OMG 80 points Solves: 218 Easy I apologize for this one I annoyed myself creating it 🙂 Solving Just cat the file… you will the flag in kind of ascii-art. Maybe you need to zoom out a bit. Here is a screenshot of my console: EZ-CTF{1_HAT3_TH15_FL4G}
No Kidding 70 points Solves: 209 Easy No Other Kids Invent Anything like this…lol Flag Format EZ-CTF{WHATEVER_THE_MESSAGE_IS_ALL_CAPS} Solving This looks like Multi-tap or something similar… let’s just use the numbers and see what happens. I’ll use dcode.fr for this. 8/44/444/7777\\\444/7777\\\8/44/33\\\555/2/6/33/7777/8\\\222/8/333\\\333/555/2/4\\\33/888/33/33/33/33/777 T H I S\\I S\\T H E\\L A M E S T\\C T F\\F L A G\\E V E E
More Sense 60 points Solves: 123 Easy This is too easy! You will make more sense of it in no time! Flag format: EZ-CTF{ALL_CAPS_MESSAGE} File: Morse Sense.txt Solving A quick look at the message and I knew I was f…. lost. A long time I was banging my head against a wall. Because a quick lookup (cipher identifier) just told
McFly 125 points Solves: 14 Easy Riib_fc_I1deo_B1ff3n_Bpz_Yoo_Mdsxfkt_XoPxhatt Flag format: EZ-CTF{D3c0d3d_Message} Solving This is a fun one 🙂 The hint for the challenge is this given picture Okay what do we see here? This is Biff, the oponent of Marty McFly from the back to the future movies… a classic 😀 But something seems off in this picture… in the movie
apache-logs Points: 100 An apache log file that contains recent traffic was pulled from a web server. There is suspicion that an external host was able to access a sensitive file accidentally placed in one of the company website’s directories. Someone’s getting fired… Identify the source IP address that was able to access the file by using the flag format:
photo-op-spot Points: 150 In three words tell me where I stood when I grabbed this picture. Solving Okay we got a picture from a strange tower… lets google for that picture. We’ll find quickly what we are looking for.. the tower is located in Seattle. Public Art "Transforest" Tourist attraction in Seattle, Washington Now we have to find the three
dns-joke Points: 100 Description A system administrator hasn’t smiled in days. Legend has it, there is a DNS joke hidden somewhere in www.jerseyctf.com. Can you help us find it to make our system administrator laugh? Solving To get the flag, check the dns entries of the www.jerseyctf.com subdomain. jerseyctf.com TXT @192.168.178.1 +short "jctf{DNS_J0k3s_t@k3_24_hrs}" This script will help you get the
root-me Points: 400 SSH into the challenge host, 0.cloud.chals.io on port 19777 Username: ubuntu Password: jctf2022! Find the flag Solving We have login credentials for a server… so let’s dive in: ssh ubuntu@0.cloud.chals.io -p 19777 Okay… first we check sudo permissions, therefore just use sudo -l, but we don’t have any permissions. So let’s look for some other quickwins, shall
stolen-data Points: 150 Someone accessed the server and stole the flag. Use the network packet capture to find it. Solving Okay – let’s load the pcap file into wireshark and have a further look. First I tried to download all interessting files… html and so on, but this was a dead end. After that I looked in the statistics and
speedy-at-midi Points: 150 Your partner-in-crime gets a hold of a MIDI file, riff.mid, which intelligence officials claim to contain confidential information. He has tried opening it in VLC Media Player, but it sounds just like the piano riff in riff.mp3. Can you find the right tool to extract the hidden data? Solving Downloaded the files Looked at it wit sonic