-
Notifications
You must be signed in to change notification settings - Fork 0
/
writeups?page=2.html
410 lines (373 loc) · 32.4 KB
/
writeups?page=2.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
<!DOCTYPE html>
<!--[if lt IE 7]> <html class="ie6 ie" lang="en" dir="ltr"> <![endif]-->
<!--[if IE 7]> <html class="ie7 ie" lang="en" dir="ltr"> <![endif]-->
<!--[if IE 8]> <html class="ie8 ie" lang="en" dir="ltr"> <![endif]-->
<!--[if IE 9]> <html class="ie9 ie" lang="en" dir="ltr"> <![endif]-->
<!--[if !IE]> --> <html lang="en" dir="ltr"> <!-- <![endif]-->
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<link rel="shortcut icon" href="sites/all/themes/open_framework/favicon.ico" type="image/vnd.microsoft.icon" />
<meta name="Generator" content="Drupal 7 (http://drupal.org)" />
<!-- Set the viewport width to device width for mobile -->
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Writeups | BalalaikaCr3w</title>
<style type="text/css" media="all">
@import url("https://ctfcrew.org/modules/system/system.base.css?qtecp0");
@import url("https://ctfcrew.org/modules/system/system.menus.css?qtecp0");
@import url("https://ctfcrew.org/modules/system/system.messages.css?qtecp0");
@import url("https://ctfcrew.org/modules/system/system.theme.css?qtecp0");
</style>
<style type="text/css" media="all">
@import url("https://ctfcrew.org/modules/comment/comment.css?qtecp0");
@import url("https://ctfcrew.org/modules/field/theme/field.css?qtecp0");
@import url("https://ctfcrew.org/modules/node/node.css?qtecp0");
@import url("https://ctfcrew.org/modules/search/search.css?qtecp0");
@import url("https://ctfcrew.org/modules/user/user.css?qtecp0");
@import url("sites/all/modules/views/css/views.css%3Fqtecp0.css");
@import url("sites/all/modules/ckeditor/css/ckeditor.css%3Fqtecp0.css");
</style>
<style type="text/css" media="all">
@import url("sites/all/modules/ctools/css/ctools.css%3Fqtecp0.css");
@import url("sites/all/libraries/syntaxhighlighter_3.0.83/styles/shCore.css%3Fqtecp0.css");
@import url("sites/all/libraries/syntaxhighlighter_3.0.83/styles/shThemeDefault.css%3Fqtecp0.css");
</style>
<style type="text/css" media="all">
@import url("sites/all/themes/open_framework/bootstrap/css/bootstrap.min.css%3Fqtecp0.css");
@import url("sites/all/themes/open_framework/bootstrap/css/bootstrap-responsive.min.css%3Fqtecp0.css");
@import url("sites/all/themes/open_framework/css/open_framework.css%3Fqtecp0.css");
@import url("sites/all/themes/open_framework/css/ie.css%3Fqtecp0.css");
@import url("sites/all/themes/open_framework/jquery.minicolors/jquery.minicolors.css%3Fqtecp0.css");
@import url("sites/all/themes/open_framework/css/jquery.themizer.css%3Fqtecp0.css");
@import url("sites/all/themes/open_framework/css/universal.css%3Fqtecp0.css");
@import url("sites/all/themes/open_framework/font-awesome-4.0.3/css/font-awesome.min.css%3Fqtecp0.css");
</style>
<style type="text/css" media="print">
@import url("sites/all/themes/open_framework/css/open_framework_print.css%3Fqtecp0.css");
</style>
<script type="text/javascript" src="sites/all/modules/jquery_update/replace/jquery/1.8/jquery.min.js%3Fv=1.8.3"></script>
<script type="text/javascript" src="https://ctfcrew.org/misc/jquery.once.js?v=1.2"></script>
<script type="text/javascript" src="https://ctfcrew.org/misc/drupal.js?qtecp0"></script>
<script type="text/javascript" src="sites/all/libraries/syntaxhighlighter_3.0.83/scripts/shCore.js%3Fqtecp0"></script>
<script type="text/javascript" src="sites/all/libraries/syntaxhighlighter_3.0.83/scripts/shAutoloader.js%3Fqtecp0"></script>
<script type="text/javascript" src="sites/default/files/syntaxhighlighter.autoloader.js%3Fqtecp0"></script>
<script type="text/javascript" src="sites/all/themes/open_framework/bootstrap/js/bootstrap.min.js%3Fqtecp0"></script>
<script type="text/javascript" src="sites/all/themes/open_framework/js/open_framework.js%3Fqtecp0"></script>
<script type="text/javascript" src="sites/all/themes/open_framework/js/override.js%3Fqtecp0"></script>
<script type="text/javascript" src="sites/all/themes/open_framework/jquery.minicolors/jquery.minicolors.min.js%3Fqtecp0"></script>
<script type="text/javascript" src="sites/all/themes/open_framework/js/jquery.themizer.js%3Fqtecp0"></script>
