Jump to content
View in the app

A better way to browse. Learn more.

Tuts 4 You

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Featured Replies

5 hours ago, adicto said:

@Coca

  Reveal hidden contents

don't forget what type of file it originally is. Aside from being a docker export.

 

Spoiler

Check also how Docker images are build and how to run a docker container ;)

 

Edited by tycolli

  • Replies 178
  • Views 71.4k
  • Created
  • Last Reply

Top Posters In This Topic

Most Popular Posts

  • I just pushed my write-ups for all challenges as well. Could contain some spelling mistakes here and there, but here you go: https://washi1337.github.io/ctf-writeups/writeups/flare-on/2021/

  • Extreme Coders
    Extreme Coders

    Indeed. Started late this year but managed to get all 10 done. Challenge 5 is literally the worst in my opinion. So much for guessing and making sense of all the weird recipes. 😂

  • @pcmcia: I wouldn't call FLARE-ON a crypto challenge.  Sure, it deals with encrypted data and some basic knowledge of cryptography is very useful - but it doesn't require you to come up with new and i

Posted Images

Nvm, I'm dump

Edited by confused_daily
I was stupid

I'm kind of stuck on #5. I can't figure out the Reese hint. Can someone give me a hint or DM me. Thanks.

  • Author

@Lamport:

Spoiler

 It's not "Reese", it's "Reese's"! :) Great with banana chips...

 

61rkDQzyG2S._SL1500_.jpg.3adf8535813bd1c275b199a64d298a93.jpg

 

could I DM somebody? I stuck on #7, I  think I very very close flag :<

Update: Nervermind, I got it

Edited by Oggy

Could someone give me a hint on #7?

I have no idea how to start reversing the challenge.

Hello guys,

Can anyone confirm my thinking or  give right direction with #CH-5.

I decrypted a lot of stuff/hints and now i am stuck at SR**BE hint

I am struggling with this hint, but i don't know if i am doing it correctly. I just put the string from the hint as a key and nothing decrypt to usable form. Should i just take the magic string from the hint and use it normally or i have to do some operations with it.

Thank you for help.

 

 

9 hours ago, kao said:

@Lamport:

  Reveal hidden contents

 It's not "Reese", it's "Reese's"! :) Great with banana chips...

 

61rkDQzyG2S._SL1500_.jpg.3adf8535813bd1c275b199a64d298a93.jpg

 

Thanks man, got unstuck and solved the challenge

Can anyone help me with the nudge on challenge 5, to get it started? I believe i have to look for a binary that caused the encryption, where should i at least start looking? can't find anything out of the ordinary in snapshots dir

I have no idea for #4.

I find a suspicious file and it was loaded.

but I cannot understand what to do.

please help me.

On 9/23/2021 at 4:58 PM, sadge said:

Regarding #7

  Reveal hidden contents

I've decrypted a string from the PNG that resembles a flag, and I've also found that it creates two registry values.

I've looked through all stages of the program and still can't find how I'm meant to get the actual flag from the encoded/encrypted string.

Would appreciate any hints...

 

Spoiler

Stuck here as well. It feels like I have to guess the next step 😕

 

For #6:

Spoiler

I'm not sure how to pair the messages/patches to get some meaningful data. So far I only managed to get an executable (that's not running) by combining the 2 server messages in stream 0

Edit: got it

Edited by LLMN

On 9/17/2021 at 4:40 PM, Darth Blue said:

@kao i am on chall #9

  Hide contents

I have found the 4 string (L0ve, 5Ex ...) but i still cannot get how rsa use these as a key!

Thanks for any hint

Spoiler

I got the strings mentioned above too. But does anyone program clash after waitingforsingleobject. There is once I got to CryptDecrypt, is there any encryption involved?

 

Challenge #4

 

Spoiler

Now i know every name for every fish, but i  couldn't realize which is the best sequence, i view a specific order inside the memory but doesn't work

Hello again,

Guys i am so tired with CH5.

Please advice me the last step. I have a password...but what the heck is with this 5th char? When i put password it does not work.

I think i have all letters, problem is with 5th char ...it is not normal?

Can someone DM to me, I will send him a password and i could consult what is wrong with mine?

I am really frustrated with this challenge.

 

 

// EDIT:

I solved it. Thank you for hint.

0xMS = no comment :) never stuff like this.

Edited by ECX
update

Hello,

I've been stuck in #6 for several days now, can't figure out how to combine the 

two files of stream 0, a little nudge would be greatly appreciated.

Challenge #9

Spoiler

@kao I sent valid packets for decryption and I reached the CryptDecrypt function. But there is no flag there .😪

 

  • Author

@coco: then you didn't send the right data. :) You're close, just one small step is missing...

Anyone willing to chat with me about 7. I've been stuck on it for a few days now. I've made progress, but feel like I'm wandering aimlessly.

On 9/21/2021 at 6:16 PM, Washi said:

@Hacktreides@0X7C9

  Hide contents

While you do not know the key, you do know its size and you also know something about the format of the final plaintext that should come out of it when using that key.

 

Are all the last letters in the final output is printable?

On 9/28/2021 at 2:33 AM, unionselect said:

Anyone willing to chat with me about 7. I've been stuck on it for a few days now. I've made progress, but feel like I'm wandering aimlessly.

I am available as a rubber ducky in DMs :)

 

2 hours ago, Oggy said:

Are all the last letters in the final output is printable?

 

Spoiler

Would there be a direct consequence if there were unprintable characters in the output?

Hi !

I'm also stuck on #8,

I have a hard time to guess what the key / output should be (I know the key size, I know that the output should be valid JS code and I have rewritten the decryption algorithm in python).

I don't understand how we can guess the key if the output can contain unprintable characters.

 

 

Edited by seloxx

  • Author
1 hour ago, seloxx said:

the output can contain unprintable characters

What makes you think that? :)

 

39 minutes ago, kao said:

What makes you think that? :)

 

I try bruteforce some letter in key and think so 😅, but afterthat, I'm wrong 🙃.
I need read JS more =)))

i'll keep looking, thx

Edited by seloxx

Create an account or sign in to comment

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.