Robots Rule
277
Difficulty: easy
robots.txtを参照してみます。次のページが表示されます。
Fiddlerでリクエストを編集して、User-AgentをGoogleの検索Botに変えてアクセスしてみます。
フラグが表示されました。
フラグは、
gigem{be3p-bOop_rob0tz_4-lyfe}です。
Difficulty: easy
gigem{be3p-bOop_rob0tz_4-lyfe}です。
Recently, the office put up a private webserver to store important information about the newest research project for the company. This information was to be kept confidential, as it's release could mean a large loss for everyone in the office.
Just as the research was about to be published, a competing firm published information eerily similar. Too similar...
Time to take a look through the office network logs to figure out what happened.
Difficulty: easy
192.168.11.4
です。13
To 1337-H4X0R:
Our coworker Bob loves a good classical cipher. Unfortunately, he also loves to send everything encrypted with these ciphers. Can you go ahead and decrypt this for me?
Difficulty: easy
dah-dah-dah-dah-dah dah-di-di-dah (略)モールス信号としてデコードすると0Xで始まる16進文字列になります。2桁ずつ見てみるとASCIIコードのように見えますので、それを文字に変換します。
CODE = {'A': '.-', 'B': '-...', 'C': '-.-.','D': '-..', 'E': '.', 'F': '..-.','G': '--.', 'H': '....', 'I': '..','J': '.---', 'K': '-.-', 'L': '.-..','M': '--', 'N': '-.', 'O': '---','P': '.--.', 'Q': '--.-', 'R': '.-.','S': '...', 'T': '-', 'U': '..-','V': '...-', 'W': '.--', 'X': '-..-','Y': '-.--', 'Z': '--..','0': '-----', '1': '.----', '2': '..---','3': '...--', '4': '....-', '5': '.....','6': '-....', '7': '--...', '8': '---..','9': '----.'}def decrypt(message):message += ' 'decipher = ''citext = ''for letter in message:if (letter != ' '):i = 0citext += letterelse:i += 1if i == 2 :decipher += ' 'else:decipher += list(CODE.keys())[list(CODE.values()).index(citext)]citext = ''return deciphera = ''f = open('flag.txt')s = f.read()f.close()l = s.split(' ')for m in l:m = m.replace('-', '').replace('dah', '-').replace('dit', '.').replace('di', '.')a += decrypt(m)print(a)b = ''for i in range(2, len(a), 2):b += chr(int(a[i:i+2], 16))print(b)
>python aaa.py0X57702A6C58744751386538716E6D4D59552A737646486B6A49742A5251264A705A766A6D2125254B446B6670235E4E39666B346455346C423372546F5430505A516D4351454B5942345A4D762A21466B386C25626A716C504D6649476D612525467A4720676967656D7B433169634B5F636C31434B2D7930755F683476335F6D3449317D20757634767A4B5A7434796F6D694453684C6D385145466E5574774A404E754F59665826387540476E213125547176305663527A56216A217675757038426A644E49714535772324255634555A4F595A327A37543235743726784C40574F373431305149Wp*lXtGQ8e8qnmMYU*svFHkjIt*RQ&JpZvjm!%%KDkfp#^N9fk4dU4lB3rToT0PZQmCQEKYB4ZMv*!Fk8l%bjqlPMfIGma%%FzG gigem{C1icK_cl1CK-y0u_h4v3_m4I1} uv4vzKZt4yomiDShLm8QEFnUtwJ@NuOYfX&8u@Gn!1%Tqv0VcRzV!j!vuup8BjdNIqE5w#$%V4UZOYZ2z7T25t7&xL@WO7410QI
gigem{C1icK_cl1CK-y0u_h4v3_m4I1}
Welcome to TAMUctf!
This year most of the challenges will be dynamically scored meaning the point value will adjust for everyone, including those have already solved the challenge, based on the number of solves.
The secure coding challenges will appear when you have solved their corresponding challenges.
If you have any questions or issues feel free to contact the devs on the discord.
Good luck and have fun!
The flag is: gigem{H0wdy!}
Difficulty: easy
gigem{H0wdy!}です。
What is the A record for tamuctf.com
?
(Not in standard gigem{flag}
format)
Difficulty: easy
$ dig tamuctf.com(略);; ANSWER SECTION:tamuctf.com. 70910 IN A 52.33.57.247(略)
52.33.57.247
What is the name of the city where the server for tamuctf.com is located?
(Not in standard gigem{flag} format)
Difficulty: easy
Boardman
Hey, you're a hacker, right? I think I am too, look at what I made!
(2531257, 43)
My super secret message: 906851 991083 1780304 2380434 438490 356019 921472 822283 817856 556932 2102538 2501908 2211404 991083 1562919 38268
Problem is, I don't remember how to decrypt it... could you help me out?
Difficulty: easy
def exgcd(m, n):if n>0:y,x,d = exgcd(n, m%n)return x, y-m/n*x, delse:return 1, 0, mn = 2531257e = 43c = [906851, 991083, 1780304, 2380434, 438490, 356019, 921472, 822283, 817856, 556932, 2102538, 2501908, 2211404, 991083, 1562919, 38268]p = 509q = 4973d = exgcd(e, (p-1)*(q-1))[0] % ((p-1)*(q-1))for a in c:print(pow(a, d, n))
ASCIIコードを文字に変換するPythonプログラムを書きます。$ python aaa.py103105103101109123839711897103101958310512095701081211051101039584105103101114115125
import sysc = [103, 105, 103, 101, 109, 123, 83, 97, 118, 97, 103, 101, 95, 83, 105, 120, 95, 70, 108, 121, 105, 110, 103, 95, 84, 105, 103, 101, 114, 115, 125]for a in c:sys.stdout.write(chr(a))
gigem{Savage_Six_Flying_Tigers}
Sometimes you just need to stop and listen.
This challenge is an introduction to our network exploit challenges, which are hosted over OpenVPN.
apt install openvpn
sudo openvpn --config ${challenge}.ovpn
%HOMEPATH%\OpenVPN\config
and right-click the VPN icon on the status bar, then select the config for this challengeThe virtual tap0
interface will be assigned the IP address 172.30.0.14/28
by default. If multiple team members connect you will need to choose a unique IP for both.
The standard subnet is 172.30.0.0/28, so give that a scan ;)
If you have any issues, please let me (nategraf) know in the Discord chat
Some tools to get started:
(略)
"Of Life, the Universe and Everything..." said Deep Thought."Yes...!""Is..." said Deep Thought, and paused."Yes...!""Is...""Yes...!!!...?""gigem{f0rty_tw0_c9d950b61ea83}" said Deep Thought, with infinite majesty and calm.......O Deep Thought computer," he said, "the task we have designed you to perform is this. We want you to tell us...." he paused, "The Answer."(略)
gigem{f0rty_tw0_c9d950b61ea83}
nc pwn.tamuctf.com 4324
Difficulty: medium
$ nc pwn.tamuctf.com 4324ls as a service (laas)(Copyright pending)Enter the arguments you would like to pass to ls:
.Result of ls .:flag.txtpwn4
ls as a service (laas)(Copyright pending)Enter the arguments you would like to pass to ls:. | cat flag.txtResult of ls . | cat flag.txt:gigem{5y573m_0v3rfl0w}
gigem{5y573m_0v3rfl0w}
Welcome to MicroServices inc, where do all things micro and service oriented!
Recently we got an alert saying there was suspicious traffic on one of our web servers. Can you help us out?
10.91.9.93です。