https://blog.gk.wtf/shc23/ Recent content in Shc23s on Gian Klug Hugo -- 0.153.0 en Sun, 30 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/its_all_just_bits/ Sun, 30 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/its_all_just_bits/ <h1 id="information">Information</h1> <p>Challenge category: <code>pwn</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>Limiting what you can do with Python is not an easy thing. Luckily there is RestrictedPython that does the work for us!</p> </blockquote> <h2 id="files">Files</h2> <p>We are given an <a href="https://ctf.m0unt41n.ch/download/misc/its_all_just_bits.zip"><code>its_all_just_bits.zip</code></a> file containing the source code of the application.</p> <h1 id="analysis">Analysis</h1> <p>The stuff we can input is fairly limited.</p> <ul> <li>We can&rsquo;t import any modules</li> <li>Most modern python things don&rsquo;t work directly (<code>+=</code>, <code>object.method()</code>, <code>object.attribute = &quot;a&quot;</code>)</li> <li>We&rsquo;re limited to a single line at once -&gt; no nested <code>while</code> and <code>if</code>.</li> <li>We have raw memory access using <code>ctypes.c_ulong.from_address</code></li> <li>Printing doesn&rsquo;t work as neither <code>stdin</code> or <code>stderr</code> are passed after the <code>exec</code>.</li> </ul> <p>We can however overwrite/change memory using the following methods:</p> https://blog.gk.wtf/shc23/quantum/ Sun, 30 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/quantum/ <h1 id="information">Information</h1> <p>Challenge category: <code>crypto</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p><a href="https://youtu.be/QRjntDBe15A?t=44">https://youtu.be/QRjntDBe15A?t=44</a> I&rsquo;m Richard Ames. Secret Service? No &ndash; I was sent in by the La-li-lu-le-lo, just like you. What? You&rsquo;re here to find out where the President is. We have little time, so I&rsquo;ll be brief. How about switching to nanocommunications first? Nanocommunications? Right. Silence beats talk when it comes to safety.</p> </blockquote> <blockquote> <p>The patriots are working on a new kind of nanocommunication device. They don&rsquo;t (yet) know how to use quantum entanglement for superluminal communication, nevertheless they are working on something. Check out these quantum circuits, we suspect they were generated using qiskit, maybe you can rebuild them and understand them? Attention: The first qubit will be at the end of the password string, so suppose there are 4 qubites: <code>1</code>, <code>0</code>, <code>0</code>, <code>0</code> the password string will be <code>b&quot;0001&quot;</code></p> https://blog.gk.wtf/shc23/vr_training/ Sun, 30 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/vr_training/ <h1 id="information">Information</h1> <p>Challenge category: <code>pwn</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p><a href="https://youtu.be/I5AunfmI8bs?t=3843">https://youtu.be/I5AunfmI8bs?t=3843</a> I was part of the Army&rsquo;s Force XXI Trials&mdash; Force XXI? Thats about tactical IT deployment right? Any field experience? No &ndash; not really. So this is your first. I&rsquo;ve had extensive training &ndash; the kind that&rsquo;s indistinguishable from the real thing. Like what? Sneaking Mission 60, Weapons 80, Advanced &ndash; VR, huh.</p> </blockquote> <blockquote> <p>Hint: Around %30$p</p> </blockquote> <h2 id="files">Files</h2> <p>We are given a <a href="https://ctf.m0unt41n.ch/download/pwn/vr_training.zip"><code>vr_training.zip</code></a> file</p> <p>The goal of this challenge is to complete two tasks:</p> https://blog.gk.wtf/shc23/workstation/ Sun, 30 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/workstation/ <h1 id="information">Information</h1> <p>Challenge category: <code>pwn</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p><a href="https://youtu.be/I5AunfmI8bs?t=1439">https://youtu.be/I5AunfmI8bs?t=1439</a> There&rsquo;s actually one little thing&mdash; Just spit it out. I&rsquo;m used to things going wrong. It looks like someone&rsquo;s monitoring our transmission. Who? I don&rsquo;t have a clue. All they&rsquo;re doing is watching &ndash; it would creep me out less if they tried to interfere with our communications. Could it have something to do with that Cypher we saw? Maybe. I&rsquo;ve switched the encryption protocol for our burst transmission for now. What I want to do is use a different method for sending those photos, just in case. Instead of using the Codec? Exactly. There&rsquo;s a workstation in the southeast corner of the block where Metal Gear is housed. I&rsquo;ve made arrangements so that you can send pictures from the machine.</p> https://blog.gk.wtf/shc23/x_or_y/ Sun, 30 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/x_or_y/ <h1 id="information">Information</h1> <p>Challenge category: <code>re</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>Staring at the two options in front of her, Sarah was overwhelmed with indecision. She turned to her friend and asked, &ldquo;Is it X or Y? I can&rsquo;t decide. Can you help me figure it out?