<script type="text/javascript" src="sites/all/themes/open_framework/js/universal.js%3Fqtecp0"></script>
<script type="text/javascript">
<!--//--><![CDATA[//><!--
jQuery.extend(Drupal.settings, {"basePath":"\/","pathPrefix":"","ajaxPageState":{"theme":"open_framework","theme_token":"W_NRfRmlYgn0vBtLukRhOp2NQDZAcTiuyDJROsJBCrw","js":{"sites\/all\/modules\/syntaxhighlighter\/syntaxhighlighter.min.js":1,"sites\/all\/modules\/jquery_update\/replace\/jquery\/1.8\/jquery.min.js":1,"misc\/jquery.once.js":1,"misc\/drupal.js":1,"sites\/all\/libraries\/syntaxhighlighter_3.0.83\/scripts\/shCore.js":1,"sites\/all\/libraries\/syntaxhighlighter_3.0.83\/scripts\/shAutoloader.js":1,"sites\/default\/files\/syntaxhighlighter.autoloader.js":1,"sites\/all\/themes\/open_framework\/bootstrap\/js\/bootstrap.min.js":1,"sites\/all\/themes\/open_framework\/js\/open_framework.js":1,"sites\/all\/themes\/open_framework\/js\/override.js":1,"sites\/all\/themes\/open_framework\/jquery.minicolors\/jquery.minicolors.min.js":1,"sites\/all\/themes\/open_framework\/js\/jquery.themizer.js":1,"sites\/all\/themes\/open_framework\/js\/universal.js":1},"css":{"modules\/system\/system.base.css":1,"modules\/system\/system.menus.css":1,"modules\/system\/system.messages.css":1,"modules\/system\/system.theme.css":1,"modules\/comment\/comment.css":1,"modules\/field\/theme\/field.css":1,"modules\/node\/node.css":1,"modules\/search\/search.css":1,"modules\/user\/user.css":1,"sites\/all\/modules\/views\/css\/views.css":1,"sites\/all\/modules\/ckeditor\/css\/ckeditor.css":1,"sites\/all\/modules\/ctools\/css\/ctools.css":1,"sites\/all\/libraries\/syntaxhighlighter_3.0.83\/styles\/shCore.css":1,"sites\/all\/libraries\/syntaxhighlighter_3.0.83\/styles\/shThemeDefault.css":1,"sites\/all\/themes\/open_framework\/bootstrap\/css\/bootstrap.min.css":1,"sites\/all\/themes\/open_framework\/bootstrap\/css\/bootstrap-responsive.min.css":1,"sites\/all\/themes\/open_framework\/fontawesome\/css\/font-awesome.min.css":1,"sites\/all\/themes\/open_framework\/css\/open_framework.css":1,"sites\/all\/themes\/open_framework\/css\/ie.css":1,"sites\/all\/themes\/open_framework\/jquery.minicolors\/jquery.minicolors.css":1,"sites\/all\/themes\/open_framework\/css\/jquery.themizer.css":1,"sites\/all\/themes\/open_framework\/css\/universal.css":1,"sites\/all\/themes\/open_framework\/font-awesome-4.0.3\/css\/font-awesome.min.css":1,"sites\/all\/themes\/open_framework\/css\/open_framework_print.css":1}},"syntaxhighlighter":{"useAutoloader":true}});
//--><!]]>
</script>
<!--[if IE 7]>
<link rel="stylesheet" href="/sites/all/themes/open_framework/fontawesome/css/font-awesome-ie7.min.css">
<![endif]-->
<!-- IE Fix for HTML5 Tags -->
<!--[if lt IE 9]>
<script src="/sites/all/themes/open_framework/js/html5shiv.js"></script>
<![endif]-->
<style type="text/css" media="all">@import url("sites/all/themes/open_framework/css/page.css");</style>
<script type="text/javascript" src="sites/all/themes/open_framework/js/page.js"></script>
</head>
<body class="main-body html not-front not-logged-in one-sidebar sidebar-second page-writeups content-first " >
<a href="writeups%3Fpage=2.html#content" class="element-invisible element-focusable">Skip to content</a>
<a href="writeups%3Fpage=2.html#main-nav" class="element-invisible element-focusable" data-target=".nav-collapse" data-toggle="collapse">Skip to navigation</a>
<!-- /#skipnav -->
<!-- /#admin-shortcuts -->
<div id="header" class="clearfix header" role="banner">
<div class="container">
<div class="row">
<div class="span12">
<div id="logo" class="site-logo"> <a href="index.html" title="Home" rel="home"> <img src="sites/default/files/logo.png" alt="BalalaikaCr3w" role="presentation" /> </a></div>
<!-- /#logo -->
<div id="name-and-slogan">
<div id="site-name" class="site-name"><a href="index.html" title="Home" rel="home">BalalaikaCr3w</a></div>
<div id="site-slogan" class="site-slogan">Russian CTF team</div>
</div>
<!-- /#name-and-slogan -->
</div>
</div>
<div class="social">
<a href="http://twitter.com/BalalaikaCr3w" class="social-item twitter">
<i class="fa fa-twitter"></i>
</a>
</div>
</div>
</div>
<!-- /#header --><div id="main" class="clearfix main" role="main">
<div class="container">
