Forum Thread: First Unofficial Null-Byte CTF Event Registration

First Unofficial Null-Byte CTF Event Registration

TENTATIVE KICK OFF DATE AND TIME IS THURSDAY (4/7/16) 5:00pm UST

Alright the time has come and I am ready to host the first unofficial(waiting on your shiny stamp of approval OTW) capture the flag event! Check back here as i will be updating the participant list and any updates that come up before we kick it off. This is going to be a timed event so best get your gear together and ready as the start time will be announced once I know how many players there will be and their schedules (i want to be as accommodating as possible). So without further adieu let me get into character...

Y'AARRRRRRG AHOY ya scallywags!!!!! me booty's been plundered by the evil pirate fat beard. I, Notorious dread pirate Red Beard, am hirin' ye to sneak onto his ship, the USS Flying Douche-bag, and retrieve me flags. knowing that devious pirate they will probably be locked away in treasure chests. For you greenhorn landluvers you may be paired up with a more experienced seamen dependin' on the size of the crew. NOW SAIL WIT' THE WIND AT YE BACK AND TAKE WHAT YE CAN AND GIVE NOTHIN' BACK!!!

~Red Beard

the rules are simple find your way onto the server, find the flags, ex-filtrate them and crack the encrypted files. the team to post the most flags wins.

The flags themselves will be submitted by you the players/teams. to register for the event I will need a Private Message with your team name/identifier, a .jpg flag file (keep it SFW as you will be posting them to demonstrate you captured it), your availability (when you can participate) and a secret alpha numeric key 5 characters long (no uppercase). A keen observer will realize that your own flag will be hidden on the server and is worth one point and will not need to be cracked as you will already have the key.

I will declare the winning team the First 1337 CTF H4X0Rs. I do also have a physical prize in mind for the team that comes in first place.

~Suser

Edit:

Yet again dontrustme has made a point about the final part of the challenge. to make it more programmatically easy i will also need a sha256 checksum along with your image.

Also dontrustme helped a bunch with the pirate speech so make sure to give him a good ol' Y'AARG when you see him. And for those you of who think this is an april fools joke let me make one thing clear red beard's hatred for fat beard is not a joking matter...he wants his flags back.

CURRENT TEAMS:
SegmentationFault
-Andrea Torre
-SegmentationFault.jpg
-sha256 checksum = 525278b2fed9cf12f5946e314856e247f3ff8390df3952335e8b93214359dc81

RAZE
-WireWise
-Pheonix750
-flag.jpg #unsubmitted
-sha256 checksum=48530f3cad0a1339d2d71f63a82bf195a60bc6c159a33b0b94a1466c27917146

ForLulz
-UNH0LYS0DA
-cyb3rjunki3
-JSchmoe
-ForLulz.jpg
-sha256 checksum = bda986305bd3943fa10c2066e36617368854b7b7406eaac768f14dd9d0a26835

PowerOfRandom # maybe consider splitting into two teams
-Power of Random
-George Mensah
-Dragon Slayer
-L3GI0N 01
-Ahmed Jamal
-August Fackyou
-PowerOfRandom.jpg
-sha256 checksum = 01fefb4392fbda26dbd6203c36c70e286f5662addb1cf54f685aaf73e3859dfa

Wolfpack # disqualified but flag will be present
-Sstrykerr
-wolfpack.jpg
-sha256 checksum = 3f601cd8d2757368cb6d5f0b90bd5c4550098fdd3ffa87a9edbedbd628e93204

HashTagFlag
-Luke Taylor
-HashTagFlag.jpg
-sha256 checksum = 55b4edacd664209071c149165fb4fa3637555233361d79ea0718a60071aec922

15 Responses

+1 just for your pirate speech. Godly!
I would really like to participate, but I'm afraid I lack both skill and time to take part in this event.

But anyway, thank you for making this possible, I am sure many members of this community are glad that they will be able to do a CTF.

Good luck to all participants!

When will this event take place?

Also, 10/10 for the pirate speech. I just hope this whole CTF isn't an April Fools joke!

-Phoenix750

thats the thing you tell me you tell me when it best works for you. Also pirates never joke

Well, everyday until April 11th from 18:00 until 21:00 UTC will work out for me. But you decide!

-Phoenix750

Everyday 21:00 UTC until 2:00 the following day, for me.

Also, will we have root access to the server once we get in? And will SSH cracking be an option?

-Phoenix750

would you know these things in a real engagement? getting root is usually possible using the right technique but not all servers have ssh access

.

I can kick it off at 00:00 UTC tonight if that isnt too short notice

That might be a little bit too late/early for me (depends on how you view it).

I can extend my availability from 17:30 UTC to 23:00 UTC though!

-Phoenix750

This CTF exercise is NOT sanctioned by Null Byte or WHT. Please be careful.

Someone with ill intentions could set up such an exercise that would compromise your integrity. For instance;

  • The server you are hacking may be malicious, with malware that will downloaded to your computer
  • The server could be a honeypot
  • It could be that the server is not even owned by individual giving you permission, in which case, you would be breaking the law.

I am not saying that anything of these things will happen. "Standard User", the organizer of this CTF event, is a new member of this community and I have no way of vouching for his intentions. They may be honorable, they may not.

I want to repeat that this CTF is not sanctioned by Null Byte and if something untoward happens, Null Byte and WHT have no liability as you have been warned.

Please be careful.

Good thing that you warned us OTW. But if this turns out to be false, what will you do?

-Phoenix750

We will cross that bridge, if we come to it.

Is there a way I can provide some source of legitimacy?

You could try sending OTW a PM with all the details about the event (server address and other technical info, execution times, what is the objective, what programs will be run, etc...).

-Phoenix750

yup just did he requested i postpone it. hence new top line.

Share Your Thoughts

  • Hot
  • Active