first commit
This commit is contained in:
commit
83827ad7f8
|
@ -0,0 +1,12 @@
|
|||
So, I've heard you're kinda new to cryptography ? </br>
|
||||
</br>
|
||||
Basically, in almost every challenge you'll be provided a ciphertext that will look mostly garbage to you, and your goal will be to recover the original message. </br>
|
||||
Messages are usually encrypted with a well-known cipher, so first step would be to guess the cipher and do some research on how to break it. </br>
|
||||
Here is a list of useful websites: </br>
|
||||
- https://www.dcode.fr/en </br>
|
||||
- https://gchq.github.io/CyberChef/ </br>
|
||||
- https://docs.python.org/3/ (because if you try to solve the crypto challenges in C it will be long and painful) </br>
|
||||
</br>
|
||||
The flag is the decrypted message put into 42CTF{}. </br>
|
||||
Ex: 42CTF{Th1s_1s_a_Fl4g}<br>
|
||||
Good luck !
|
|
@ -0,0 +1,7 @@
|
|||
I tried the same spells as you told me the first time but it didn't work!<br><br>
|
||||
|
||||
Do you think you can help me this time?<br><br>
|
||||
|
||||
<h5>Hint</h5>
|
||||
|
||||
You do not need to reverse the whole given LUA interpreter.
|
|
@ -0,0 +1,3 @@
|
|||
This binary pretends to be an unbreakable chest! I tried for hours but it still resists.<br><br>
|
||||
|
||||
Do you think you can discover its secret?
|
|
@ -0,0 +1,12 @@
|
|||
So, I've heard you're kinda new to web ? </br>
|
||||
</br>
|
||||
Basically, in every challenge you'll be provided a url and you'll need to hack your way through the website. </br>
|
||||
First step is usually to look at the source code of the page, so you'll need to know a bit about html/css/javascript. It will be enough for this first challenge, so you can solve it now and come back to read the remaining later ;)<br><br>
|
||||
|
||||
Of course you'll also need some knowledge about languages you won't see the source code, mainly php and various languages related to databases (such as MySQL). After that, you'll have to exploit the vulnerabilities in the web page. For that, you'll need to identify the features provided by the website and do some research on the associated exploits. </br>
|
||||
Here is some useful links to get you started: </br>
|
||||
- https://developer.mozilla.org/en-US/docs/Tools </br>
|
||||
- https://owasp.org/www-project-top-ten/ </br>
|
||||
- https://portswigger.net/burp </br>
|
||||
</br>
|
||||
Good luck !
|
|
@ -0,0 +1 @@
|
|||
Trust me, it's not that hard
|
|
@ -0,0 +1,13 @@
|
|||
Hi <b>[REDACTED]</b>,<br><br>
|
||||
|
||||
I need your services.<br>
|
||||
Last week, we infiltrated the network of the huge international bank <b>[REDACTED]</b>.<br>
|
||||
When analyzing the network traffic, our compromised workstation discovered a suspicious API thath seems to be the endpoint of a support application.<br>
|
||||
Since we are listening the network, it was used only once.
