30
Apr
2012

Plaid CTF 2012 – ECE’s Revenge II

For this challenge we were supposed to reverse engineer the logic of some stuff laid out on 3 breadboards based on a couple of photos. The final goal was to figure out the correct position for 24 dip switches in order to turn a single LED on.

{Read More}

30
Apr
2012

Plaid CTF 2012 – Addition is Hard

Addition is hard!
0x0+0x7068703f = ?
Answer in decimal

This is an easy trivia question, it even comes with a hint hidden in the second operand:


$ python2 -c "print ('%x' % 0x7068703f).decode('hex')"
php?

Which refers to PHP bug.

Using an affected PHP binary to compute the sum yields: 3771785342

More info on the PHP bug: https://bugs.php.net/bug.php?id=61095

In case you do not have the affected PHP version you can just do this by hand as well:

7068703f = 1885892671
2 x 1885892671 = 3771785342

30
Apr
2012

Plaid CTF 2012 – Shoulder Surfing

What’s a password that polaroid head got from inside Ellingson?

A quick google reveals this question refers to the movie “Hackers” (1995). Luckily, someone was kind enough to post the full movie script online, in which we find the following passage explicitly mentioning “shoulder surfing”:

{Read More}

30
Apr
2012

Plaid CTF 2012 – Simple

Our lead scientist was really close to cracking this problem before a robot assassin took his life and stole all his work. All that was left was a posted saying ‘simple’.
{Read More}

30
Apr
2012

Plaid CTF 2012 – Supercomputer #1

For the “supercomputer” series of challenges you were supposed to optimize a bunch of routines inside a 64bit ELF executable in order to speed up exection so it would eventually give you “keys” based on four different algorithms. Unfortunately, due to time/profit constraints we only solved supercomputer #1.. but, here’s the writeup!

{Read More}

30
Apr
2012

Plaid CTF 2012 – Size Doesn’t Matter

We found a pair of robot command execution services running at 23.20.239.9 ports 8888 and 8889. Can you break into it?
{Read More}