<div id="main-content" class="row main-content">
<div id="content" class="mc-content span9">
<div class="color-pane bg-0D"></div>
<div id="content-wrapper" class="content-wrapper">
<div id="content-head" class="row-fluid content-head">
<h1 class="title" id="page-title"> Writeups </h1>
</div>
<div id="content-body" class="row-fluid content-body"> <div class="region region-content clearfix">
<div id="block-system-main" class="clearfix block block-system"> <div class="content"> <div class="view view-writeups view-id-writeups view-display-id-page view-dom-id-b87886f70d5ba11a85bf91b9fc610b07">
<div class="view-content">
<div class="views-row views-row-1 views-row-odd views-row-first">
<article id="node-78" class="node node-writeup node-promoted node-teaser clearfix"> <div class="bookmark-wrapper">
<div class="type bg-0B">writeup</div>
<div class="bookmark">
<span class="day">02</span>
<span class="month">Oct</span>
</div>
<a href="writeups%3Fpage=2.html#node-78" class="link"><i class="fa fa-link"></i></a>
</div>
<div class="node-wrapper">
<h2><a href="writeup/78.html">ish (pwn 300) </a></h2>
<div class="submitted">
02.10.2014 00:37, by <i class="fa fa-user"></i><span class="username">Dil4rd</span> </div>
<div class="content">
<div class="field field-name-field-category field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Category: </div><div class="field-items"><div class="field-item even"><a href="categories/pwn.html">pwn</a></div></div></div><div class="field field-name-field-event field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Event: </div><div class="field-items"><div class="field-item even"><a href="event/24.html">CSAW CTF Quals 2014</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even"><p> In this task we have x86 ELF binary <a href="https://ctf.isis.poly.edu/static/uploads/8367bdb6eb9cd8725d658c93951ab371/ish">ish</a>, which has been run at 54.208.86.14 9988.</p><p>This binary is one more Unix shell, but with few commands avaliable:</p><p><img src="sites/default/files/writeups/images/pic3_0.png" alt="" height="338" width="646" /></p><p>There is only two intresting commands: lotto and login.</p><p><strong>lotto</strong></p></div></div></div> </div>
<ul class="links inline"><li class="node-readmore first last"><a href="writeup/78.html" rel="tag" title="ish (pwn 300) ">Read more<span class="element-invisible"> about ish (pwn 300) </span></a></li>
</ul> </div>
</article>
</div>
<div class="views-row views-row-2 views-row-even">
<article id="node-77" class="node node-writeup node-promoted node-teaser clearfix"> <div class="bookmark-wrapper">
<div class="type bg-0B">writeup</div>
<div class="bookmark">
<span class="day">02</span>
<span class="month">Oct</span>
</div>
<a href="writeups%3Fpage=2.html#node-77" class="link"><i class="fa fa-link"></i></a>
</div>
<div class="node-wrapper">
<h2><a href="writeup/77.html">s3 (pwn 300)</a></h2>
<div class="submitted">
02.10.2014 00:36, by <i class="fa fa-user"></i><span class="username">Dil4rd</span> </div>
<div class="content">
<div class="field field-name-field-category field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Category: </div><div class="field-items"><div class="field-item even"><a href="categories/pwn.html">pwn</a></div></div></div><div class="field field-name-field-event field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Event: </div><div class="field-items"><div class="field-item even"><a href="event/24.html">CSAW CTF Quals 2014</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even"><p>Task description gives us only service ip, port (54.165.225.121 and 5333 respectively) and <a href="https://ctf.isis.poly.edu/static/uploads/c0828e0381730befd1f7a025057c74fb/s3">binary</a>, named s3.</p></div></div></div> </div>
<ul class="links inline"><li class="node-readmore first last"><a href="writeup/77.html" rel="tag" title="s3 (pwn 300)">Read more<span class="element-invisible"> about s3 (pwn 300)</span></a></li>
</ul> </div>
</article>
</div>
<div class="views-row views-row-3 views-row-odd">
<article id="node-76" class="node node-writeup node-promoted node-teaser clearfix"> <div class="bookmark-wrapper">
<div class="type bg-0B">writeup</div>
<div class="bookmark">
<span class="day">01</span>
<span class="month">Oct</span>
