Washi Posted September 16 Posted September 16 (edited) The official announcement has just been made: https://cloud.google.com/blog/topics/threat-intelligence/announcing-eleventh-annual-flare-on-challenge. Countdown: https://flare-on.com/ Quote This year’s contest may be the most diverse ever, with 10 challenges covering architectures including Windows, Linux, JavaScript, .NET, YARA, UEFI, Verilog, and Web3. Yes, you read that correctly, there is a YARA challenge this year. Surprised by the YARA and Veriflog entries. I wonder what they have in mind for those. Edited September 16 by Washi 2 1 1
Teddy Rogers Posted September 26 Posted September 26 Early registrations still open... https://flare-on11.ctfd.io/ 1 day and 11 hours to go as of this post, launching Sept. 27th 2024 at 8pm EST. Get ready... Ted. 1
Mr. Jones Posted September 27 Posted September 27 I hope you guys will enjoy, will be monitoring here and on X in case any issues occur. I think we bumped up the difficulty this year, or maybe it's me and I'm getting old 2
kao Posted September 27 Posted September 27 9 hours ago, Mr. Jones said: we bumped up the difficulty this year Oh boy... I haven't got any vacation days left. 1
Teddy Rogers Posted September 27 Posted September 27 3 hours ago, kao said: I haven't got any vacation days left. Sick days or AWOL... 🤔 Ted. 1
CodeExplorer Posted September 27 Posted September 27 3 hours ago, kao said: Oh boy... I haven't got any vacation days left. Hi kao. I noticed that you are busy, you didn't even read the last PM I've send you regarding DNGuard trials, or maybe there is a board error and you wasn't notified.... Many thanks again for the DNGuard trials you send me so far.
blank Posted September 29 Posted September 29 I am completely stuck at problem 5. Can anyone give me a clue as to what I am supposed to look for? 1
pcmcia Posted October 2 Posted October 2 Yeah, I got stuck at #5 as well. Here's what I got so far. I think I need a nudge in the right direction. Spoiler I know how the data was stolen. I found and decrypted the shellcode responsible for stealing the data. I know how to talk to shellcode to steal the data. However, I still don't know where the flag is. Any hints? 1
kao Posted October 2 Posted October 2 @pcmcia: It seems like you've used only 1 piece of the puzzle. You were given 2. Spoiler Do you know how attackers talked to shellcode? 1
xdbruh1234 Posted October 2 Posted October 2 Im also stuck at #5. Spoiler I can't seem to decrypt it holy shit. It just spews out random garbage. I swear I got the correct key. 1
blank Posted October 2 Posted October 2 I finally figured it out. @xdbruh1234 Spoiler The second encryption is not standard. 1
xdbruh1234 Posted October 2 Posted October 2 5 minutes ago, blank said: I finally figured it out. @xdbruh1234 Hide contents The second encryption is not standard. Spoiler Bruh how? My decompilation for the encryption of the shell code looks the same for the next one 1
eatcreche Posted October 2 Posted October 2 (edited) 6 hours ago, xdbruh1234 said: Im also stuck at #5. Hide contents I can't seem to decrypt it holy shit. It just spews out random garbage. I swear I got the correct key. Same issue here as well. Spoiler I thought I had the right key as well and now I'm starting to doubt whether the key is wrong, the file being read is wrong or both. Edited October 2 by eatcreche self-doubt got the better of me 1
pcmcia Posted October 2 Posted October 2 8 hours ago, kao said: @pcmcia: It seems like you've used only 1 piece of the puzzle. You were given 2. Hide contents Do you know how attackers talked to shellcode? Thanks! Regarding your question... Spoiler Are you referring to the first stage (triggering) or second stage (exfiltration)? If you are referring to the second stage, are there any files that captured the conversations in the second stage? Is there even an ransom note? 1
NativeBridge Posted October 2 Posted October 2 Hey guys anybody have hint or help for ch2 checksum? 1
AUP Posted October 3 Posted October 3 6 hours ago, NativeBridge said: Hey guys anybody have hint or help for ch2 checksum? Spoiler You may skip a few to continue looking at the bottom 1
M.b Posted October 3 Posted October 3 Hi, anyone can help me with 5? Spoiler I've found the shellcode (or at least I believe it) but not sure about key and nounce, because every time i got garbage Can i dm someone to check if my data are correct? 1
eatcreche Posted October 3 Posted October 3 (edited) On 10/2/2024 at 4:40 PM, kao said: @pcmcia: It seems like you've used only 1 piece of the puzzle. You were given 2. Hide contents Do you know how attackers talked to shellcode? Apologies for hijacking the reply - could you please help point me in the right direction with regards to this? Spoiler I think I have the right key but am struggling with figuring out where the file/data that needs to be decrypted is. There was what looked like a suspicious filepath to me but that breadcrumb has not led me anywhere promising. Am I going down the wrong path? Was overthinking it, all good now. Edited October 4 by eatcreche skill issue resolved 1
cl4whands Posted October 3 Posted October 3 does challenge 6 require to guess an input string that should be hashed? 1
NativeBridge Posted October 3 Posted October 3 Anybody can help with ch3 ? i need to create file to match the yara rule ? dont understand what to do 1
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now