&rdquo; Her friend took a moment to consider before replying, &ldquo;Well, it depends on what you&rsquo;re looking for. If you want something sweet, go for X. But if you want something savory, Y is the way to go.&rdquo; Sarah thought about it for a moment before making her choice, grateful for her friend&rsquo;s guidance.</p> https://blog.gk.wtf/shc23/ezrev/ Sat, 29 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/ezrev/ <h1 id="information">Information</h1> <p>Challenge category: <code>re</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>Since we&rsquo;re having so much fun together, have some low level microcontroller stuff. Maybe have a look at the <a href="https://ww1.microchip.com/downloads/en/DeviceDoc/Atmel-7810-Automotive-Microcontrollers-ATmega328P_Datasheet.pdf">ATmega328P</a> Datasheet. (PS: yeah the eeprom.txt dump is kinda fake but be happy it is)</p> </blockquote> <h2 id="files">Files</h2> <p>We are given an <a href="https://ctf.m0unt41n.ch/download/re/ezrev.zip"><code>ezrev.zip</code></a> archive. It contains the following files:</p> <ul> <li><code>eeprom.txt</code>: An EEPROM dump of the first 64 values</li> <li><code>EZRev.hex</code>: An atmega328p firmware dump</li> </ul> <h1 id="exploitation">Exploitation</h1> <p>It turns out that there are actually two ways of solving this challenge. One is by just flashing the firmware and EEPROM correctly and then reading the flag via UART with the right baudrate. The other one involves just reading the disassembly.</p> https://blog.gk.wtf/shc23/lost_pass/ Sat, 29 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/lost_pass/ <h1 id="information">Information</h1> <p>Challenge category: <code>web</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>Looks like somebody lost his password.</p> </blockquote> <h2 id="files">Files</h2> <p>We are given a <a href="https://ctf.m0unt41n.ch/download/web/lost_pass.zip"><code>lost_pass.zip</code></a> archive. It contains a flask web app.</p> <p>If we can login as <code>admin</code> we actually get the flag instead of <code>lettuce</code>. We somehow need to recover the admin password.</p> <h1 id="analysis">Analysis</h1> <p>The bug lies in the following function:</p> <div class="highlight"><pre tabindex="0" class="chroma"><code class="language-py" data-lang="py"><span class="line"><span class="cl"><span class="k">def</span> <span class="nf">check_password</span><span class="p">(</span><span class="n">username</span><span class="p">,</span> <span class="n">hashed_password</span><span class="p">,</span> <span class="n">password</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="c1"># we split the hashed password into a list</span> </span></span><span class="line"><span class="cl"> <span class="n">hashed_password</span> <span class="o">=</span> <span class="n">hashed_password</span><span class="o">.</span><span class="n">split</span><span class="p">(</span><span class="s2">&#34;,&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="c1"># we iterate over the password</span> </span></span><span class="line"><span class="cl"> <span class="k">for</span> <span class="n">x</span> <span class="ow">in</span> <span class="nb">range</span><span class="p">(</span><span class="nb">len</span><span class="p">(</span><span class="n">hashed_password</span><span class="p">)):</span> </span></span><span class="line"><span class="cl"> <span class="k">try</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="c1"># we check if the hashed character is the same as the hashed password</span> </span></span><span class="line"><span class="cl"> <span class="k">if</span> <span class="n">hash_char</span><span class="p">(</span><span class="n">password</span><span class="p">[</span><span class="n">x</span><span class="p">])</span> <span class="o">!=</span> <span class="n">hashed_password</span><span class="p">[</span><span class="n">x</span><span class="p">]:</span> </span></span><span class="line"><span class="cl"> <span class="c1"># error_log does a timeout</span> </span></span><span class="line"><span class="cl"> <span class="k">return</span> <span class="n">error_log</span><span class="p">(</span><span class="n">username</span><span class="p">,</span> <span class="n">password</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="k">except</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="c1"># error_log is NOT called but </span> </span></span><span class="line"><span class="cl"> <span class="k">return</span> <span class="kc">False</span> </span></span><span class="line"><span class="cl"> <span class="k">return</span> <span class="kc">True</span> </span></span></code></pre></div><p>If the given has the same characters as the start of the admin password the error log function doesn&rsquo;t trigger. However as we&rsquo;re looping based on the length of the admin password and our password (e.g. 1 character) is smaller, an exception is thrown.</p> https://blog.gk.wtf/shc23/ezsignal/ Wed, 26 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/ezsignal/ <h1 id="information">Information</h1> <p>Challenge category: <code>misc</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>More Hardware stuff. Can you SEE the flag?