Jump to content
View in the app

A better way to browse. Learn more.
Tuts 4 You

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Flare-On 8

kao
kao
in Reverse Engineering Articles

Featured Replies

3 hours ago, kao said:

@pcmcia: VM1 was one-byte XOR. You should be able to recognize xored data after suffering through Challenge #5.

 

VM2 - CPA. Right now I don't have time and energy for a proper writeup but here are rough steps.

Step 1- create file consisting of 1000 zeroes, exfiltrate it. See that there is a pattern repeating every 0x18 chars, something like this:

image.png.aa6816b02f3529f4004847c1593af7ba.png

Such patterns suggest either a block cipher in ECB mode, or weak crypto. Since I'm not aware of any strong crypto with block size of 0x18 bytes, it must be weak crypto! :) 
Which means - you can create a lookup table for each of 0x18 positions and each of 256 values.

Step 2 - create a file consisting of 0x18 zeroes, followed by 0x18 ones, 0x18 twos and so on. Exfiltrate it.

Step 3 - now you have a lookup table that you can use to decrypt exfiltrated image.

 

Thanks!  That was very helpful.  It seems flare-on is as much as RE challenge and a crypto challenge, evident by ch#5, ch#7 (last part), ch#8, and ch#10.

3 hours ago, kao said:

@pcmcia: VM1 was one-byte XOR. You should be able to recognize xored data after suffering through Challenge #5.

 

VM2 - CPA. Right now I don't have time and energy for a proper writeup but here are rough steps.

Step 1- create file consisting of 1000 zeroes, exfiltrate it. See that there is a pattern repeating every 0x18 chars, something like this:

image.png.aa6816b02f3529f4004847c1593af7ba.png

Such patterns suggest either a block cipher in ECB mode, or weak crypto. Since I'm not aware of any strong crypto with block size of 0x18 bytes, it must be weak crypto! :) 
Which means - you can create a lookup table for each of 0x18 positions and each of 256 values.

Step 2 - create a file consisting of 0x18 zeroes, followed by 0x18 ones, 0x18 twos and so on. Exfiltrate it.

Step 3 - now you have a lookup table that you can use to decrypt exfiltrated image.

 

Actually, one more question.  Since you are building a look up table of 256 possible values (ie. Byte), does that mean the ciphertext size is 24 times bigger than the plaintext size?  Or do you mean the block size is 0x18? But building a lookup table of that size is massive.

Edited by pcmcia

  • Replies 178
  • Views 71.4k
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Most Popular Posts

  • Washi
    Washi

    I just pushed my write-ups for all challenges as well. Could contain some spelling mistakes here and there, but here you go: https://washi1337.github.io/ctf-writeups/writeups/flare-on/2021/

  • Extreme Coders
    Extreme Coders

    Indeed. Started late this year but managed to get all 10 done. Challenge 5 is literally the worst in my opinion. So much for guessing and making sense of all the weird recipes. 😂

  • kao
    kao

    @pcmcia: I wouldn't call FLARE-ON a crypto challenge.  Sure, it deals with encrypted data and some basic knowledge of cryptography is very useful - but it doesn't require you to come up with new and i

Posted Images

  • Author

@pcmcia: I wouldn't call FLARE-ON a crypto challenge. :) Sure, it deals with encrypted data and some basic knowledge of cryptography is very useful - but it doesn't require you to come up with new and innovative ways to solve advanced crypto problems. This year was especially light on crypto problems, you didn't even have to recognize RSA or ElGamal (unlike last year).

 

@all: finally some solutions started to appear online. If you wrote your own solutions or found someone else's writeups, please post a link here! I'm sure we all could learn something new... ;)

 

 

    • Thanks 3
    2 hours ago, Washi said:

    I just pushed my write-ups for all challenges as well. Could contain some spelling mistakes here and there, but here you go:

    https://washi1337.github.io/ctf-writeups/writeups/flare-on/2021/

     

    Always the best ...

    Create an account or sign in to comment

    Go to topic listing

    Configure browser push notifications
    Chrome (Android)
    1. Tap the lock icon next to the address bar.
    2. Tap Permissions → Notifications.
    3. Adjust your preference.
    Chrome (Desktop)
    1. Click the padlock icon in the address bar.
    2. Select Site settings.
    3. Find Notifications and adjust your preference.