swiss hacking challenge 2024 - rogue-clippy

Difficulty: easy

Category: misc

Author: Kiwi

Peter from HR (the one who always makes awkward jokes about Susan) had a great idea. He hired she-loitte, a compliance company that puts you in focus, to look at our processes and improve “engineering velocity”.

First they implemented Scrum but Sam from project management was convinced we don’t need a scrum master because that would, in his words, not facilitate teamwork as peers so essentially we’re just doing daily meetings now where everybody talks about what they did over the weekend. All of my coworkers are really into rock climbing or showing off pictures of their kids.

That reminds me, I did get to show off my dog a couple of times and Daniel liked him a lot. He has a golden retriever that he brought to work a couple of times but ever since he pooped on the office floor (the dog not Daniel), corporate has adjusted our pets policy and now anything bigger than a hamster is not permitted.

Also, btw they enforce OKR’s now (which they say is not a tasklist but everybody uses it like one and frankly I do not see the difference) and if we don’t get all our work done we get fired so the CEO makes more money :( I wanted to use ChatGPT but apparently it won’t let me do my work because of “licensing issues” and “we can’t leak company secrets” but I really do wanna just get over with and go back and have a nap.

Hint: You need to get a password. The flag is the password in UPPERCASE, wrapped by shc2024{…}.

Exploitation

We are given access to a web interface. Simple prompt injection reveals the flag:

Flag

Conclusion

Got this on my first try, the same prompt also works to leak the ChatGPT system prompt!