</p> </blockquote> <h2 id="files">Files</h2> <p>We are given an <a href="https://ctf.m0unt41n.ch/download/misc/ezsignal.zip"><code>ezsignal.zip</code></a> file containing <code>EZsignal.sal</code> file. It&rsquo;s a <strong>Saleae Logic</strong> file, see my writeup of <code>bbsignal</code> for more information on it.</p> <h1 id="analysis">Analysis</h1> <h2 id="overview">Overview</h2> <p>The file opened in <strong>Logic</strong> looks like the following:</p> <p><img alt="The capture opened in Saleae Logic" loading="lazy" src="https://blog.gk.wtf/images/ezsignal-1.png"></p> <p>We see three channels with very similar signals and another channel with a much slower signal that switches between the blocks of data in the other ones.</p> https://blog.gk.wtf/shc23/i/ Wed, 26 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/i/ <h1 id="information">Information</h1> <p>Challenge category: <code>web</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>iiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiii</p> </blockquote> <h2 id="files">Files</h2> <p>We are given an <a href="https://ctf.m0unt41n.ch/download/web/i.zip"><code>i.zip</code></a> file and we can access a running instance.</p> <h1 id="analysis">Analysis</h1> <p>ii ii iiii iiii iiii ii iiiiii, iiiii&rsquo;ii iii&rsquo;i iiiiiiiii iiiiiiiiiiiiii iiiiiiiiiiiiiiiiiiiiiiiiiiiiiiiii. iii? iiii, iiiiiii iii ii. Just kidding. Not funny, I know.</p> <p><code>i</code> is a page where we can upload our own CSS that is then loaded into the page.</p> <h2 id="flask-routes">Flask routes</h2> <p>According to the source code we have the following interesting routes</p> https://blog.gk.wtf/shc23/knive/ Wed, 26 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/knive/ <h1 id="information">Information</h1> <p>Challenge category: <code>re</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>As a chef, Robert knew the importance of having the right tools in his kitchen. He had a special knife that he used only for his secret ingredient. No one knew what it was, not even his sous chefs who had been with him for years. It was a small vial of liquid that he would dab onto his knife before using it to slice his meat. His dishes were famous, and people came from all over to try his food, but the secret ingredient remained a mystery.</p> https://blog.gk.wtf/shc23/gerts_data_brotocol/ Tue, 25 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/gerts_data_brotocol/ <h1 id="information">Information</h1> <p>Challenge category: <code>pwn</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>Gert was a brilliant programmer who had just developed a new data protocol that promised to revolutionize the industry. He named it &ldquo;Gert&rsquo;s Data Brotocol,&rdquo; or GDB for short. Excited about his invention, Gert sent out emails to all the major tech companies, hoping to create a secure partnership. But despite his best efforts, no one seemed interested in opening GDB to the public. Disheartened, Gert decided to take matters into his own hands and created a startup to launch GDB himself.</p> https://blog.gk.wtf/shc23/dotcom/ Mon, 24 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/dotcom/ <h1 id="information">Information</h1> <p>Challenge category: <code>web</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>In the early 2000s, John had an idea for a dotcom enterprise that would revolutionize the way people shop online. He worked tirelessly to develop the platform and attract investors, eventually launching the site to great fanfare. Sales skyrocketed, and John became a billionaire overnight. But as quickly as the company rose to prominence, it all came crashing down when the dotcom bubble burst.</p> https://blog.gk.wtf/shc23/white/ Mon, 24 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/white/ <h1 id="information">Information</h1> <p>Challenge category: <code>misc</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>The picture that consists of only one color, white, would be a blank canvas with no visible markings or patterns. The white color would fill the entire surface area of the picture, giving it a clean and simple appearance. There would be no contrast or shading to create depth or texture, as white is a uniform color that reflects all light. The picture may evoke feelings of emptiness, and neutrality, as white is often associated with these concepts.</p> https://blog.gk.wtf/shc23/bbsignal/ Sun, 23 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/bbsignal/ <h1 id="information">Information</h1> <p>Challenge category: <code>misc</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>Hardware stuff can be as easy as decoding/using this protocol.</p> </blockquote> <h2 id="files">Files</h2> <p>We are given an <a href="https://ctf.m0unt41n.ch/download/misc/bbsignal.zip"><code>bbsignal.zip</code></a> file containing a <code>.sal</code> file. This is the file format used by <a href="https://www.saleae.com/downloads/">Saleae Logic</a>, a software for using logic analyzers.