Codehead's Corner
Random ramblings on hacking, coding, fighting with infrastructure and general tech
Posted: 8 Oct 2017 by Codehead
2 minute read

A pretty simple crypto challenge, but the technique is applicable to more complex problems.

Challenge

The smart home system has the function of remote monitoring of what is happening in the home and every few minutes sends pictures of the surveillance cameras to the owner of the house. You successfully intercepted the network traffic of this system, however, its creators took care of the security of their users data and encrypted the pictures. Decrypt the provided image and you will find the flag.

SECRET_ENCRYPTED.PNG


Categories: Hacking CTF
Posted: 8 Oct 2017 by Codehead
5 minute read

The lowest scoring challenge at Kaspersky’s 2017 CTF turned out to be a pretty tricky. Mainly due to weird flag formatting, but also because I am stupid and couldn’t see a blatant clue staring me in the face.

Challenge

Hey! Do you like playing? Are you old school?

Have fun!

Concat answer to KLCTF prefix

OLD_SCHOOL.BIN


Categories: Hacking CTF
Tagged as: #CTF #Kaspersky #NES #Retro
Posted: 20 Sep 2017 by Codehead
3 minute read

I was expecting a keygen or licence key cracking based on the title of this challenge, so revisiting some old protocols that I haven’t used in anger for ages was a nice surprise. The challenge blurb was pretty minimal:

Challenge

Serial

nc misc.chal.csaw.io 4239


Categories: Hacking CTF
Posted: 5 Sep 2016 by Codehead
2 minute read

I almost missed the Tokyo Westerns CTF. I stumbled across the event on the last day and wasn’t able to spend too long on it. I managed a few of challenges, mainly the PPC category. However, I wanted to write up the ‘Glance’ image manipulation challenge for future reference.

Challenge

I saw this through a gap of the door on a train.


Categories: Hacking CTF
Posted: 29 Aug 2016 by Codehead
3 minute read

Here’s a nice little 10 point binary challenge from CTF(x) 2016.

We’re told of a vulnerable service running at problems.ctfx.io 1338. We’re also given the source code:


Categories: Hacking CTF
Posted: 21 Aug 2016 by Codehead
12 minute read

The LabyREnth competition ran from 15th July to 14th Aug. I only managed to find time to do the first Windows challenge. It was a tricky one and I was only able to work at it in fits and starts, often with days or weeks between sessions. However, I learnt quite a few handy new things while working on it, so I’m writing this as a reference for myself and as an example of the dead-ends and rabbit holes of the analysis process for those who are interested.


Categories: Hacking CTF
Posted: 15 May 2016 by Codehead
4 minute read

This was a nice SQL injection challenge from TU CTF.

Challenge

We are trying to find out what our grade was, but we don’t seem to be in the database…

Can you help us out?

http://104.199.151.39/index.html


Categories: Hacking CTF
Posted: 18 Apr 2016 by Codehead
2 minute read

This was a nice little web challenge from sCTF. I’m trying to do more web challenges as it’s one of my weaker areas.

Challenge:

The ducks and I have a unfinished score to settle.
http://ducks.sctf.michaelz.xyz/

Hint:
If you’ve remember HSF, you’ll know that The Ducks is unsolvable.


Categories: Hacking CTF
Posted: 17 Apr 2016 by Codehead
2 minute read

Challenge:

Welcome to Vertinet.

This problem follows the same specifications as the previous Verticode problem, except that you have to solve many of them by developing a client to communicate with the server available at problems1.2016q1.sctf.io:50000. Good luck.


Categories: Hacking CTF
Posted: 17 Apr 2016 by Codehead
3 minute read

This was a nice little challenge from sCTF 2016. I’m trying to work on more tricky stuff, but this one looked like fun and I couldn’t resist.

Challenge:

Welcome to Verticode, the new method of translating text into vertical codes.


Categories: Hacking CTF
Site powered by Hugo.
Polymer theme by pdevty, tweaked by Codehead