Challenge

crypto

SPG

2024-11-16

SPG: reconstruct the generator state, derive the AES material, and decrypt the final ciphertext.

crypto

2024-11-16

Sugar Free Candies: model the crypto leak, recover the missing secret, and decrypt the flag.

web

2024-11-02

Feedback Flux: use the client-side injection path to steal the needed proof and recover the flag.

crypto

2024-11-01

Secure Singning: derive the XOR key stream, invert the transform, and recover the flag.

rev

2024-10-30

Shattered Tablet: trace the binary, isolate the validation routine, and invert it to recover the flag.

revlocked

2024-10-22

revlocked

2024-10-20

crypto

2024-10-03

Flip: abuse the AES misuse, derive the missing key material, and decrypt the flag.

web

2024-08-16

SQHell: exploit the SQL injection, extract the needed data, and reach the flag.

pwn

2024-06-28

DearQA: shape the heap state, gain the needed write or leak, and pivot to flag access.