Washi Posted September 16 Share Posted September 16 (edited) The official announcement has just been made: https://cloud.google.com/blog/topics/threat-intelligence/announcing-eleventh-annual-flare-on-challenge. Countdown: https://flare-on.com/ Quote This year’s contest may be the most diverse ever, with 10 challenges covering architectures including Windows, Linux, JavaScript, .NET, YARA, UEFI, Verilog, and Web3. Yes, you read that correctly, there is a YARA challenge this year. Surprised by the YARA and Veriflog entries. I wonder what they have in mind for those. Edited September 16 by Washi 2 1 1 Link to comment Share on other sites More sharing options...
Teddy Rogers Posted September 26 Share Posted September 26 Early registrations still open... https://flare-on11.ctfd.io/ 1 day and 11 hours to go as of this post, launching Sept. 27th 2024 at 8pm EST. Get ready... Ted. 1 Link to comment Share on other sites More sharing options...
jackyjask Posted September 26 Share Posted September 26 not OK: 1 Link to comment Share on other sites More sharing options...
Mr. Jones Posted September 27 Share Posted September 27 I hope you guys will enjoy, will be monitoring here and on X in case any issues occur. I think we bumped up the difficulty this year, or maybe it's me and I'm getting old 2 Link to comment Share on other sites More sharing options...
kao Posted September 27 Share Posted September 27 9 hours ago, Mr. Jones said: we bumped up the difficulty this year Oh boy... I haven't got any vacation days left. 1 Link to comment Share on other sites More sharing options...
Teddy Rogers Posted September 27 Share Posted September 27 3 hours ago, kao said: I haven't got any vacation days left. Sick days or AWOL... 🤔 Ted. 1 Link to comment Share on other sites More sharing options...
CodeExplorer Posted September 27 Share Posted September 27 3 hours ago, kao said: Oh boy... I haven't got any vacation days left. Hi kao. I noticed that you are busy, you didn't even read the last PM I've send you regarding DNGuard trials, or maybe there is a board error and you wasn't notified.... Many thanks again for the DNGuard trials you send me so far. Link to comment Share on other sites More sharing options...
jackyjask Posted September 28 Share Posted September 28 GUYS! THE GAME HAS JUST STARTED! 1 1 Link to comment Share on other sites More sharing options...
jackyjask Posted September 28 Share Posted September 28 @whoknows are you IN? 1 Link to comment Share on other sites More sharing options...
whoknows Posted September 28 Share Posted September 28 no way, no idea! 1 Link to comment Share on other sites More sharing options...
blank Posted September 29 Share Posted September 29 I am completely stuck at problem 5. Can anyone give me a clue as to what I am supposed to look for? 1 Link to comment Share on other sites More sharing options...
pcmcia Posted October 2 Share Posted October 2 Yeah, I got stuck at #5 as well. Here's what I got so far. I think I need a nudge in the right direction. Spoiler I know how the data was stolen. I found and decrypted the shellcode responsible for stealing the data. I know how to talk to shellcode to steal the data. However, I still don't know where the flag is. Any hints? 1 Link to comment Share on other sites More sharing options...
kao Posted October 2 Share Posted October 2 @pcmcia: It seems like you've used only 1 piece of the puzzle. You were given 2. Spoiler Do you know how attackers talked to shellcode? 1 Link to comment Share on other sites More sharing options...
xdbruh1234 Posted October 2 Share Posted October 2 Im also stuck at #5. Spoiler I can't seem to decrypt it holy shit. It just spews out random garbage. I swear I got the correct key. 1 Link to comment Share on other sites More sharing options...
blank Posted October 2 Share Posted October 2 I finally figured it out. @xdbruh1234 Spoiler The second encryption is not standard. 1 Link to comment Share on other sites More sharing options...
xdbruh1234 Posted October 2 Share Posted October 2 5 minutes ago, blank said: I finally figured it out. @xdbruh1234 Hide contents The second encryption is not standard. Spoiler Bruh how? My decompilation for the encryption of the shell code looks the same for the next one 1 Link to comment Share on other sites More sharing options...
eatcreche Posted October 2 Share Posted October 2 (edited) 6 hours ago, xdbruh1234 said: Im also stuck at #5. Hide contents I can't seem to decrypt it holy shit. It just spews out random garbage. I swear I got the correct key. Same issue here as well. Spoiler I thought I had the right key as well and now I'm starting to doubt whether the key is wrong, the file being read is wrong or both. Edited October 2 by eatcreche self-doubt got the better of me 1 Link to comment Share on other sites More sharing options...
danilo Posted October 2 Share Posted October 2 Anyone able to give a nudge for 6? Been stuck on it 😑 1 Link to comment Share on other sites More sharing options...
pcmcia Posted October 2 Share Posted October 2 8 hours ago, kao said: @pcmcia: It seems like you've used only 1 piece of the puzzle. You were given 2. Hide contents Do you know how attackers talked to shellcode? Thanks! Regarding your question... Spoiler Are you referring to the first stage (triggering) or second stage (exfiltration)? If you are referring to the second stage, are there any files that captured the conversations in the second stage? Is there even an ransom note? 1 Link to comment Share on other sites More sharing options...
NativeBridge Posted October 2 Share Posted October 2 Hey guys anybody have hint or help for ch2 checksum? 1 Link to comment Share on other sites More sharing options...
AUP Posted October 3 Share Posted October 3 6 hours ago, NativeBridge said: Hey guys anybody have hint or help for ch2 checksum? Spoiler You may skip a few to continue looking at the bottom 1 Link to comment Share on other sites More sharing options...
M.b Posted October 3 Share Posted October 3 Hi, anyone can help me with 5? Spoiler I've found the shellcode (or at least I believe it) but not sure about key and nounce, because every time i got garbage Can i dm someone to check if my data are correct? 1 Link to comment Share on other sites More sharing options...
eatcreche Posted October 3 Share Posted October 3 (edited) On 10/2/2024 at 4:40 PM, kao said: @pcmcia: It seems like you've used only 1 piece of the puzzle. You were given 2. Hide contents Do you know how attackers talked to shellcode? Apologies for hijacking the reply - could you please help point me in the right direction with regards to this? Spoiler I think I have the right key but am struggling with figuring out where the file/data that needs to be decrypted is. There was what looked like a suspicious filepath to me but that breadcrumb has not led me anywhere promising. Am I going down the wrong path? Was overthinking it, all good now. Edited October 4 by eatcreche skill issue resolved 1 Link to comment Share on other sites More sharing options...
cl4whands Posted October 3 Share Posted October 3 does challenge 6 require to guess an input string that should be hashed? 1 Link to comment Share on other sites More sharing options...
NativeBridge Posted October 3 Share Posted October 3 Anybody can help with ch3 ? i need to create file to match the yara rule ? dont understand what to do 1 Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now