Date: 22/03/25 Location: Croke Park Type: Teams of 4 Time: 10:00 - 17:00 (7 hours) Flag: ZeroDays{some_message} Theme: Father Ted Categories: [Web] [Crypto] [Forensics] [Reversing] [Pwn] [PotLuck] [Scripting] [Trivia] [OSINT] [Encoding] [Physical] [Team] [Lockpicking] [Hardware]
Feel free to suggest/add new categories eg. Cracking
Try to keep challenges security related, avoid guessy, non-related or brute forcing type challenges
For each Challenge include description, solution, flag, setup instructions if needed.
CTF Challenges organised by type Feel Free to add your initials beside a challenge if your working on one to fill the box! The Getting Started challenges are in the CTF Runbook
| # | Category | Difficulty | Name of challenge | Additional Notes | Solves |
|---|---|---|---|---|---|
| 01 | Warmup (Crypto) | 0 | Small, Far away | alphabet index encoded | 62 |
| 02 | Warmup (Crypto) | 0 | The Magic Road | cyberchef magic wand | 86 |
| 03 | Warmup (Forensics) | 0 | Shark Attack | basic wireshark | 109 |
| 04 | Warmup (Pwn) | 0 | PwnVocation | pwn | 28 |
| 05 | Warmup (Pwn) | 0 | AnyoneForTea | stack overflow | 58 |
| 06 | Warmup (Rev) | 0 | Secret Phrase | rev | 114 |
| 07 | Warmup (Rev) | 0 | Lost Flag | rev | 73 |
| 08 | Warmup (Web) | 0 | Mass Assignment | mass assignment | 45 |
| 09 | Warmup (Web) | 0 | web introduction | nginx bypass, sqli, lfd | 100 |
| :-: | ---------- | :----------: | :------------------: | :----------------- | |
| 10 | Forensics | 5 | Blurred | network forensics + rev | 0 |
| 11 | Forensics | 2 | quick notes | malicious vscode | 17 |
| 12 | Forensics | 1 | power | powershell deobfuscation | 37 |
| 13 | Forensics | 3 | modem from 1200 | radio, UART | 33 |
| 14 | Forensics | 4 | journal | memory forensics + raw visualization | 7 |
| :-: | ---------- | :----------: | :------------------: | :----------------- | |
| 15 | Crypto | 5 | hell | diffie hellman, discrete log, crt | 6 |
| 16 | Crypto | 1 | snakes | python encoding | 104 |
| 17 | Crypto | 3 | Can't Count | aes, ctr, xor | 39 |
| 18 | Crypto | 4 | pseudo | prng | 23 |
| 19 | Crypto | 2 | Bad Primes | rsa multiprime, primality algorithms | 39 |
| :-: | ---------- | :----------: | :------------------: | :----------------- | |
| 20 | Linux | 1 | An Ecumenical Matter Part 1 | linux privesc | 102 |
| 21 | Linux | 1 | An Ecumenical Matter Part 2 | linux privesc | 73 |
| 22 | Linux | 3 | An Ecumenical Matter Part 3 | linux privesc | 25 |
| 23 | Linux | 5 | The Holy Stone | linux privesc suid bin | 1 |
| :-: | ---------- | :----------: | :------------------: | :----------------- | |
| 24 | Misc | 2 | Understanding Jack | brainfuck | 3 |
| 25 | Misc | 4 | Father Jack | discord.py, globbing | 12 |
| 26 | Misc | 4 | snakes and adders | pyjail | 1 |
| 27 | Misc | 2 | captcha | scripting, ocr | 27 |
| 28 | Misc | 5 | safe_evaluation | python SBX, 0day | 6 |
| 29 | Misc | 1 | Pickle Jar | pickle, scripting, troll | 38 |
| :-: | ---------- | :----------: | :------------------: | :----------------- | |
| 30 | Pwn | 4 | Return | ret2syscall, rop chain | 4 |
| 31 | Pwn | 2 | CompetitionTime | srand,time,coinflip | 6 |
| 32 | Pwn | 1 | Messenger | arm ret2win | 6 |
| 33 | Pwn | 3 | JustAnotherReturn | ret2 custom lib | 7 |
| 34 | Pwn | 5 | PostOffice | ez heap bug | 6 |
| :-: | ---------- | :----------: | :------------------: | :----------------- | |
| 35 | Reversing | 3 | There's Cocaine in it | zip cracking, pdf | 24 |
| 36 | Reversing | 4 | Wheelchair | movfuscator, memdump, grep | 0 |
| 37 | Reversing | 5 | Keys to the Car | go, crackme | 12 |
| 38 | Reversing | 1 | Class | java, md5, xor | 71 |
| 39 | Reversing | 2 | free flag | gdb | 22 |
| :-: | ---------- | :----------: | :------------------: | :----------------- | |
| 40 | Web | 2 | John And Marys | race condition | 56 |
| 41 | Web | 3 | spinmaster | crlf injection, 0day | 10 |
| 42 | Web | 3 | Apache Culture Night | apache cves, path truncation | 6 |
| 43 | Web | 5 | Quote of the Day | bfcache, xss | 4 |
| 44 | Web | 2 | FamiliarFaces | php sessions, directory traversal | 8 |