</p> <h1 id="exploitation">Exploitation</h1> <p>We open up the file in Logic and are greeted with the following screen:</p> <p><img alt="The saleae logic software" loading="lazy" src="https://blog.gk.wtf/images/saleae-1.png"></p> <p>We add a &ldquo;Serial Async&rdquo; analyzer to the capture:</p> <p><img alt="Adding a serial async analyzer" loading="lazy" src="https://blog.gk.wtf/images/saleae-2.png"></p> https://blog.gk.wtf/shc23/cautious/ Sun, 23 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/cautious/ <h1 id="information">Information</h1> <p>Challenge category: <code>forensics</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>Backing up everything surely is a good thing. But you still have to be cautious whom you give access to it&mdash;</p> </blockquote> <h2 id="files">Files</h2> <p>We are given a <a href="https://ctf.m0unt41n.ch/download/forensics/cautious.zip"><code>cautious</code></a> file</p> <p>The zip file contains a <code>backup.ab</code> file which is an android backup</p> <h1 id="exploitation">Exploitation</h1> <p>The backup file is just a tar archive with a different header. We can convert it to a tar file using the <strong>Android Backup Toolkit</strong>:</p> https://blog.gk.wtf/shc23/evil_potato/ Sun, 23 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/evil_potato/ <h1 id="information">Information</h1> <p>Challenge category: <code>forensics</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>Holy guacamoly. I somehow managed to download a evil potato and all my super secret browser history got leaked. I hope no one finds the password to my OnlySHC Account :(</p> </blockquote> <h2 id="files">Files</h2> <p>We are given an <a href="https://ctf.m0unt41n.ch/download/forensics/evil_potato.zip"><code>evil_potato.zip</code></a> file. It contains an <code>evil_potato.pcapng</code> file.</p> <h1 id="exploitation">Exploitation</h1> <p>We can either use Wireshark or <code>tshark</code>. I&rsquo;ll be using <code>tshark</code>:</p> <div class="highlight"><pre tabindex="0" class="chroma"><code class="language-console" data-lang="console"><span class="line"><span class="cl"><span class="go">tshark -r evil_potato.pcapng </span></span></span></code></pre></div><p>This dumps the whole file; we can also grep for the flag:</p> https://blog.gk.wtf/shc23/hsb/ Sun, 23 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/hsb/ <h1 id="information">Information</h1> <p>Challenge category: <code>crypto</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>Do you usually screw up your crypto implementation? You&rsquo;re not alone, most companies do! But fear not, our newest HSM is the end of all your worries of being hacked. You can use it as a black box for your crypto operations and never need to worry about storing your keys again!</p> </blockquote> <h2 id="files">Files</h2> <p>We are given a <a href="https://ctf.m0unt41n.ch/download/crypto/hsb.zip"><code>hsb.zip</code></a> file</p> <h2 id="source-code">Source code</h2> <div class="highlight"><pre tabindex="0" class="chroma"><code class="language-py" data-lang="py"><span class="line"><span class="cl"><span class="ch">#!/usr/bin/env python3</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="kn">from</span> <span class="nn">Crypto.PublicKey</span> <span class="kn">import</span> <span class="n">RSA</span> </span></span><span class="line"><span class="cl"><span class="kn">from</span> <span class="nn">inspect</span> <span class="kn">import</span> <span class="n">signature</span> </span></span><span class="line"><span class="cl"><span class="kn">from</span> <span class="nn">secrets</span> <span class="kn">import</span> <span class="n">choice</span> </span></span><span class="line"><span class="cl"><span class="kn">from</span> <span class="nn">secret</span> <span class="kn">import</span> <span class="n">FLAG</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="n">RSA_LEN</span> <span class="o">=</span> <span class="mi">256</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="n">TYPE_USER</span> <span class="o">=</span> <span class="sa">b</span><span class="s2">&#34;</span><span class="se">\x01</span><span class="s2">&#34;</span> </span></span><span class="line"><span class="cl"><span class="n">TYPE_INTERNAL</span> <span class="o">=</span> <span class="sa">b</span><span class="s2">&#34;</span><span class="se">\x02</span><span class="s2">&#34;</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="k">def</span> <span class="nf">b2i</span><span class="p">(</span><span class="n">b</span><span class="p">:</span> <span class="nb">bytes</span><span class="p">)</span> <span class="o">-&gt;</span> <span class="nb">int</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="k">return</span> <span class="nb">int</span><span class="o">.</span><span class="n">from_bytes</span><span class="p">(</span><span class="n">b</span><span class="p">,</span> <span class="s2">&#34;big&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="k">def</span> <span class="nf">i2b</span><span class="p">(</span><span class="n">i</span><span class="p">:</span> <span class="nb">int</span><span class="p">)</span> <span class="o">-&gt;</span> <span class="nb">bytes</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="k">return</span> <span class="n">i</span><span class="o">.</span><span class="n">to_bytes</span><span class="p">((</span><span class="n">i</span><span class="o">.