Button – Part 1

I don’t know much about electronics, but I’ve always been a bit of a tinkerer.

While trying to find a fun project, I decided that it’d be cool to have a ‘Rimshot’ sound effect on demand. There are always terrible jokes being told around the office and an instant ‘Badum-tish!’ is the perfect punchline.

There are loads of novelty sound effect buttons around, but they always come with pre-recorded sounds. I figured I could hack one of these buttons to suit my requirement and learn a bit about electronics in the process.
Continue reading

Posted in All, Electronics, Hardware | Leave a comment