category

Challenge

318 posts
misc

Canvas

Canvas: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.

misc

Lazy Ballot

Lazy Ballot: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.

crypto

Digital-Safety-Annex

ECC+1

Digital-Safety-Annex: use the curve leak or invalid-curve path to recover the secret and decrypt the flag.

crypto

Interception

Lattice+1

Interception: model the leak as a small lattice problem, recover the secret, and verify the flag.

crypto

Multipage Recyclings

AES

Multipage Recyclings: abuse the AES misuse, derive the missing key material, and decrypt the flag.

crypto

Not that random

PRNG+1

Not that random: reconstruct the PRNG state from the leak, replay it, and recover the flag.

crypto

Nuclear Sale

Nuclear Sale: model the crypto leak, recover the missing secret, and decrypt the flag.

crypto

One Step Closer

RSA

One Step Closer: exploit the RSA structure, recover the missing secret, and decrypt the flag.

crypto

Partial Tenacity

RSA

Partial Tenacity: exploit the RSA structure, recover the missing secret, and decrypt the flag.

web

pcalc

pcalc: identify the broken request handling, prove control, and use it to recover the flag.

crypto

Permuted

RSA+2

Permuted: exploit the RSA structure, recover the missing secret, and decrypt the flag.

crypto

RLotto

PRNG

RLotto: reconstruct the PRNG state from the leak, replay it, and recover the flag.

web

sanitize

SQLi

sanitize: exploit the SQL injection, extract the needed data, and reach the flag.

crypto

Weak RSA

RSA

Weak RSA: exploit the RSA structure, recover the missing secret, and decrypt the flag.

crypto

Whole Lotta Candy

AES+1

Whole Lotta Candy: abuse the AES misuse, derive the missing key material, and decrypt the flag.

hardware

Photon-Lockdown

Firmware+1

Photon-Lockdown: decode the captured signal, map the bitstream, and recover the flag.