[oss] [CNS Bonus] Unbreakable CTF
Razvan Deaconescu
razvan.deaconescu at cs.pub.ro
Thu Jan 28 07:07:22 EET 2021
Iuliana Brinzoi <brinzoi.iuliana at gmail.com> writes:
> Hello
>
> My name is Iuliana Brinzoi and I am a student at the SCPD master's program.
> I have participated in the Unbreakable Romania Online #1 CTF organized by
> CyberEDU, reaching the final position of 17 out of 380 participants.
>
> Below is a brief description of the challenges that I have solved:
>
> 1. better-cat: a reverse engineering task in which the password needed to
> get
> the flag was discovered by executing the "strings" command
>
> 2. notafuzz: a pwn task where the user input was passed as a parameter to a
> printf function and a format string attack allowed me to leak
> the
> flag
>
> 3. the-code: a web task where the flag was in a flag discovered by "dirb"
>
> 4. imagine-that: a misc task which received two indexes for printing some
> content; after many attempts, if the indexes were negative
> and
> big enough, they would display the content of a PNG image
> containing a QR code that gave me the password needed to
> get
> the flag
>
> 5. alien-console: a misc task in which the executable performed the XOR
> operation on the user input string; I have created a
> script
> that generated every possible combination for the flag
> until
> the result displayed contained only 0s
>
> 6. russiandoll: a misc task in which the flag was stored in a file within a
> zip
> file within a zip file etc, just like a russian doll; the
> challenge came from the fact that some archives were
> password
> protected and I had to use password cracking programs such
> as
> "fcrackzip"
>
> 7. tsunami-researcher: a steganography task where I had to analyze a .wav
> file
> using the "audacity" program; after a couple of
> settings
> the flag was visible in the stenogram
Hi, Iuliana.
I added a grade 7 bonus in the gradebook[1].
[1] https://ocw.cs.pub.ro/courses/cns/class-register
Răzvan
More information about the oss
mailing list