|
||||
I need you to recover the ticket content.<br><br>
|
||||
|
||||
We are forwarding all the requests to the API for you at <b>challenges.42ctf.org:2001</b>.<br><br>
|
||||
|
||||
Regards,<br><br>
|
||||
|
||||
<b>[REDACTED]</b><br><br>
|
|
@ -0,0 +1 @@
|
|||
Don't look too far
|
|
@ -0,0 +1,40 @@
|
|||
So, I've heard you're kinda new to reverse-engineering ?<br>
|
||||
<br>
|
||||
Basically, in almost every challenge you'll be provided a binary hiding a secret.<br>
|
||||
Your goal is generally to break the secret checking function in order to recover the flag.<br>
|
||||
For this you'll need to understand the assembly code and write back the corresponding C code if you need to (or you can do it in real-time if you're not human).<br>
|
||||
<br>
|
||||
To make it easier, i'll give you the flag checking function only and your task will be to recover which input returns 1.<br>
|
||||
I advise you to do some research about x86 ISA and x86 linux calling convention first.<br>
|
||||
<br>
|
||||
Good luck !<br>
|
||||
<br>
|
||||
<pre style="color:#cecece; padding-left: 15px; background-color:#000; font-weight: bolder;">
|
||||
<code>
|
||||
0000000000001139 <check_secret>:
|
||||
1139: 55 push rbp
|
||||
113a: 48 89 e5 mov rbp,rsp
|
||||
113d: 48 89 7d e8 mov QWORD PTR [rbp-0x18],rdi
|
||||
1141: 48 8b 45 e8 mov rax,QWORD PTR [rbp-0x18]
|
||||
1145: 48 89 45 f8 mov QWORD PTR [rbp-0x8],rax
|
||||
1149: 48 8b 45 f8 mov rax,QWORD PTR [rbp-0x8]
|
||||
114d: 8b 00 mov eax,DWORD PTR [rax]
|
||||
114f: 35 40 20 5b 7f xor eax,0x7f5b2040
|
||||
1154: 89 45 f0 mov DWORD PTR [rbp-0x10],eax
|
||||
1157: 48 8b 45 f8 mov rax,QWORD PTR [rbp-0x8]
|
||||
115b: 48 83 c0 04 add rax,0x4
|
||||
115f: 8b 00 mov eax,DWORD PTR [rax]
|
||||
1161: 35 53 23 59 76 xor eax,0x76592353
|
||||
1166: 89 45 f4 mov DWORD PTR [rbp-0xc],eax
|
||||
1169: 81 7d f0 37 13 37 13 cmp DWORD PTR [rbp-0x10],0x13371337
|
||||
1170: 75 10 jne 1182 <check_secret+0x49>
|
||||
1172: 81 7d f4 37 13 37 13 cmp DWORD PTR [rbp-0xc],0x13371337
|
||||
1179: 75 07 jne 1182 <check_secret+0x49>
|
||||
117b: b8 01 00 00 00 mov eax,0x1
|
||||
1180: eb 05 jmp 1187 <check_secret+0x4e>
|
||||
1182: b8 00 00 00 00 mov eax,0x0
|
||||
1187: 5d pop rbp
|
||||
1188: c3 ret
|
||||
</code>
|
||||
</pre>
|
||||
<br>
|
|
@ -0,0 +1,18 @@
|
|||
Last night I was in a party at 42, chill, then after a few drinks, I managed to get the password of uncle Niel !!</br>
|
||||
Well, he didn't want to give it to me directly but he sent me its MD5 hash saying that I will never crack it hu hu hu ...<br>
|
||||
|
||||
After a few investigations and a little forcing, I ended up knowing roughly its composition, here is the order:<br>
|
||||
- A number between 0 and 42<br>
|
||||
- One of the company he founded<br>
|
||||
- His rank in the top 50 of french fortunes<br>
|
||||
- The first name of a close member of his family.<br>
|
||||
<br>
|
||||
Every word/name begins with a capital letter. Let's make a wordlist and try !<br>
|
||||
<br>
|
||||
Here is the hash : <strong>55d91e34650fd1a804cd94f5f39b34fb</strong></br>
|
||||
<br>
|
||||
|
||||
<h4>Tips</h4>
|
||||
If you have more than 17 years of your life to lose, you can try to crack it with something else than a wordlist you generated.<br>
|
||||
And yes, some values may change over the years, but it will not be a problem for this challenge.<br>
|
||||
Here is the flag format: 42CTF{}
|
|
@ -0,0 +1,6 @@
|
|||
Someone told us that 42ctf was not user-friendly, so we decided to add a gallery of users pics. </br>
|
||||
It's a very simple gallery so we are pretty sure that nothing can go wrong. </br>
|
||||
</br>
|
||||
Don't hesitate to upload some .css though, front dev is a real job and it's definitely not mine (just joking, css won't help you on this challenge)<br><br>
|
||||
|
||||
<b>Fuzzing tools such as dirbuster, dirsearch, gobuster, wfuzz (non-exhaustive list) are useless and forbidden.</b>
|
|
@ -0,0 +1,4 @@
|
|||
Ok it seems like our previous gallery was insecure and some of you managed to hack it. </br>
|
||||
But now there is nothing you can do, since I'm checking the type of every file you try to upload. </br>
|
||||
So be nice and just provide some jpeg. </br>
|
||||
(I'm disappointed that nobody uploaded css on the last challenge though, thus this gallery will be as ugly as the other one)
|
|
@ -0,0 +1,3 @@
|
|||
Don't try to overwrite the saved instruction pointer, you can't 👀<br>
|
||||
<br>
|
||||
When you'll be ready: <b>nc challenges.42ctf.org 3003</b><br>
|
|
@ -0,0 +1,9 @@
|
|||
<h5>Hill Cipher - Known plaintext</h5>
|
||||
|
||||
Our spy has intercepted this message. It contains the meeting place of double agents working for our enemies. Unfortunately, we haven't decrypted it yet. <br><br>
|
||||
|
||||
The only hint we have is the name of the author that our spy has been able to identify: BROWN. <br><br>
|
||||
|
||||
Good luck.<br><br>
|
||||
|
||||
PS: the flag is 42CTF{THEPLACEOFMEETING}
|
|
@ -0,0 +1 @@
|
|||
Be careful! Sometimes, the stack is not reliable as we thought...