</span><span class="n">bit_length</span><span class="p">()</span> <span class="o">+</span> <span class="mi">7</span><span class="p">)</span> <span class="o">//</span> <span class="mi">8</span><span class="p">,</span> <span class="s2">&#34;big&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="k">def</span> <span class="nf">get_random_bytes</span><span class="p">(</span><span class="n">l</span><span class="p">:</span> <span class="nb">int</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="n">alph</span> <span class="o">=</span> <span class="nb">list</span><span class="p">(</span><span class="nb">range</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">256</span><span class="p">))</span> </span></span><span class="line"><span class="cl"> <span class="k">return</span> <span class="sa">b</span><span class="s2">&#34;&#34;</span><span class="o">.</span><span class="n">join</span><span class="p">([</span><span class="nb">bytes</span><span class="p">([</span><span class="n">choice</span><span class="p">(</span><span class="n">alph</span><span class="p">)])</span> <span class="k">for</span> <span class="n">_</span> <span class="ow">in</span> <span class="nb">range</span><span class="p">(</span><span class="n">l</span><span class="p">)])</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="k">def</span> <span class="nf">pad</span><span class="p">(</span><span class="n">p</span><span class="p">:</span> <span class="nb">bytes</span><span class="p">)</span> <span class="o">-&gt;</span> <span class="nb">bytes</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="k">return</span> <span class="n">get_random_bytes</span><span class="p">(</span><span class="n">RSA_LEN</span> <span class="o">-</span> <span class="nb">len</span><span class="p">(</span><span class="n">p</span><span class="p">)</span> <span class="o">-</span> <span class="mi">2</span><span class="p">)</span> <span class="o">+</span> <span class="sa">b</span><span class="s2">&#34;</span><span class="se">\x00</span><span class="s2">&#34;</span> <span class="o">+</span> <span class="n">p</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="k">def</span> <span class="nf">unpad</span><span class="p">(</span><span class="n">p</span><span class="p">:</span> <span class="nb">bytes</span><span class="p">)</span> <span class="o">-&gt;</span> <span class="nb">bytes</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="n">pad_end</span> <span class="o">=</span> <span class="mi">1</span> </span></span><span class="line"><span class="cl"> <span class="k">while</span> <span class="n">pad_end</span> <span class="o">&lt;</span> <span class="nb">len</span><span class="p">(</span><span class="n">p</span><span class="p">)</span> <span class="ow">and</span> <span class="n">p</span><span class="p">[</span><span class="n">pad_end</span><span class="p">]</span> <span class="o">!=</span> <span class="mi">0</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="n">pad_end</span> <span class="o">+=</span> <span class="mi">1</span> </span></span><span class="line"><span class="cl"> <span class="k">return</span> <span class="n">p</span><span class="p">[</span><span class="n">pad_end</span> <span class="o">+</span> <span class="mi">1</span><span class="p">:]</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="k">class</span> <span class="nc">HSM</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="k">def</span> <span class="fm">__init__</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="bp">self</span><span class="o">.</span><span class="n">vendor</span> <span class="o">=</span> <span class="s2">&#34;Cybersecurity Competence Center&#34;</span> </span></span><span class="line"><span class="cl"> <span class="bp">self</span><span class="o">.</span><span class="n">model</span> <span class="o">=</span> <span class="s2">&#34;Perfection v2.1&#34;</span> </span></span><span class="line"><span class="cl"> <span class="bp">self</span><span class="o">.</span><span class="n">rsa</span> <span class="o">=</span> <span class="kc">None</span> </span></span><span class="line"><span class="cl"> <span class="bp">self</span><span class="o">.</span><span class="n">running</span> <span class="o">=</span> <span class="kc">False</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="k">def</span> <span class="nf">info</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="sa">f</span><span class="s2">&#34;Vendor: </span><span class="si">{</span><span class="bp">self</span><span class="o">.</span><span class="n">vendor</span><span class="si">}</span><span class="se">\n</span><span class="s2">Model: </span><span class="si">{</span><span class="bp">self</span><span class="o">.</span><span class="n">model</span><span class="si">}</span><span class="s2">&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="k">def</span> <span class="nf">stop</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="k">if</span> <span class="ow">not</span> <span class="bp">self</span><span class="o">.</span><span class="n">running</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="s2">&#34;HSM is already stopped.&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="k">return</span> </span></span><span class="line"><span class="cl"> <span class="bp">self</span><span class="o">.