February, 2012 | More Smoked Leet Chicken

Feb 29

CodeGate 2012 Quals – Binary 500

By zyx2145 in Writeups

Seeing that it is not all. Down Summary: VM analysis, python decompiling

2012, binary, codegate, ctf, reverse, vm
Leave comment

Feb 28

CodeGate 2012 Quals – Binary 400

By zyx2145 in Writeups

The Rewolf in Kaspersky Down Summary: unpack file, analyze crashdumps, bruteforce

2012, binary, codegate, ctf
1 comment

Feb 27

CodeGate 2012 Quals – Binary 300

By zyx2145 in Writeups

There are malicious program associated with DDoS zombie. Calcurate the sum of port numbers used for the attack. And, how many times does zombie try to attack? Answer: sum(attack_ports) * attack_count (* : multiplication) Download : 72C4DAA981E17282B12E6226A1D60162 Summary: unpack, malware analyse

2012, binary, codegate, ctf, reverse
Leave comment

Feb 26

CodeGate 2012 Quals Forensic 500 Write-up

By vos in Writeups

This file is Forensic file format which is generally used. Check the information of imaged DISK, find the GUIDs of every partition. Answer: strupr((part1_GUID) XOR (part2_GUID) XOR …) Download : B704361ACF90390C17F6103DF4811E2D Forensic 500 features EWF format container with EFI GPT partition table.

2012, codegate, compression, encase, forensic, gpt, partition, quals, trid, writeup, xor, zlib
Leave comment

Feb 26

CodeGate 2012 Quals Vuln500 Write-up

By vos in Writeups

1.234.41.7:22 ID : yesMan PWD : ohyeah123 Download vulnerable binary. Vuln500 was a hardened format-string vuln with ASLR, NX-stack, no-DTORs, RO .dynamic

2012, aslr, binary, codegate, cookie, CTB, formatstring, nx, quals, stack, writeup
2 comments

Feb 26

CodeGate 2012 Quals – Vuln 400

By hellman in Writeups

Here’s a web-based crypto challenge. Summary: padding oracle attack, bit flipping

2012, 400, codegate, crypto, ctf, padding oracle, python, quals, web
Leave comment

Feb 26

CodeGate 2012 Quals Net400 Write-up

By vos in Writeups

Because of vulnerability of site in Company A, database which contains user’s information was leaked. The file is dumped packet at the moment of attacking. Find the administrator’s account information which was leaked from the site. For reference, some parts of the packet was blind to XXXX. Answer : strupr(md5(database_name|table_name|decode(password_of_admin))) (‘|’is just a character) Download …

2012, blind, bruteforce, codegate, network, pcap, quals, sql injection, writeup
Leave comment

Feb 26

CodeGate 2012 Quals – Vuln 300

By hellman in Writeups

Here we are given ssh credentials where we need to exploit the binary. Summary: compose file to make program jump to stack.

2012, codegate, ctf, exploitation, freebsd, quals, reverse, shellcode, stack
2 comments

Feb 26

CodeGate 2012 Quals – Vuln 200

By hellman in Writeups

This web challenge is again about uploading. Our aim was to get shell. Summary: upload php shell, read the key.

2012, codegate, ctf, php, quals, shell, web
Leave comment

Feb 26

CodeGate 2012 Quals – Vuln 100

By hellman in Writeups

This challenge is a web service where one can upload mp3 files and listen to them. Our aim is to get admin’s song. Summary: sql injection

100, 2012, codegate, ctf, python, quals, sql injection, vuln, web
5 comments

Feb 26

CodeGate 2012 Quals – Binary 200

By zyx2145 in Writeups

Find a printable string that the program would print ultimately. Down (pw: infected) Summary: unpack, XTEA decrypt

2012, binary, codegate, ctf, quals, reverse
1 comment

Feb 13

IFSF CTF #7 (X99) Write-up

By vos in Writeups

this is one of their machines which have very sensitive informations , try to get for us the password 208.64.122.27 PORT : 3000 X99 carries a synthetic vulnerability that allows a char-by-char password bruteforce.