ブログトップ 記事一覧 ログイン 無料ブログ開設

piyolog RSSフィード

2015-05-18

Defcon 23 Quals Writeupとかをまとめる予定地

| 09:04 |  Defcon 23 Quals Writeupとかをまとめる予定地を含むブックマーク

2015年5月15日(JST)より開始されたDefcon CTF 23の予選(オンラインCTF)のWriteUpとかをまとめます。

予選結果

有志によるTOP20の推移グラフ

参加チーム数

少なくとも2800人近く、840以上のチームが登録していた模様。

Writeup (1) Baby's First

babycmd 1point

babycmd_3ad28b10e8ab283d7df81795075f600b.quals.shallweplayaga.me:15491

[Download](http://downloads.notmalware.ru/babycmd_3ad28b10e8ab283d7df81795075f600b)

babyecho 1point

babyecho_eb11fdf6e40236b1a37b7974c53b6c3d.quals.shallweplayaga.me:3232

[Download](http://downloads.notmalware.ru/babyecho_eb11fdf6e40236b1a37b7974c53b6c3d)

mathwhiz 1point

mathwhiz_c951d46fed68687ad93a84e702800b7a.quals.shallweplayaga.me:21249

r0pbaby 1point

r0pbaby_542ee6516410709a1421141501f03760.quals.shallweplayaga.me:10436

[Download](http://downloads.notmalware.ru/r0pbaby_542ee6516410709a1421141501f03760)

Writeup (2) Coding Challenge

catwestern 1point

meow

catwestern_631d7907670909fc4df2defc13f2057c.quals.shallweplayaga.me 9999

Writeup (3) Pwnable

cybergrandsandbox 2point

[You'll need these](http://repo.cybergrandchallenge.com/boxes/)

https://github.com/CyberGrandChallenge/cgc-release-documentation/blob/master/walk-throughs/running-the-vm.md

[Pwn This](http://downloads.notmalware.ru/cybergrandsandbox_e722a7ec2ad46b9fb8472db37cb95713)

[This launches it](http://downloads.notmalware.ru/cybergrandsandbox_launcher_cf878d2811220c8793ae9b132d7fd490)

cybergrandsandbox_e722a7ec2ad46b9fb8472db37cb95713.quals.shallweplayaga.me:4347

wibbly wobbly timey wimey 2point

Wibbly Wobbly Timey Wimey

Don't blink!

wwtw_c3722e23150e1d5abbc1c248d99d718d.quals.shallweplayaga.me:2606

[Download](http://downloads.notmalware.ru/wwtw_c3722e23150e1d5abbc1c248d99d718d)

fuckup 3point

fuckup_56f604b0ea918206dcb332339a819344.quals.shallweplayaga.me:2000

OR

fuckup_56f604b0ea918206dcb332339a819344.quals.shallweplayaga.me:46387

[Download](http://downloads.notmalware.ru/fuckup_56f604b0ea918206dcb332339a819344)

twentyfiveseventy 3point

twentyfiveseventy_2809b4d140123e359485305658a2ab40.quals.shallweplayaga.me:1161

[Download](http://downloads.notmalware.ru/twentyfiveseventy_2809b4d140123e359485305658a2ab40)

heapsoffun 4point

If you have been knockedup then you know what to do. Perhaps try "tirer"

sha1sum heapsoffun

5ee5b2cde811e617cd789c73c1d8d2d9e8b27c36

Yes we know the flag is owned by root.

tensixtyseven 4point

tensixtyseven_ed879d24fd6365cf38b6c96b5e077d75.quals.shallweplayaga.me:1161

[Download](http://downloads.notmalware.ru/tensixtyseven_ed879d24fd6365cf38b6c96b5e077d75)

thing2 4point

We have a special guest challenge from thing2.

AppJailLauncher.exe /key:key /port:8200 DconQuals.exe

thing2_e89e83e6cc343256f99fbfe6f434d788.quals.shallweplayaga.me

[Download](http://downloads.notmalware.ru/thing2_e89e83e6cc343256f99fbfe6f434d788)

hackercalc 5point

hackercalc_2e9c870a8449603f8d4b748d78993026.quals.shallweplayaga.me:21222

[Download](http://downloads.notmalware.ru/hackercalc_2e9c870a8449603f8d4b748d78993026)

int3rupted 5point

Connect to int3rupted_3bb8f10793b82841c44a366eb9f27223.quals.shallweplayaga.me, port 0xcccc

secrf 6point

secrf_cdd8445b254189eb39861162d086eb16.quals.shallweplayaga.me:27398

[Download](http://downloads.notmalware.ru/secrf_cdd8445b254189eb39861162d086eb16)

Writeup (4) Reverse Engineering

access control 1point

It's all about who you know and what you want.

access_control_server_f380fcad6e9b2cdb3c73c651824222dc.quals.shallweplayaga.me:17069

[Download Client](http://downloads.notmalware.ru/client_197010ce28dffd35bf00ffc56e3aeb9f)

knockedupd 1point

You went and got it knockedup.

[Download](http://downloads.notmalware.ru/knockedupd_71a592a753bf9dcd7d7ad5fa69b2bab3)

knockedupd_71a592a753bf9dcd7d7ad5fa69b2bab3.quals.shallweplayaga.me

pr0dk3y 2point

Crack me at

pr0dk3y_40687b492c80205cccb34db1eabf6456.quals.shallweplayaga.me:7938

[Download](http://downloads.notmalware.ru/pr0dk3y_40687b492c80205cccb34db1eabf6456)

klug 3point

klug_64eee7bb1da26c44fcb7a15d85a017c9.quals.shallweplayaga.me:52242

[Download](http://downloads.notmalware.ru/klug_64eee7bb1da26c44fcb7a15d85a017c9)

Scrambler 3point

Enhance!

hint: The time of image generation matches the start of the game which can also be viewed on the quals registration page.

[Download](http://downloads.notmalware.ru/scrambler_3ff9e5b9795ac8fc4117da6660ced01b.tar.gz)

shitcpu 3point

shitcpu_5f766bf9fb92aead0ae2de76ea57f21c.quals.shallweplayaga.me:19192

[Download](http://downloads.notmalware.ru/shitcpu_5f766bf9fb92aead0ae2de76ea57f21b)

Writeup (5) Web

Waiting for your Touch 2point

http://waiting-for-your-touch.quals.shallweplayaga.me

HTTP Basic:

username: come-on-and-slam

password: welcome-to-japan

Writeup (6) Miscellaneous

blackbox 2point

Open the box at blackbox_ced7f267475a0299446fa86c26d77161.quals.shallweplayaga.me:18324

patcher 3point

Patch the binary from cybergrandsandbox, and submit it [here](http://patcher_2b00042f7481c7b056c4b410d28f33c1.quals.shallweplayaga.me/patcher/)

[Patch This](http://downloads.notmalware.ru/cybergrandsandbox_e722a7ec2ad46b9fb8472db37cb95713)

過去のdefcon CTF Writeup