Flare-On 10

[Washi]

Seems like the website of Flare-On (http://flare-on.com/) just added a timer; Flare-On 10 is going to start on September 29!

I wonder if the medal shipments of last year will be in time before this next installment

 

Who's joining this year?

Edited September 8, 2023 by Washi

[kao]

I don't know... without medals it's not the same...

</irony>

[Washi]

  On 9/8/2023 at 3:00 PM, kao said:

I don't know... without medals it's not the same...

Expand  

Seems like they had some problems with their previous vendor and that they will start shipping roughly at the same day flare 10 starts.

 

[akkaldama]

The 10th annual Flare-On Challenge begins on September 29th, 2023 at 8:00pm ET. This year's flareon contains 13 challenges!

  Reveal hidden contents

This year’s contest will feature 13 challenges covering a variety of architectures, including 32- and 64-bit Windows, Linux, and Android; and even a retro-computing challenge involving PDP-11.

 

 

Edited September 18, 2023 by akkaldama

[akkaldama]

Deleted

Edited September 20, 2023 by akkaldama

[kao]

  Quote

#flareon10 Early Registration is now live! https://flare-on10.ctfd.io/register

Expand  

Source: https://twitter.com/nickharbour/status/1707387365407215685

[bluedevil]

Did you prepared your VM's?

[Kurapica]

[jackyjask]

  On 9/29/2023 at 7:19 AM, bluedevil said:

Did you prepared your VM's?

Expand  

which one is your favorite one

[kao]

  On 9/29/2023 at 7:19 AM, bluedevil said:

Did you prepared your VM's?

Expand  

My primary machine actually decided to die on me today... And since I'm "old sk3wl CTFer", I don't have all my infra in the cloud.

 

 

[Coca]

Someone finish the ch#2 ?

  Reveal hidden contents

The pictures IV.png and ps.png are important or just another decoy?

Thanks ! cheers

 

[cybercat]

  Reveal hidden contents

yes

 

Edited October 4, 2023 by cybercat

[Coca]

Finally i did it the ch#2. hahaha😂

[pcmcia]

I need a nudge for #5.

  Reveal hidden contents

I have decoded multi-stages of the payload.  I got to the code where it pops up the message box.  I also figured it out how different parts of the code communicate with each other.  I also found the hint near the code that popped up the message box.  However, I cant seem to locate what the thing/function the hint was pointing at.   Thanks in advance!

 

[kao]

@pcmcia:

  Reveal hidden contents

you need to find the exact thing that you can't seem to locate. Then feed it with some data.

 

Edited October 5, 2023 by kao

[pcmcia]

  On 10/5/2023 at 4:01 PM, kao said:

@pcmcia:

  Reveal hidden contents

you need to find the exact thing that you can't seem to locate. Then feed it with some data.

Expand  

Thanks for the reply / nudge!

  Reveal hidden contents

I think I found the thing I needed to located.  I'm trying to feed it some "data" to unlock it.  But I can't seem to find that.   Is this some kind of guess work?  Also, how long is that "data" I need to feed it?

Edited October 5, 2023 by pcmcia

[kao]

For everyone playing Flare-On this year - no challenge requires a *significant* computing power for bruteforcing large values, or an *unreasonable* guessing game. You might need to Google some things but that's about it.

 

@pcmcia: it's all there, keep looking. I can't tell you anything else w/o giving a full solution.

[jackyjask]

editing opcodes directly in memory - that is very confusing approach   (ch#3)

[Kolombo]

Oh... I'm on FlareSay task. How to get that key with a hash, any ideas? It seems not possible to brute that number of bytes. Im pretty sure the result has to be Winning + decrypted string (0x54 bytes) using that key.

I wonder if this task is about knowledge in crypto and there is some kind of crypto mistake, or need to search around..

P.S. [LATER] Hah... understand. Crazy. I hadn't been born yet.

Edited October 8, 2023 by Kolombo

[Washi]

  On 10/8/2023 at 5:56 PM, Kolombo said:

P.S. [LATER] Hah... understand. Crazy. I hadn't been born yet.

Expand  

Sometimes just narrating what you've done so far really works wonders doesn't it

[test]

I have also a question regarding ch5:

  Reveal hidden contents

I found the hint with the crypto algorithm but dont no where to look for it. I have also seen the decryption of the resources but I'm not sure if this is the algorithm that is to be found. Maybe somebody can help

Many thanks in advance

  Reveal hidden contents

  Reveal hidden contents

 

[Kolombo]

I just guessed  ch5, where it might be and hit the nail from the 1st attempt. It is quite straightforward. I'm really not sure if it is possible to solve other way (if anyone did please tell). So, you have a hint, find where and apply the hint.

Actually you have everything at this point. People tend to be lazy to do another way the thing you have already analysed.

Edited October 9, 2023 by Kolombo
added info

[Washi]

@test

  Reveal hidden contents

You can find an open source implementation of the algorithm on the web. You can then try to cross-reference it with anything you have found.

 

[test]

  On 10/9/2023 at 9:43 AM, Washi said:

@test

  Reveal hidden contents

You can find an open source implementation of the algorithm on the web. You can then try to cross-reference it with anything you have found.

 

Expand  

Thanks for the response.

  Reveal hidden contents

Thats what I tried all the time but I'm not really sure if I'm looking at the right spot. I tried to look for constants, but wasn't able to identify anything similar

 

[Kolombo]

  Reveal hidden contents

Hmm.. I think the way to identify the place where the algo using open source implementation is difficult in this case and time consuming. Just need to set  a HW BP where the first byte will be written. You have a process creation and the memory where the decryption is done. Just backtrace it, find a call, identify params and use it to decrypt the last stage. That way I did.

 

Edited October 9, 2023 by Kolombo