|
|
@ -0,0 +1,8 @@
|
|||
So, I've heard you kinda new to steganography ? </br>
|
||||
</br>
|
||||
Basically, in every challenge you'll be provided a file and first step will be te determine its type, because the next steps won't be the same depending on wether you got a jpeg, a pdf or a mp3. The "file" command could be very helpful.</br>
|
||||
Once you've got this info, you'll need to do some research about how to hide messages in this particular file type. Also keep in mind for later challenges that some files can be valid for several types, and that it can be worth to try to unzip files that don't look like zip files. Besides, steganography is traditionaly the art of hiding information into images, so sometimes you'll just have to look very carefully to find the flag.</br>
|
||||
Here is a useful tool to get you started: <a href="https://github.com/exiftool/exiftool">https://github.com/exiftool/exiftool</a>.</br>
|
||||
Doing some research about image metadata can be a good beginning too. </br>
|
||||
</br>
|
||||
Good luck !
|
|
@ -0,0 +1,12 @@
|
|||
So, I've heard you're kinda new to pwn ? </br>
|
||||
</br>
|
||||
Basically, in almost every challenge you'll be provided a binary and an access to our server on which the binary is listening to you. Sometimes you'll also be provided the source code (that's the case for this challenge). </br>
|
||||
Your goal is generally to read the content of a file "flag.txt" on the server. </br>
|
||||
For this you'll need to exploit vulnerabilities of the given binary. So the first step would be to identify those vulnerabilities, and then to do some research to find out how to exploit them. </br>
|
||||
The binary is given to you so that you can try your exploits on your local machine (which has to be running on linux, otherwise you won't be able to run the binary). </br>
|
||||
I advise you to do some research about "buffer overflow" to get you started. </br>
|
||||
</br>
|
||||
When you'll be ready: <b>nc challenges.42ctf.org 3002</b> </br>
|
||||
Good luck ! </br>
|
||||
</br>
|
||||
PS: don't forget to download the files
|
|
@ -0,0 +1,11 @@
|
|||
Beware, 42 students. <br>
|
||||
Norminette v3 is coming. <br><br>
|
||||
|
||||
Luckily for you, here at 42ctf we have the solution. <br>
|
||||
Solve this challenge and you'll never have to worry anymore about norm errors.<br><br>
|
||||
|
||||
<a href="https://www.youtube.com/watch?v=JfkbjiFstoE">TRAILER</a> <br><br>
|
||||
|
||||
----------------------------------<br><br>
|
||||
|
||||
with the participation of <a href="https://www.42ctf.org/accounts/profile/louveet">louveet</a> and <a href="https://www.42ctf.org/accounts/profile/reveng">reveng</a>
|
|
@ -0,0 +1,8 @@
|
|||
Oh no !<br>
|
||||
I refused to gave the tuna of my sandwich to Norminet and he stole us a flag !!<br>
|
||||
Do what you want but I give up, this cat is way too much violent and he's scaring me ! <br>
|
||||
I let you with this picture, that's the only clue we have ...<br>
|
||||
<br>
|
||||
### Tips <br>
|
||||
<br>
|
||||
You will need to put the flag inside 42CTF{} before submitting it.