</span><span class="n">running</span> <span class="o">=</span> <span class="kc">False</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="k">def</span> <span class="nf">gen_key</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="n">bits</span> <span class="o">=</span> <span class="n">RSA_LEN</span> <span class="o">*</span> <span class="mi">8</span> </span></span><span class="line"><span class="cl"> <span class="bp">self</span><span class="o">.</span><span class="n">rsa</span> <span class="o">=</span> <span class="n">RSA</span><span class="o">.</span><span class="n">generate</span><span class="p">(</span><span class="n">bits</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="sa">f</span><span class="s2">&#34;Generated new RSA-</span><span class="si">{</span><span class="n">bits</span><span class="si">}</span><span class="s2"> keys&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="k">def</span> <span class="nf">sign</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">m</span><span class="p">:</span> <span class="nb">int</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="n">m_pad</span> <span class="o">=</span> <span class="nb">int</span><span class="o">.</span><span class="n">from_bytes</span><span class="p">(</span><span class="n">pad</span><span class="p">(</span><span class="n">i2b</span><span class="p">(</span><span class="n">m</span><span class="p">)),</span> <span class="s2">&#34;big&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="n">sig</span> <span class="o">=</span> <span class="nb">pow</span><span class="p">(</span><span class="n">m_pad</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">rsa</span><span class="o">.</span><span class="n">d</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">rsa</span><span class="o">.</span><span class="n">n</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="sa">f</span><span class="s2">&#34;Signature: </span><span class="si">{</span><span class="n">sig</span><span class="si">}</span><span class="s2">&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="k">def</span> <span class="nf">verify</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">sig</span><span class="p">:</span> <span class="nb">int</span><span class="p">,</span> <span class="n">m</span><span class="p">:</span> <span class="nb">int</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="n">recovered</span> <span class="o">=</span> <span class="n">b2i</span><span class="p">(</span><span class="n">unpad</span><span class="p">(</span><span class="nb">pow</span><span class="p">(</span><span class="n">sig</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">rsa</span><span class="o">.</span><span class="n">e</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">rsa</span><span class="o">.</span><span class="n">n</span><span class="p">)</span><span class="o">.</span><span class="n">to_bytes</span><span class="p">(</span><span class="n">RSA_LEN</span><span class="p">,</span> <span class="s2">&#34;big&#34;</span><span class="p">)))</span> </span></span><span class="line"><span class="cl"> <span class="k">if</span> <span class="n">recovered</span> <span class="o">==</span> <span class="n">m</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="s2">&#34;Valid signature.&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="k">else</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="s2">&#34;Invalid signature.&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="k">def</span> <span class="nf">_enc</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">m</span><span class="p">:</span> <span class="nb">bytes</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="n">c</span> <span class="o">=</span> <span class="nb">pow</span><span class="p">(</span><span class="nb">int</span><span class="o">.</span><span class="n">from_bytes</span><span class="p">(</span><span class="n">pad</span><span class="p">(</span><span class="n">m</span><span class="p">),</span> <span class="s2">&#34;big&#34;</span><span class="p">),</span> <span class="bp">self</span><span class="o">.</span><span class="n">rsa</span><span class="o">.</span><span class="n">e</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">rsa</span><span class="o">.</span><span class="n">n</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="sa">f</span><span class="s2">&#34;Ciphertext: </span><span class="si">{</span><span class="n">c</span><span class="si">}</span><span class="s2">&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="k">def</span> <span class="nf">enc</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">m</span><span class="p">:</span> <span class="nb">int</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="bp">self</span><span class="o">.</span><span class="n">_enc</span><span class="p">(</span><span class="n">TYPE_USER</span> <span class="o">+</span> <span class="n">i2b</span><span class="p">(</span><span class="n">m</span><span class="p">))</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="k">def</span> <span class="nf">dec</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">c</span><span class="p">:</span> <span class="nb">int</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="n">m</span> <span class="o">=</span> <span class="n">unpad</span><span class="p">(</span><span class="nb">pow</span><span class="p">(</span><span class="n">c</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">rsa</span><span class="o">.