</div>
<a href="writeups%3Fpage=2.html#node-76" class="link"><i class="fa fa-link"></i></a>
</div>
<div class="node-wrapper">
<h2><a href="writeup/76.html">Mining Your Rs and Ss (Crypto 500)</a></h2>
<div class="submitted">
01.10.2014 19:03, by <i class="fa fa-user"></i><span class="username">Mirron</span> </div>
<div class="content">
<div class="field field-name-field-category field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Category: </div><div class="field-items"><div class="field-item even"><a href="categories/crypto.html">crypto</a></div></div></div><div class="field field-name-field-event field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Event: </div><div class="field-items"><div class="field-item even"><a href="event/25.html">Sharif University CTF Quals 2014</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even"><p><em>[To try to solve the task see an attachment below the writeup]</em></p><p>For this particular task we've been given some sort of CA to issue user certificates and authentication part to verify issued user certificate using SSL handshake. The main purpose according to the message provided after authentication is to login with certificate issued to the user named admin. There is no sense telling that one can not do this in ordinary way by requesting it from CA provided.</p></div></div></div> </div>
<ul class="links inline"><li class="node-readmore first last"><a href="writeup/76.html" rel="tag" title="Mining Your Rs and Ss (Crypto 500)">Read more<span class="element-invisible"> about Mining Your Rs and Ss (Crypto 500)</span></a></li>
</ul> </div>
</article>
</div>
<div class="views-row views-row-4 views-row-even">
<article id="node-75" class="node node-writeup node-promoted node-teaser clearfix"> <div class="bookmark-wrapper">
<div class="type bg-0B">writeup</div>
<div class="bookmark">
<span class="day">29</span>
<span class="month">Sep</span>
</div>
<a href="writeups%3Fpage=2.html#node-75" class="link"><i class="fa fa-link"></i></a>
</div>
<div class="node-wrapper">
<h2><a href="writeup/75.html">AES Broken (300)</a></h2>
<div class="submitted">
29.09.2014 12:49, by <i class="fa fa-user"></i><span class="username">Mirron</span> </div>
<div class="content">
<div class="field field-name-field-category field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Category: </div><div class="field-items"><div class="field-item even"><a href="categories/crypto.html">crypto</a></div></div></div><div class="field field-name-field-event field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Event: </div><div class="field-items"><div class="field-item even"><a href="event/25.html">Sharif University CTF Quals 2014</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even"><p>This time we are given a rather long file, presumably ciphertext -- the result of AES transformation weak in some sort of way. After taking a look at it in Sublime we can't find anything wrong with it: indeed, Sublime does normally hang after us trying to make a full-text search through the file. Let's better make it binary and open in some lightweight hex editor.</p></div></div></div> </div>
<ul class="links inline"><li class="node-readmore first last"><a href="writeup/75.html" rel="tag" title="AES Broken (300)">Read more<span class="element-invisible"> about AES Broken (300)</span></a></li>
</ul> </div>
</article>
</div>
<div class="views-row views-row-5 views-row-odd">
<article id="node-74" class="node node-writeup node-promoted node-teaser clearfix"> <div class="bookmark-wrapper">
<div class="type bg-0B">writeup</div>
<div class="bookmark">
<span class="day">29</span>
<span class="month">Sep</span>
</div>
<a href="writeups%3Fpage=2.html#node-74" class="link"><i class="fa fa-link"></i></a>
</div>
<div class="node-wrapper">
<h2><a href="writeup/74.html">Decrypt the message!</a></h2>
<div class="submitted">
29.09.2014 11:12, by <i class="fa fa-user"></i><span class="username">Triff</span> </div>
<div class="content">
