DEADFACE CTF 2022 // Dreaming of You

Christian Leipold/ Oktober 18, 2022/ IT-Security, Write-Ups/ 0Kommentare

Dreaming of You TYPE: TRAFFIC ANALYSIS PCAP Challenge Someone doesn´t understand networking traffic. Now I know their deepest crush. Can you find the flag from the PCAP file? Submit the flag as flag{text}. Download File SHA1: 1c99dee5307143e7dad0f0a19e58ad431eb5b8ce Solution Downloaded the provided file and opened it with wireshark. Just searched for flag and here it is: EASY 5 points: flag{longing_for_nancy}

DEADFACE CTF 2022 // Going Old School

Christian Leipold/ Oktober 18, 2022/ IT-Security, Write-Ups/ 0Kommentare

GOING OLD SCHOOL TYPE: CRYPTOGRAPHY Challenge Unable to use their RSA encryption program, luciafer resorts to using old school techniques to send a message out to the team. Can you decipher the code and find the flag? Submit the flag as flag{flag text} Download Image SHA1: 1afcf5cc3a64f3924f27425ed344fbe4545c5554 env.deadface.io Solution The link provided was the following image. At first sight we

Weiterlesen

DEADFACE CTF 2022 // Pandora´s Box

Christian Leipold/ Oktober 18, 2022/ IT-Security, Write-Ups/ 0Kommentare

Pandora´s Box TYPE: CRYPTOGRAPHY Challenge Pandora´s box, we have found it! Even better, the last travelers knew the numbered code to get in but they couldn’t figure out the transcription. Figure out the the transcription’s translation to find the flag! Download Image SHA1: 8e613787658d2d5828448aa182e2bb4904c124a8 Submit the flag as: flag{word_word_word_word} Solution Given was the follwing image So it looks like that

Weiterlesen

DEADFACE CTF 2022 // Passing on Complexity

Christian Leipold/ Oktober 18, 2022/ IT-Security, Write-Ups/ 0Kommentare

Passing on Complexity TYPE: TRAFFIC ANALYSIS PCAP Challenge ESU’s IT staff swears up and down that the backup user’s password is secure and follows best practice. Their internal auditors are not convinced and are asking for your help to determine the backup user’s password at the time of the breach. Submit the flag as flag{password}. Use the packet capture from

Weiterlesen

DEADFACE CTF 2022 // SQL Challenges

Ulli Weichert/ Oktober 17, 2022/ IT-Security, Write-Ups/ 0Kommentare

SQL Challenges Like last year, there were several SQL Challenges that build on each other and whose solutions are discussed below. Prepare SQL To work with the SQL files we suggest to import the backup into a MySQL DBMS, so you can connect to the database and select the infos out of it 🙂 I used a maria-db docker container.

Weiterlesen

DEADFACE CTF 2021: Steganography8 – Syncopated Beat / Writeup

Marco Schmidt/ Oktober 26, 2021/ IT-Security, Write-Ups/ 0Kommentare

Syncopated Beat Points 300 Description We know there’s a hidden message somewhere here, but none of our steg tools are able to reveal it. Maybe we need to think outside the box? It is a well-known fact that demons sometimes hide messages in music. Demons speak lyrics to the musicians, and the demons insinuate their evil messages into the song.

Weiterlesen

DEADFACE CTF 2021: Steganography9 – Spectres / Writeup

Marco Schmidt/ Oktober 26, 2021/ IT-Security, Write-Ups/ 0Kommentare

Spectres Points 450 Description We intercepted this image from a suspected insider threat at De Monne Financial. It looks like parts of the image were cut out, but based on conversations between DEADFACE and the insider, we believe DEADFACE’s wallet address is hidden in this image. Image Getting the flag Take the picture to https://aperisolve.fr/ -> Just read the flag

Weiterlesen

DEADFACE CTF 2021: Cryptography2 – Poor MEGAN! / Writeup

Ulli Weichert/ Oktober 18, 2021/ IT-Security, Write-Ups/ 0Kommentare

Poor MEGAN! Points 20 Description Oh, NO! Poor Megan! She’s just been bitten by a ZOMBIE! We can save her if we act fast, but the formula for the antidote has been scrambled somehow. Figure out how to unscramble the formula to save Megan from certain zombification. Enter the answer as flag{here-is-the-answer}. The formula for the antidote: j2rXjx9dkhW9eLKsnMR9cLDVjh/9dwz1QfGXm+b9=wKslL1Zpb45 Getting the

Weiterlesen