Posted September 8, 20231 yr Seems like the website of Flare-On (http://flare-on.com/) just added a timer; Flare-On 10 is going to start on September 29! I wonder if the medal shipments of last year will be in time before this next installment Who's joining this year? Edited September 8, 20231 yr by Washi
September 9, 20231 yr Author On 9/8/2023 at 5:00 PM, kao said: I don't know... without medals it's not the same... Seems like they had some problems with their previous vendor and that they will start shipping roughly at the same day flare 10 starts.
September 18, 20231 yr The 10th annual Flare-On Challenge begins on September 29th, 2023 at 8:00pm ET. This year's flareon contains 13 challenges! Spoiler This year’s contest will feature 13 challenges covering a variety of architectures, including 32- and 64-bit Windows, Linux, and Android; and even a retro-computing challenge involving PDP-11. Edited September 18, 20231 yr by akkaldama
September 28, 20231 yr Quote #flareon10 Early Registration is now live! https://flare-on10.ctfd.io/register Source: https://twitter.com/nickharbour/status/1707387365407215685
September 29, 20231 yr 2 hours ago, bluedevil said: Did you prepared your VM's? which one is your favorite one
September 29, 20231 yr 3 hours ago, bluedevil said: Did you prepared your VM's? My primary machine actually decided to die on me today... And since I'm "old sk3wl CTFer", I don't have all my infra in the cloud.
October 2, 20231 yr Someone finish the ch#2 ? Spoiler The pictures IV.png and ps.png are important or just another decoy? Thanks ! cheers
October 5, 20231 yr I need a nudge for #5. Spoiler I have decoded multi-stages of the payload. I got to the code where it pops up the message box. I also figured it out how different parts of the code communicate with each other. I also found the hint near the code that popped up the message box. However, I cant seem to locate what the thing/function the hint was pointing at. Thanks in advance!
October 5, 20231 yr @pcmcia: Spoiler you need to find the exact thing that you can't seem to locate. Then feed it with some data. Edited October 5, 20231 yr by kao
October 5, 20231 yr 44 minutes ago, kao said: @pcmcia: Hide contents you need to find the exact thing that you can't seem to locate. Then feed it with some data. Thanks for the reply / nudge! Spoiler I think I found the thing I needed to located. I'm trying to feed it some "data" to unlock it. But I can't seem to find that. Is this some kind of guess work? Also, how long is that "data" I need to feed it? Edited October 5, 20231 yr by pcmcia
October 5, 20231 yr For everyone playing Flare-On this year - no challenge requires a *significant* computing power for bruteforcing large values, or an *unreasonable* guessing game. You might need to Google some things but that's about it. @pcmcia: it's all there, keep looking. I can't tell you anything else w/o giving a full solution.
October 8, 20231 yr Oh... I'm on FlareSay task. How to get that key with a hash, any ideas? It seems not possible to brute that number of bytes. Im pretty sure the result has to be Winning + decrypted string (0x54 bytes) using that key. I wonder if this task is about knowledge in crypto and there is some kind of crypto mistake, or need to search around.. P.S. [LATER] Hah... understand. Crazy. I hadn't been born yet. Edited October 8, 20231 yr by Kolombo
October 8, 20231 yr Author 18 minutes ago, Kolombo said: P.S. [LATER] Hah... understand. Crazy. I hadn't been born yet. Sometimes just narrating what you've done so far really works wonders doesn't it
October 9, 20231 yr I have also a question regarding ch5: Spoiler I found the hint with the crypto algorithm but dont no where to look for it. I have also seen the decryption of the resources but I'm not sure if this is the algorithm that is to be found. Maybe somebody can help Many thanks in advance Spoiler Spoiler
October 9, 20231 yr I just guessed ch5, where it might be and hit the nail from the 1st attempt. It is quite straightforward. I'm really not sure if it is possible to solve other way (if anyone did please tell). So, you have a hint, find where and apply the hint. Actually you have everything at this point. People tend to be lazy to do another way the thing you have already analysed. Edited October 9, 20231 yr by Kolombo added info
October 9, 20231 yr Author @test Spoiler You can find an open source implementation of the algorithm on the web. You can then try to cross-reference it with anything you have found.
October 9, 20231 yr 1 hour ago, Washi said: @test Reveal hidden contents You can find an open source implementation of the algorithm on the web. You can then try to cross-reference it with anything you have found. Thanks for the response. Spoiler Thats what I tried all the time but I'm not really sure if I'm looking at the right spot. I tried to look for constants, but wasn't able to identify anything similar
October 9, 20231 yr Spoiler Hmm.. I think the way to identify the place where the algo using open source implementation is difficult in this case and time consuming. Just need to set a HW BP where the first byte will be written. You have a process creation and the memory where the decryption is done. Just backtrace it, find a call, identify params and use it to decrypt the last stage. That way I did. Edited October 9, 20231 yr by Kolombo
Create an account or sign in to comment