<div class="field field-name-field-category field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Category: </div><div class="field-items"><div class="field-item even"><a href="categories/crypto.html">crypto</a></div></div></div><div class="field field-name-field-event field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Event: </div><div class="field-items"><div class="field-item even"><a href="event/25.html">Sharif University CTF Quals 2014</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even"><p><strong>Task:</strong></p><p>Decrypt the message!</p><p>And 'ecnrypted.txt' is attached to task:</p></div></div></div> </div>
<ul class="links inline"><li class="node-readmore first last"><a href="writeup/74.html" rel="tag" title="Decrypt the message!">Read more<span class="element-invisible"> about Decrypt the message!</span></a></li>
</ul> </div>
</article>
</div>
<div class="views-row views-row-6 views-row-even">
<article id="node-73" class="node node-writeup node-promoted node-teaser clearfix"> <div class="bookmark-wrapper">
<div class="type bg-0B">writeup</div>
<div class="bookmark">
<span class="day">29</span>
<span class="month">Sep</span>
</div>
<a href="writeups%3Fpage=2.html#node-73" class="link"><i class="fa fa-link"></i></a>
</div>
<div class="node-wrapper">
<h2><a href="writeup/73.html">Rolling Hash</a></h2>
<div class="submitted">
29.09.2014 09:38, by <i class="fa fa-user"></i><span class="username">Triff</span> </div>
<div class="content">
<div class="field field-name-field-category field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Category: </div><div class="field-items"><div class="field-item even"><a href="categories/crypto.html">crypto</a></div></div></div><div class="field field-name-field-event field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Event: </div><div class="field-items"><div class="field-item even"><a href="event/25.html">Sharif University CTF Quals 2014</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even"><p><strong>Task:</strong></p><pre class="brush: as3; auto-links: true; collapse: false; first-line: 1; html-script: false; smart-tabs: true; tab-size: 4; toolbar: true; codetag">flag="*********"
def RabinKarpRollingHash( str, a, n ):
result = 0
l = len(str)
for i in range(0, l):
result += ord(str[i]) * a ** (l - i - 1) % n
print "result = ", result
RabinKarpRollingHash(flag, 256, 10**30)</pre><p>output is <br />1317748575983887541099 <br />What is the flag?</p><p><strong>Solution:</strong></p></div></div></div> </div>
<ul class="links inline"><li class="node-readmore first last"><a href="writeup/73.html" rel="tag" title="Rolling Hash">Read more<span class="element-invisible"> about Rolling Hash</span></a></li>
</ul> </div>
</article>
</div>
<div class="views-row views-row-7 views-row-odd">
<article id="node-71" class="node node-writeup node-promoted node-teaser clearfix"> <div class="bookmark-wrapper">
<div class="type bg-0B">writeup</div>
<div class="bookmark">
<span class="day">28</span>
<span class="month">Sep</span>
</div>
<a href="writeups%3Fpage=2.html#node-71" class="link"><i class="fa fa-link"></i></a>
</div>
<div class="node-wrapper">
<h2><a href="writeup/71.html">What is this</a></h2>
<div class="submitted">
28.09.2014 01:11, by <i class="fa fa-user"></i><span class="username">azrael</span> </div>
<div class="content">
<div class="field field-name-field-category field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Category: </div><div class="field-items"><div class="field-item even"><a href="categories/stego.html">stego</a></div></div></div><div class="field field-name-field-event field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Event: </div><div class="field-items"><div class="field-item even"><a href="event/25.html">Sharif University CTF Quals 2014</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even"><p>This is most common task where we have two images with black and white pixels and need to XOR them pixel by pixel. Let the white pixel be 1 and black pixel be 0. Further description is not needed. Code is attached. Flag is <strong>AZADI TOWER.</strong></p><p></div></div></div> </div>
<ul class="links inline"><li class="node-readmore first last"><a href="writeup/71.html" rel="tag" title="What is this">Read more<span class="element-invisible"> about What is this</span></a></li>
</ul> </div>
</article>
</div>
<div class="views-row views-row-8 views-row-even">
<article id="node-70" class="node node-writeup node-promoted node-teaser clearfix"> <div class="bookmark-wrapper">