|
|
@ -0,0 +1,4 @@
|
|||
Sorry I can't translate the title of this challenge because it's a reference to a <a href="https://www.youtube.com/watch?v=2bjk26RwjyU">french song</a>. <br><br>
|
||||
|
||||
|
||||
Anyway, you need to begin somewhere, so let's begin with something very basic.
|
|
@ -0,0 +1 @@
|
|||
A piece of advice to succeed in steganography: be punctillous.
|
|
@ -0,0 +1,3 @@
|
|||
They told us to discard our keys but we find it more eco-friendly to reuse them.<br><br>
|
||||
|
||||
Hint: The flag is inside 42CTF{} and messages are in english.
|
|
@ -0,0 +1,3 @@
|
|||
The new hackers of deep dark net have developped a new market, based on blockchain, they say it's ultra secured. Your mission is to empty their bitcoin wallet.<br><br>
|
||||
|
||||
<b>Fuzzing tools such as dirbuster, dirsearch, gobuster, wfuzz (non-exhaustive list) are useless and forbidden.</b>
|
|
@ -0,0 +1,4 @@
|
|||
You're in a hurry.<br>
|
||||
In its madness, 42CTF administration decided to rule the world by using their nukes management system: Skynout.<br>
|
||||
You've managed to get into the server room of Skynout, but the computer asks you for a password.<br>
|
||||
The fate of the world is in your hands.
|
|
@ -0,0 +1,5 @@
|
|||
This is weird, I never encountered this kind of magic before...<br><br>
|
||||
|
||||
My magic teacher told me about "byte code" but i don't know what it is.<br><br>
|
||||
|
||||
Could you help me?
|
|
@ -0,0 +1,3 @@
|
|||
Alright, so now it's time to put in practice what you've learnt in the intro challenge. </br>
|
||||
Nothing new, don't forget to download the files and everything will be fine. </br>
|
||||
When you'll be ready: <b>nc challenges.42ctf.org 3001</b>
|
|
@ -0,0 +1,8 @@
|
|||
Our engineer did a differential fautl analysis on a smart card - or rather he began the attack. <br>
|
||||
He went on vacation before the data analysis, so now it's your task, first year intern. <br><br>
|
||||
We'll give you the plaintext, the ciphertext, and 32 faulted ciphertexts. <br>
|
||||
You need to recover the 64 bits key and to submit it in hexadecimal inside the 42CTF{} tag. <br><br>
|
||||
|
||||
Example : 42CTF{1234567890ABCDEF}<br>
|
||||
<br>
|
||||
Good luck.<br>
|
|
@ -0,0 +1,3 @@
|
|||
We've intercepted three messages encrypted with three different public keys. It seems that all the messages have been sent simultaneously. <br><br>
|
||||
|
||||
There's probably very important information hidden in one of them.
|
|
@ -0,0 +1,5 @@
|
|||
We've intercepted this encrypted message and the corresponding public key. <br><br>
|
||||
|
||||
We think it's a password. <br><br>
|
||||
|
||||
PS: the flag is 42CTF{password} (and it's case sensitive)
|
|
@ -0,0 +1,7 @@
|
|||
We've intercepted a text encrypted with an unknown cipher.<br><br>
|
||||
|
||||
We think that it's written in english and that it contains very important information.<br><br>
|
||||
|
||||
<h5>Hint</h5>
|
||||
|
||||
You need to put the flag inside 42CTF{} and to uppercase.
|
|
@ -0,0 +1,12 @@
|
|||
Alors, il paraît que tu débutes en cryptographie ?<br>
|
||||
<br>
|
||||
En fait, dans presque tous les challenges, on te fournira un texte chiffré qui ne ressemblera pas à grand chose pour toi, et ton objectif sera de retrouver le message original.
|
||||
Les messages sont généralement chiffrés à l'aide d'un algorithme bien connu. La première étape consiste donc à deviner l'algorithme et à faire des recherches sur la façon de le casser.
|
||||
Voici une liste de sites Web utiles :<br>
|
||||
- https://www.dcode.fr/en<br>
|
||||
- https://gchq.github.io/CyberChef/<br>
|
||||
- https://docs.python.org/3/ (parce que si tu essayes de résoudre les challenges crypto en C ce sera long et douloureux)<br>
|
||||
<br>
|
||||
Le flag est le message déchiffré mis dans 42CTF{}.<br>
|
||||
Ex: 42CTF{Th1s_1s_a_Fl4g}<br>
|
||||
Bonne chance !
