01
May
2012

Plaid CTF 2012 – Bouncer

In a recent battle we took an enemy robot hostage and examined his operating system. During the examination we found a piece of robot malware that we don’t quite understand. Can you enumerate its targets?

We solved this challenge the pretty (sqli) and dirty (bruteforce) way.

First of all we started the malware with strace. This shows us several connections to the ip 174.129.48.200. We started a tcpdump to see what exactly was send. It showed us the following data:
{Read More}