<div class="type bg-0B">writeup</div>
<div class="bookmark">
<span class="day">27</span>
<span class="month">Sep</span>
</div>
<a href="writeups%3Fpage=2.html#node-70" class="link"><i class="fa fa-link"></i></a>
</div>
<div class="node-wrapper">
<h2><a href="writeup/70.html">Hidden message</a></h2>
<div class="submitted">
27.09.2014 23:54, by <i class="fa fa-user"></i><span class="username">azrael</span> </div>
<div class="content">
<div class="field field-name-field-category field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Category: </div><div class="field-items"><div class="field-item even"><a href="categories/stego.html">stego</a></div></div></div><div class="field field-name-field-event field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Event: </div><div class="field-items"><div class="field-item even"><a href="event/25.html">Sharif University CTF Quals 2014</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even"><p>There we got a dump of UDP packets in pcap file.</p><p></div></div></div> </div>
<ul class="links inline"><li class="node-readmore first last"><a href="writeup/70.html" rel="tag" title="Hidden message">Read more<span class="element-invisible"> about Hidden message</span></a></li>
</ul> </div>
</article>
</div>
<div class="views-row views-row-9 views-row-odd">
<article id="node-69" class="node node-writeup node-promoted node-teaser clearfix"> <div class="bookmark-wrapper">
<div class="type bg-0B">writeup</div>
<div class="bookmark">
<span class="day">25</span>
<span class="month">Sep</span>
</div>
<a href="writeups%3Fpage=2.html#node-69" class="link"><i class="fa fa-link"></i></a>
</div>
<div class="node-wrapper">
<h2><a href="writeup/69.html">xorcise (exploit 500)</a></h2>
<div class="submitted">
25.09.2014 16:26, by <i class="fa fa-user"></i><span class="username">Dor1s</span> </div>
<div class="content">
<div class="field field-name-field-category field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Category: </div><div class="field-items"><div class="field-item even"><a href="categories/pwn.html">pwn</a></div></div></div><div class="field field-name-field-event field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Event: </div><div class="field-items"><div class="field-item even"><a href="event/24.html">CSAW CTF Quals 2014</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even"><p>We've got the following binary and its source code: <a href="http://ctfcrew.org/sites/default/files/writeups/xorcise.zip">xorcise</a>.</p><pre class="brush: bash; auto-links: true; collapse: false; first-line: 1; html-script: false; smart-tabs: true; tab-size: 4; toolbar: true; codetag">$ file xorcise
xorcise: ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), dynamically linked
(uses shared libs), for GNU/Linux 2.6.32, not stripped</pre><p>Looking attentively at source code you can find this interesting moment in decipher function:</p></div></div></div> </div>
<ul class="links inline"><li class="node-readmore first last"><a href="writeup/69.html" rel="tag" title="xorcise (exploit 500)">Read more<span class="element-invisible"> about xorcise (exploit 500)</span></a></li>
</ul> </div>
</article>
</div>
<div class="views-row views-row-10 views-row-even views-row-last">
<article id="node-68" class="node node-writeup node-promoted node-teaser clearfix"> <div class="bookmark-wrapper">
<div class="type bg-0B">writeup</div>
<div class="bookmark">
<span class="day">23</span>
<span class="month">Sep</span>
</div>
<a href="writeups%3Fpage=2.html#node-68" class="link"><i class="fa fa-link"></i></a>
</div>
<div class="node-wrapper">
<h2><a href="writeup/68.html">Explicit (pwn 500)</a></h2>
<div class="submitted">
23.09.2014 02:44, by <i class="fa fa-user"></i><span class="username">Dil4rd</span> </div>
<div class="content">
