0%

SHELLCTF 2022

image-20220813220717895

Misc

World’s Greatest Detective

Are you the World’s greatest detective?if yes help us decode this image and we shall reward you with the thing you truly desire. Flag Format: SHELLCTF{}

image-20220812214842025

漫威里面黑豹的语言,在线翻译一下

Type Wakanda is a Wakanda Text Translator that turns your English text to Wakanda Font

image-20220812214920106

SHELLCTF{W4kandA_F0rev3r}

Sanity Check

Check the #announcement channel of the discord server .

SHELLCTF{W3lc0me_2_SHELLCTF2022}

Reversing

How to defeat a dragon

Dragonairre,the dragon with the hexadecimal head has attacked the village to take revenge on his last defeat,we need to get the ultimate weapon. Flag Format : SHELLCTF{}.

主要逻辑如下

image-20220812223302909

SHELLCTF{5348454c4c4354467b31355f523376337235316e675f333473793f7d}

交了不对,发现内容是hex,转str

SHELLCTF{15_R3v3r51ng_34sy?}

Keygen

Enter the license key and get the flag.Simple right ? Flag Format:SHELLCTF{}.

主要逻辑如下

image-20220812223533154

发现v3是flag,跟进getstring(),得到flag

image-20220812223841804

SHELLCTF{k3ygen_1s_c0oL}

Pulling the strings

Can you please feed me something? Flag Format: SHELLCTF{}

主要逻辑如下

image-20220812224023474

跟进

image-20220812224122563

继续跟进,得到flag

image-20220812224146972

SHELLCTF{Th4nks_f0r_the_food}

warmup

Here’s a quick rev challenge to get started. Reverse the binary to obtain the flag.

The flag format is shellctf{…}

主要逻辑如下

Forensics

Alien Communication

Aliens are trying to communicate something. They belive in seeing more than what they are hearing. can you help us trying to decode what they are trying to say?

wav音频隐写,看频谱图得到flag

image-20220812231849286

shell{y0u_g07_7h3_f1ag}

GO Deep!

Our one of the agent gave us this file and said “Go Deep!”

附件一堆阴间音,Go Deep,使用这个软件

Deepsoundinstalled | jpinsoft.net

密码是shell,得到flag

image-20220813144533282

SHELL{y0u_w3r3_7h1nk1ng_R3ally_D33p}

Heaven

“I was in the seventh heaven painted red green and blue”

Flag Format: SHELL{s0mething_here}

Seventh_Heaven_Image

红绿蓝7通道,出flag

image-20220813174638083

SHELL{man1pul4t1ng_w1th_ 31ts_15_3A5y}

Hidden File

Our Agent gave us this image can you find whats there with this image?

Hidden

image-20220813184941843

steghide隐写

steghide extract -sf  Hidden.jpg -p shell

image-20220814172701272

分出了一个压缩包,解压之后image-20220814172736658

Web

Choosy

Single solution doesn’t works on all problems. One should try different solutions for different problem.

Flag format:- shellctf{H3re_1s_tH3_F14g}

image-20220813142637051

试了ssti貌似不是,那就是xss

image-20220813142736844

shellctf{50oom3_P4yL0aDS_aM0ng_Maaa4nnY}

Doc Holder

Can you share portable document with us which looks like it when we seet portable document with eyes but ti’s not actually portable document.

More a misc problem …

My Favourite move is Inferno overwrite

Hint — Challenge is all about file extension of the file that you are uploading…

Think from right to left

文件上传题,测试貌似只能上传pdf

image-20220813151641870

上传成功显示Yummmmmmmmmmyyyyy,上传失败显示Not Tasty

Gone those days when no colours, images, fonts use to be on a webpage. We now have various ways to decorate our webpages and here is one such example.

Flag format :- shellctf{H3re_1s_F14g}

hint: The key is finding and value is the favorite thing…

image-20220813151542106

没啥思路

ILLUSION

Sometimes it happens things are there but you can’t see it directly. We need to change our vision to make it visible. I believe you have that vision.Flag is in flag.txt file…

image-20220813214429690

输入的内容大部分都会被过滤

ls也不可以直接用,fuzz发现可以用的符号有#+.;ACDFGLSTXacdfglstx\u0026

llss列当前目录无flag

image-20220813214655640

难点就在如何换目录

双写绕过

ccdd%20....;ccdd%20....;llss

image-20220813214832071

image-20220813214907447

shellctf{F1l73R5_C4n’T_Pr3v3N7_C0mM4nd_1nJeC71on}

Crypto

Tring Tring…

Tring Tring my mobile started ringing. “Hey Check your SMS!!”----. ----. ----. / -… -… -… / —… —… / …— …— …— / …— / -… -… / --… --… --… / …-- …-- / …— / …-- / -… / ----. ----. ----. / --… --… --… --… / -… / --… --… --… --…Flag Format: SHELL{SOMETHINGHERE}

image-20220813175855579

999 666 88 2222 66 777 33 2 3 6 999  7777 6 7777

YOUANREADMYSMS

93 63 82 24 62 73 32 21 31 61 93 74 61 74

YOU_AN_READ_MY_SMS

youanreadmysms

SHELL{YOUANREADMYSMS}

这样交一直不行,就奇了怪了

后来队友点醒梦中人,2222分222和2,前222为23,后21,则CA

所以最后答案为SHELL{YOUCANREADMYSMS}

总结

这比赛质量不咋地,不想做了,就做这些吧,脑洞太大,没学到太多东西

制作不易,如若感觉写的不错,欢迎打赏