Jump to content
Tuts 4 You

FLARE On Challenge - starts tonight!

kao

By kao,
in General Discussions and Off Topic

Recommended Posts

kao

kao

Posted
Posted (edited)

The FireEye Labs Advanced Reverse Engineering (FLARE) team is hosting its second annual CTF-style challenge for all reverse engineers, malware analysts, and security professionals.

 

...

 

The puzzles start with basic skills and escalate quickly to more difficult reversing tasks. At FLARE we have to deal with whatever challenges come our way, so the challenge reflects this. If you take on the challenge you might see puzzles involving Packers, Mobile platforms, steganography, obfuscated .NET, and so on.

 

The Second FLARE On Challenge will open at July 28, 2015 20:00EDT and close on Sept. 8, 2015 20:00EDT. You can finish any time before Sept. 8 to qualify for a prize.

 

... 

 

After completing the final challenge, you’ll be contacted by a FLARE team member. Once you provide a mailing address we’ll ship you your prize. Last year, the prize was a coin and this year we have something new and special for the winners ;). The full details can be found at: www.flare-on.com.

@moderators: sorry, could not find a better place to post it. ;)

Edited by kao
  • Like 6
Link to comment
  • Replies 124
  • Created
  • Last Reply

Top Posters In This Topic

  • kao

    29

  • Extreme Coders

    19

  • noregret

    11

  • atn

    10

Popular Days

Top Posters In This Topic

Popular Days

Popular Posts

kao
kao

After 27 hours of reversing, I've done it again! https://twitter.com/nickharbour/status/626765867519508480 Now I need to get some sleep.

kao
kao

@moderators: sorry, could not find a better place to post it.

kao
kao

Since he's too shy to write a post here - here are AcidShout's solutions: http://acidshout.github.io/

Extreme Coders

Extreme Coders

Posted
Posted

@kao Impressive Skills. What is the total number of challenges?


 


@madskillz For the first refer to xor encryption.

Link to comment
kao

kao

Posted
  • Author
Posted

@Extreme Coders: 11. The real fun starts from #8. :)


@madskillz: To avoid spoiling it for others I won't be commenting on specific challenges. There is a list of suggested materials on flare-on.com, you can start with those.


Link to comment
Loki

Loki

Posted
Posted

Nice work - congrats Kao :)


 


I took a look at the first one in work yesterday which was a nice eay primer - hoping to get some time over the next couple of weeks to dig through the others :)


Link to comment
GIV

GIV

Posted
Posted

@moderators: sorry, could not find a better place to post it. ;)

Take easy KAO.

Your health is more important than a place on a contest.

Get some rest.

;)

  • Like 1
Link to comment
akkaldama

akkaldama

Posted
Posted

@kao, thanks.

My problem is the syntax of CD ccomand.

I have used square brackets with that.:-().

BTW congrats for the first place.

Link to comment
Extreme Coders

Extreme Coders

Posted
Posted

Challenge 6 is over. But there is a bug in the challenge.


There are 2 possible email addresses which are valid.


 


However only 1 of them accepts an email to progress to the next challenge.

Link to comment
kao

kao

Posted
  • Author
Posted (edited)

Really? Both of them are accepted by Android app?  :smilie3: My tool only found one, and it was a proper one. 

 

You could always ping Nick Harbour ( https://twitter.com/nickharbour/) who's managing the challenge - maybe you get extra points for finding unexpected solutions? :D

EDIT: auto-format broke my twitter link

Edited by kao
Link to comment
Extreme Coders

Extreme Coders

Posted
Posted (edited)

@kao My tool found two. Both are accepted by the android app. There may even be more.


The addresses are proper, i.e. they contain legit chars allowed in an email id.


 


Need to open a twitter account for this :)


 


EDIT:


Alright, he has an email ID too.


Edited by Extreme Coders
Link to comment
ultrain

ultrain

Posted
Posted

@kao Congratulation to u~ :red_indian:


@Extrem Coders: I have just finished Challenge #7, and are going mad by #8.  :saddam:


 


It seemed that "the key" was neither in exe nor png. For I almost analyse all png bytes..


But Likely in twitter... :plane:


Link to comment
kao

kao

Posted
  • Author
Posted

@Extreme Coders: did you finally get the email? If not, you probably found another bug or something. If you want to check your solution, SHA1 of accepted pass starts with 64e7d343....


@antelox: read and follow instructions in the mail. And don't spend too much time debugging it. :)


@ultrain: password is in the PNG but if you look at bytes, you won't see it.


Link to comment
Extreme Coders

Extreme Coders

Posted
Posted (edited)

@kao: No response email till now.. Yes the sha1 starts with those and ends with ....33a6e8f2.


 


EDIT:


Received Challenge #10. Let's see.


Edited by Extreme Coders
Link to comment
AcidShout

AcidShout

Posted
Posted (edited)

Finally completed challenge #10.

However, frankly speaking, this did not look like a Reversing challenge at all.

why do you think so? I just started reversing it, and a driver seems very much like reversing to me :-p

Edited by AcidShout
Link to comment
kao

kao

Posted
  • Author
Posted

It started at 2AM my time - I was too tired and fell asleep before the contest started. So, I actually slept for the first 6 hours of the contest. :) 


 


Thanks!


Link to comment

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Go to topic listing
×
×
  • Create New...