|
|
@ -0,0 +1,15 @@
|
|||
Alors, j'ai entendu que tu débutais en web ?<br><br>
|
||||
|
||||
En fait, dans tous les challenges on te fournira une url, et tu devras hacker ce site internet.<br>
|
||||
La première chose à faire est en général de regarder le code source de la page, donc tu auras besoin de connaitre deux-trois trucs en html/css voire en javascript. Ça suffira pour ce premier challenge, donc tu peux dès à présent le résoudre et revenir lire la suite plus tard ;)<br><br>
|
||||
|
||||
Pour les autres, tu auras également besoin de connaissances dans des langages dont tu ne verras pas le code source, principalement du php, ainsi que pas mal de langages liés aux base de données (comme MySQL).<br>
|
||||
Ensuite, tu devrais exploiter les vulnérabilités de la page web. Pour ça, il te faudra identifier les fonctionnalités du site et faire quelques recherches sur comment les exploiter.<br><br>
|
||||
|
||||
Quelques liens utiles pour démarrer :
|
||||
- https://developer.mozilla.org/en-US/docs/Tools </br>
|
||||
- https://owasp.org/www-project-top-ten/ </br>
|
||||
- https://portswigger.net/burp </br>
|
||||
</br>
|
||||
|
||||
Bon courage !
|
|
@ -0,0 +1 @@
|
|||
Fais moi confiance, ce n'est pas si difficile
|
|
@ -0,0 +1 @@
|
|||
Ne regarde pas trop loin
|
|
@ -0,0 +1,17 @@
|
|||
Hier j'étais en soirée 42, tranquille, puis après quelques verres, j'ai réussi à récupérer le mot de passe de tonton Niel !!</br>
|
||||
Bon il a pas voulu me le donner directement mais il m'a envoyé son hash en MD5 me disant que j'arriverais jamais à le craquer héhéhé...</br>
|
||||
Après quelques investigations et un peu de forcing, j'ai fini par vaguement connaitre sa composition, la voici dans l'ordre :</br>
|
||||
- Un nombre compris entre 0 et 42</br>
|
||||
- Une des boites dont il est le fondateur</br>
|
||||
- Son classement dans le top 50 des fortunes françaises</br>
|
||||
- Le prenom d'un membre proche de sa famille</br>
|
||||
</br>
|
||||
Chaque mot/nom commence par une majuscule. Plus qu'à faire une wordlist et essayer ! </br>
|
||||
</br>
|
||||
Voici le hash : <strong>55d91e34650fd1a804cd94f5f39b34fb</strong></br>
|
||||
</br>
|
||||
<h4>Tips</h4>
|
||||
</br>
|
||||
Si t'as plus de 17 ans de ta vie à perdre, tu peux essayer de le cracker autrement qu'en utilisant une wordlist que t'as généré.</br>
|
||||
Et oui, certaines valeurs peuvent changer au cours du temps mais ça ne te posera pas de problèmes pour ce challenge.<br>
|
||||
Le flag est sous le format : 42CTF{}
|
|
@ -0,0 +1,3 @@
|
|||
N'essaye pas de réécrire le pointer d'instruction sauvé, tu ne peux pas 👀<br>
|
||||
<br>
|
||||
Quand tu seras prêt : <b>nc challenges.42ctf.org 3003</b><br>
|
|
@ -0,0 +1,9 @@
|
|||
Alors, il paraît que tu débutes en stéganogrphie ? </br>
|
||||
</br>
|
||||
En fait, dans chaque challenge on te fournira un fichier, et la première étape sera de determiner son type, car les étapes suivantes ne seront pas les mêmes en fonctions de si tu as récupé un jpeg, un pdf ou un mp3. La commande "file" te sera très utile.</br>
|
||||
|
||||
Une fois que tu auras récupéré cette info, tu devrais faire quelque recherches sur comment cacher des messages dans ce type de fichier particulier. Garde aussi en tête pour les futurs challenges que certains fichiers peuvent être valides pour plusieurs types, et que ça peut valoir le coup d'essayer de dézipper des fichiers qui ne ressemblent pas à des zip. Par ailleurs, la steganogrphie est traditionnellement l'art de cacher des informations dans les images, donc parfois tu auras juste besoin de regarder avec beaucoup d'attention pour trouver le flag.</br>
|
||||
Voici un outil utile pour démarrer : <a href="https://github.com/exiftool/exiftool">https://github.com/exiftool/exiftool</a>.</br>
|
||||
Faire des recherches sur les métadonnées peut aussi être un bon point de départ.</br>
|
||||
</br>
|
||||
Bonne chance !
