M0rsarchive: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.
misc
Htb
373 postsosint
Money Flowz
Money Flowz: correlate the public clues, pivot through the evidence, and identify the final answer.
web
OnlyHacks
OnlyHacks: use the client-side injection path to steal the needed proof and recover the flag.
misc
0ld is g0ld
0ld is g0ld: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.
revlocked
BinCrypt Breaker
web
Console
Console: abuse php to cross the web trust boundary and recover the flag.
rev
Curse Breaker
Curse Breaker: reverse the validation logic, model the transform, and recover the accepted input.
crypto
Down the Rabinhole
Down the Rabinhole: exploit the RSA structure, recover the missing secret, and decrypt the flag.
crypto
secure source
secure source: reconstruct the PRNG state from the leak, replay it, and recover the flag.
crypto
signup
signup: reduce the hash constraint to a small search, test candidates, and recover the flag.
crypto
Spooky RSA
Spooky RSA: exploit the RSA structure, recover the missing secret, and decrypt the flag.
misc
The secret of a Queen
The secret of a Queen: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.
crypto
TurboCipher
TurboCipher: model the crypto leak, recover the missing secret, and decrypt the flag.
misc
BitsNBytes
BitsNBytes: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.
misc
Branching Tactics
Branching Tactics: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.
misc
fs0ciety
fs0ciety: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.
misc
Hackerman
Hackerman: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.
misc
Hidden Path
Hidden Path: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.
misc
Insane Bolt
Insane Bolt: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.
misc
Path of Survival
Path of Survival: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.
misc
QuickR
QuickR: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.
misc
Type Exception
Type Exception: reduce the custom rules to a scriptable check and use the smallest reliable path to the flag.
crypto
alphascii clashing
alphascii clashing: reduce the hash constraint to a small search, test candidates, and recover the flag.
mobile
APKrypt
APKrypt: inspect the Android app, trace the validation path, and recover the flag.
mobile
Don't Overreact
Don't Overreact: inspect the Android app, trace the validation path, and recover the flag.
mobile
Manager
Manager: inspect the Android app, trace the validation path, and recover the flag.
mobile
Pinned
Pinned: hook the mobile app with Frida, bypass the check, and recover the flag.
mobile
Supermarket
Supermarket: hook the mobile app with Frida, bypass the check, and recover the flag.