</span><span class="n">d</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">rsa</span><span class="o">.</span><span class="n">n</span><span class="p">)</span><span class="o">.</span><span class="n">to_bytes</span><span class="p">(</span><span class="n">RSA_LEN</span><span class="p">,</span> <span class="s2">&#34;big&#34;</span><span class="p">))</span> </span></span><span class="line"><span class="cl"> <span class="n">t</span><span class="p">,</span> <span class="n">m</span> <span class="o">=</span> <span class="n">m</span><span class="p">[:</span><span class="mi">1</span><span class="p">],</span> <span class="n">b2i</span><span class="p">(</span><span class="n">m</span><span class="p">[</span><span class="mi">1</span><span class="p">:])</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="k">if</span> <span class="n">t</span> <span class="o">==</span> <span class="n">TYPE_USER</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="sa">f</span><span class="s2">&#34;Plaintext: </span><span class="si">{</span><span class="n">m</span><span class="si">}</span><span class="s2">&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="k">else</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="s2">&#34;Cannot decrypt internal secrets&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="k">def</span> <span class="nf">export_secret</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="bp">self</span><span class="o">.</span><span class="n">_enc</span><span class="p">(</span><span class="n">TYPE_INTERNAL</span> <span class="o">+</span> <span class="n">FLAG</span><span class="o">.</span><span class="n">encode</span><span class="p">())</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="k">def</span> <span class="nf">run</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="bp">self</span><span class="o">.</span><span class="n">running</span> <span class="o">=</span> <span class="kc">True</span> </span></span><span class="line"><span class="cl"> <span class="n">options</span> <span class="o">=</span> <span class="p">[</span><span class="bp">self</span><span class="o">.</span><span class="n">info</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">stop</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">gen_key</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">sign</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">verify</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">enc</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">dec</span><span class="p">,</span> <span class="bp">self</span><span class="o">.</span><span class="n">export_secret</span><span class="p">]</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="k">while</span> <span class="bp">self</span><span class="o">.</span><span class="n">running</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="s2">&#34;Available operations:&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="k">for</span> <span class="n">i</span><span class="p">,</span> <span class="n">opt</span> <span class="ow">in</span> <span class="nb">enumerate</span><span class="p">(</span><span class="n">options</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="sa">f</span><span class="s2">&#34;</span><span class="se">\t</span><span class="s2">[</span><span class="si">{</span><span class="n">i</span><span class="si">}</span><span class="s2">] </span><span class="si">{</span><span class="n">opt</span><span class="o">.</span><span class="vm">__name__</span><span class="si">}</span><span class="s2">&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">()</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> <span class="k">try</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="n">opt</span> <span class="o">=</span> <span class="nb">int</span><span class="p">(</span><span class="nb">input</span><span class="p">(</span><span class="s2">&#34;Enter selected option: &#34;</span><span class="p">))</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">()</span> </span></span><span class="line"><span class="cl"> <span class="k">if</span> <span class="n">opt</span> <span class="o">&gt;</span> <span class="mi">2</span> <span class="ow">and</span> <span class="ow">not</span> <span class="bp">self</span><span class="o">.</span><span class="n">rsa</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="s2">&#34;No RSA key available. Use gen_key() first.&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="k">else</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="n">fn</span> <span class="o">=</span> <span class="n">options</span><span class="p">[</span><span class="n">opt</span><span class="p">]</span> </span></span><span class="line"><span class="cl"> <span class="n">args</span> <span class="o">=</span> <span class="p">[]</span> </span></span><span class="line"><span class="cl"> <span class="k">for</span> <span class="n">i</span> <span class="ow">in</span> <span class="nb">range</span><span class="p">(</span><span class="nb">len</span><span class="p">(</span><span class="n">signature</span><span class="p">(</span><span class="n">fn</span><span class="p">)</span><span class="o">.