|
|
@ -0,0 +1,13 @@
|
|||
Alors, il paraît que tu débutes en pwn ? </br>
|
||||
</br>
|
||||
En gros, dans presque tous les challenges, on te donnera un binaire compilé et un accès au serveur sur lequel tu pourras interagir avec le binaire. Parfois on te donnera aussi le code source (c'est le cas pour ce challenge). </br>
|
||||
Ton objectif est généralement de lire le contenu d'un fichier "flag.txt" sur le serveur. </br>
|
||||
Pour ça, tu auras besoin d'exploiter des vulnérabilités sur le binaire donné. Donc la première étape sera d'identifier ces vulnérabilités, puis de faire quelques recherches sur comment les exploiter. </br>
|
||||
On te donne le binaire pour que tu puisses tester tout ça en local sur ta machine (qui doit tourner sur Linux pour la plupart des challenges, sinon le binaire ne s’exécutera pas). </br>
|
||||
Pour ce challenge, je te conseille de chercher "buffer overflow" sur ton moteur de recherche préféré. </br>
|
||||
</br>
|
||||
Quand tu auras réussi à exploiter le binaire sur ta machine, connecte toi au serveur avec cette commande : </br>
|
||||
<b>nc challenges.42ctf.org 3002</b> </br>
|
||||
Bon courage ! </br>
|
||||
</br>
|
||||
PS: n'oublie pas de télécharger les fichiers
|
|
@ -0,0 +1,8 @@
|
|||
Oh no !<br>
|
||||
J'ai refusé de donner le thon de mon sandwich a Norminet, alors pour se venger il nous a volé un flag !!<br>
|
||||
Fais comme tu veux mais moi j'abandonne les recherches ce chat est beaucoup trop violent et il me fait peur ! <br>
|
||||
Je te laisse avec cette image, c'est la seule piste qu'on ait...<br>
|
||||
<br>
|
||||
### Tips <br>
|
||||
<br>
|
||||
Tu devras entourer le flag dans la balise "42CTF{}" avant de le valider.
|
|
@ -0,0 +1 @@
|
|||
Il faut bien commencer quelque part, alors commençons par quelque chose de très basique.
|
|
@ -0,0 +1 @@
|
|||
Un conseil pour réussir dans la stéganographie ? Etre pointilleux.<br><br>
|
|
@ -0,0 +1,3 @@
|
|||
On nous a dit de jeter nos clés mais c'est quand même plus écolo de les réutiliser.<br><br>
|
||||
|
||||
Hint: Le flag est entre les balises 42CTF{} et les messages sont en anglais.
|
|
@ -0,0 +1,4 @@
|
|||
Les neo hackers du darknet profond ont développé un nouveau market, basé sur la blockchain, il serait ultra sécurisé.
|
||||
Votre mission consiste à vider leur wallet bitcoin.<br><br>
|
||||
|
||||
<b>Les outils de fuzzing tels que dirbuster, dirsearch, gobuster, wfuzz (liste non exhaustive) sont inutiles et interdits.</b>
|
|
@ -0,0 +1,3 @@
|
|||
Alors, maintenant il est temps de mettre en pratique ce que vous avez appris dans le challenge d'intro.<br>
|
||||
Rien de nouveau, n'oubliez pas de télécharger les fichiers et tout se passera bien.<br>
|
||||
Quand vous serez prêts : <b>nc challenges.42ctf.org 3001</b>
|
|
@ -0,0 +1,6 @@
|
|||
Nous avons intercepté un texte chiffré avec un système de chiffrement inconnu. <br>
|
||||
<br>
|
||||
Nous pensons que le texte est écrit en anglais et qu'il contient des informations très importantes. <br>
|
||||
<br>
|
||||
|
||||
Le flag est en majuscules, et entre les balises 42CTF{}.
|
Loading…
Reference in New Issue