<div class="field field-name-field-category field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Category: </div><div class="field-items"><div class="field-item even"><a href="categories/pwn.html">pwn</a></div></div></div><div class="field field-name-field-event field-type-taxonomy-term-reference field-label-inline clearfix"><div class="field-label">Event: </div><div class="field-items"><div class="field-item even"><a href="event/23.html">No cON Name CTF Quals 2014</a></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even"><p>The task was to find vulnerability in binary service explicit (<a href="http://ctfcrew.org/sites/default/files/writeups/eXPLicit.zip">binary and exploit</a>). Like other tasks at this CTF, this one was easy enouth.</p><p>After downloading file and opening it in IDA I'd found that it's x86 ELF which has no imported functions. Unfortunately Hex-Rays FLIRT didn't help me that time, but x86 decompiler works fine and few minutes was enouth to reconstruct main function and identify high level apis. Result I've got is the next:</p></div></div></div> </div>
<ul class="links inline"><li class="node-readmore first last"><a href="writeup/68.html" rel="tag" title="Explicit (pwn 500)">Read more<span class="element-invisible"> about Explicit (pwn 500)</span></a></li>
</ul> </div>
</article>
</div>
</div>
<h2 class="element-invisible">Pages</h2><div class="item-list"><ul class="pager"><li class="pager-first first"><a title="Go to first page" href="writeups.html">« first</a></li>
<li class="pager-previous"><a title="Go to previous page" href="writeups%3Fpage=1.html">‹ previous</a></li>
<li class="pager-item"><a title="Go to page 1" href="writeups.html">1</a></li>
<li class="pager-item"><a title="Go to page 2" href="writeups%3Fpage=1.html">2</a></li>
<li class="pager-current">3</li>
<li class="pager-item"><a title="Go to page 4" href="writeups%3Fpage=3.html">4</a></li>
<li class="pager-item"><a title="Go to page 5" href="writeups%3Fpage=4.html">5</a></li>
<li class="pager-item"><a title="Go to page 6" href="writeups%3Fpage=5.html">6</a></li>
<li class="pager-item"><a title="Go to page 7" href="writeups%3Fpage=6.html">7</a></li>
<li class="pager-next"><a title="Go to next page" href="writeups%3Fpage=3.html">next ›</a></li>
<li class="pager-last last"><a title="Go to last page" href="writeups%3Fpage=6.html">last »</a></li>
</ul></div>
</div> </div>
</div></div>
<!-- /.region -->
</div>
</div>
<!-- /#content-wrap -->
</div>
<!-- /#content -->
<div id="sidebar-second" class="sidebar span3 site-sidebar-second">
<div class="color-pane bg-0B"></div>
<div class="row-fluid row-block row-block-1">
<div class="region region-sidebar-second clearfix">
<div id="block-system-navigation" class="clearfix block block-system block-menu"> <div class="content"> <ul class="menu nav"><li class="first leaf"><a href="index.html"><i class="fa fa-home"></i>Home</a></li>
<li class="leaf active-trail"><a href="writeups.html" class="active"><i class="fa fa-file-text active-trail"></i>Writeups</a></li>
<li class="leaf"><a href="tools.html"><i class="fa fa-wrench"></i>Tools</a></li>
<li class="last leaf"><a href="blogs.html"><i class="fa fa-users"></i>Blog</a></li>
</ul> </div>
</div>
<div id="block-views-events-block-1" class="clearfix block block-views"> <h2>Last events</h2>
<div class="content"> <div class="view view-events view-id-events view-display-id-block_1 view-dom-id-44626c95c05375580be5f8d18117b750">
<div class="view-content">
<div class="views-row views-row-1 views-row-odd views-row-first">
<div class="views-field views-field-name"> <span class="field-content"><a href="event/32.html">Boston Key Party 2015</a></span> </div> </div>
<div class="views-row views-row-2 views-row-even">
<div class="views-field views-field-name"> <span class="field-content"><a href="event/36.html">Boston Key Party CTF 2016</a></span> </div> </div>
<div class="views-row views-row-3 views-row-odd views-row-last">
<div class="views-field views-field-name"> <span class="field-content"><a href="event/35.html">EKOPARTY PRE-CTF 2015</a></span> </div> </div>
</div>
<div class="more-link">
<a href="events.html">
all events </a>
</div>
</div> </div>
</div>
</div>
<!-- /.region -->
</div>
<div class="color-pane bg-09"></div>
<div class='row-fluid row-block row-block-2'>
<ul class="nav">
<li><a href="user.html"><i class="fa fa-sign-in"></i>Sign in</a></li>
</ul>
</div>
</div>
<!-- /#sidebar-second --> </div>
</div>
</div>
<!-- /#main, /#main-wrapper -->
<script type="text/javascript" src="sites/all/modules/syntaxhighlighter/syntaxhighlighter.min.js%3Fqtecp0"></script>
</body>
</html>