</span><span class="n">parameters</span><span class="p">)):</span> </span></span><span class="line"><span class="cl"> <span class="k">try</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="n">args</span><span class="o">.</span><span class="n">append</span><span class="p">(</span><span class="nb">int</span><span class="p">(</span><span class="nb">input</span><span class="p">(</span><span class="sa">f</span><span class="s2">&#34;input </span><span class="si">{</span><span class="n">i</span><span class="si">}</span><span class="s2">: &#34;</span><span class="p">)))</span> </span></span><span class="line"><span class="cl"> <span class="k">except</span> <span class="ne">ValueError</span> <span class="k">as</span> <span class="n">e</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="s2">&#34;Invalid input format, must be integer&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="k">raise</span> <span class="n">e</span> </span></span><span class="line"><span class="cl"> <span class="n">fn</span><span class="p">(</span><span class="o">*</span><span class="n">args</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="k">except</span> <span class="p">(</span><span class="ne">ValueError</span><span class="p">,</span> <span class="ne">IndexError</span><span class="p">):</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">(</span><span class="s2">&#34;Invalid option&#34;</span><span class="p">)</span> </span></span><span class="line"><span class="cl"> <span class="k">pass</span> </span></span><span class="line"><span class="cl"> <span class="nb">print</span><span class="p">()</span> </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"><span class="k">if</span> <span class="vm">__name__</span> <span class="o">==</span> <span class="s2">&#34;__main__&#34;</span><span class="p">:</span> </span></span><span class="line"><span class="cl"> <span class="n">HSM</span><span class="p">()</span><span class="o">.</span><span class="n">run</span><span class="p">()</span> </span></span></code></pre></div><h2 id="built-in-security-mechanisms">Built-in security mechanisms</h2> <p>When using <code>export_secret</code>, it gets prepended with <code>TYPE_INTERNAL</code>. The <code>dec</code> function checks for this and doesn&rsquo;t decrypt the flag.</p> https://blog.gk.wtf/shc23/meme_review/ Sun, 23 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/meme_review/ <h1 id="information">Information</h1> <p>Challenge category: <code>forensics</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p><strong>WARNING: THIS IS ACTIVE MALWARE WHICH CAN HARM YOUR COMPUTER. EXECUTE AT OWN RISK!</strong> My computer is always sooooooo slow and our IT department said that my computer from 2004 is almost brand new and it could do a few years more. Well I decided to taking matters into my own hands and just install more ram from the internet. Now the security dudes told my that im browsing some nice memes on github, but the memes are a little sus. I have no idea what a github is and what memes I was watching. Can you help me out and find out what they mean? (Hint: Use <code>Win10x86_19041</code>)</p> https://blog.gk.wtf/shc23/mr_template_man/ Sun, 23 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/mr_template_man/ <h1 id="information">Information</h1> <p>Challenge category: <code>web</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>Once upon a time, there was a man named mr. template man. He was an ordinary man with an extraordinary ability to create templates for every aspect of his life. From his morning routine to his work schedule, he had a template for everything. He believed that templates saved him time and helped him stay organized. One day, mr. template man realized that he had become too reliant on his templates. He started to feel like he was living his life on autopilot, without any spontaneity or creativity. He realized that his templates were holding him back from experiencing new things and taking risks.</p> https://blog.gk.wtf/shc23/unm0unt41n/ Sun, 23 Apr 2023 00:00:00 +0000 https://blog.gk.wtf/shc23/unm0unt41n/ <h1 id="information">Information</h1> <p>Challenge category: <code>crypto</code></p> <h2 id="challenge-description">Challenge Description</h2> <blockquote> <p>Sh1t! I really wanted to post the pictures from last year&rsquo;s competition earlier on the SHC website but then someone hacked our server and encrypted all data&mdash; I have really no idea about crypto But I heard you&rsquo;re an 31337 hacker, I&rsquo;m sure you can recover our images, right? RIGHT?! Yours sincerely, a sysadmin in despair</p> </blockquote> <h2 id="files">Files</h2> <p>We are given an <a href="https://ctf.m0unt41n.ch/download/crypto/unm0unt41n.zip"><code>unm0unt41n.zip</code></a> file</p> <h1 id="analysis">Analysis</h1> <h2 id="the-zip-file">The zip file</h2> <p>Upon extracting the zip file we see the following structure:</p>