[Write-up] CSAW CTF 2015 - Recon Julian Cohen 100

One of the easiest challenge in CSAW CTF 2015. Google "Julian Cohen", you can find his twitter: https://twitter.com/HockeyInJune Twitter everywhere! @@ flag{f7da7636727524d8681ab0d2a072d663} --- matnacian --- --- ctf for beginners --- ...

Read More

[Write-up] CSAW CTF 2015 - Recon Alexander Taylor 100

We start with: >>> http://fuzyll.com/csaw2015/start CSAW 2015 FUZYLL RECON PART 1 OF ?: Oh, good, you can use HTTP! The next part is at /csaw2015/<the acronym for my university's hacking club>. OK, let's google "fuzyll". I don't see anything helpful, so I keep googling. With "alexander...

Read More

[Write-up] CSAW CTF 2015 - Crypto notesy 100

notesy 100 269 solves http://52.7.208.12/ The flag is not in the flag{} format. I'm happy when I didn't spend too much time with this challenge. Poor you :v We were given a link. Try some inputs and I can see it's just a substitute cipher.And google for an alphabet english:https://en.wikipedia.org/wiki/English_alphabet(because...

Read More

[Write-up] MMA CTF 2015 - QR code recovery challenge 400

Problem You picked up teared QR code fragments. Recover the flag. Flag is 12 characters without MMA{...}. problem.png problem.png During the opening time  of MMA CTF, I don't know what to do with this picture. When the CTF ended, I googled "QR code recovery challenge" to find the...

Read More

[Write-up] MMA CTF 2015 - Splitted 30

This is an "El Clásico" challenge of forensic, but I found it a little bit difficult to solve. Poor me! T.T We got a pcap file here, but like a habit, when waiting Wireshark open the splitted.pcap, I foremost it: Really, easy??? I went to /splitted/output/zip and open the zip file, but it was...

Read More

[Write-up] MMA CTF 2015 - Nagoya Castle 100

I can't understand this 100-challenge :D We are given an image: Use a stego tool named Stegsolve: https://www.wechall.net/forum/show/thread/527/Stegsolve_1.3/page-1 Open this "awesome" image and view it in "Red plane 0". Bingo! --- matnacian --- --- ctf for beginners -...

Read More

[Write-up] MMA CTF 2015 - Pattern Lock 20

Problem In android smartphone, you can use "pattern lock". Pattern lock use 9 dots(3x3) on the screen in the figure below. The following figures are examples of lock pattern.   Lock pattern must satisfy following three conditions. Use at most once each dot. Use at least 4 dots. Cannot...

Read More

[Tips] Useful sites for CTF

I. Encode - Decode - Encrypt - Decrypt: http://www.hashkiller.co.uk/ - MD5, SHA1 decrypt http://www.dcode.fr/ - ... http://quipqiup.com/ - Substitute http://planetcalc.com/1434/ - Caesar http://symbolhound.com/ - Strange symbol http://ayra.ch/service/vbs/vbs.asp/ - Visual basic http://jsfuck.com/ - Javascript http://www.cryptoclub.org/ - http://whitespace.kauaveel.ee/ - Esolang http://factordb.com/index.php?query=1907...

Read More

[Write-up] MMA CTF 2015 - MQAAAA 70

Problem I0B+Xk1RQUFBQT09CVVtLmJ3RFIrMXRLY0p0SCkJRHRubTZWbFRtaEtETnxyZHtLNDZFZG1DT2JXVThyYmpSSUFBQT09XiN+QA== It's easy to see that's base64 encoded. Decode this string: #@~^MQAAAA== Um.bwDR+1tKcJtH) Dtnm6VlTmhKDN|rd{K46EdmCObWU8rbjRIAAA==^#~@"MQAAAA"! Yes, we are on the right way.Just google "MQAAAA" and you can find this link:  LANGUAGE = VBScript.Encode %> <%#@~^CgAAAA==[b ... www.rzc.com.cn/images/images.asp OK,...

Read More

[Write-up] OverTheWire Bandit CTF

Hi there, I'm a newbie in CTF, so I create this blog to help ME, and YOU, the ones who really want to improve CTF skills. And the first write-up series are about Bandit CTF: http://overthewire.org/wargames/bandit/ Let's go! Hope we will have great time together! Keep calm and Happy CTF! ^^ Level 0: SSH $ ssh bandit0@bandit.labs.overthewire.org >> Password: bandit0 bandit0@melinda:~$ ls...

Read More