Writeup
今年もCakeCTF 2022が開催されました。 今回はちょっと難易度を下げるぞう(パオーン!)と思って問題を作りました。 特にpwn,revあたりが簡単になったと思います。 他のジャンルはあんまり変わってない疑惑があります。 とはいえ、自明問題は出ません出しません出…
I played corCTF 2022 in zer0pts. Actually I wasn't planning to play the CTF as I was busy that weekend. However, I saw st98-san solve some Web tasks and it looked interesting, so I decided to make a little time to work on the pwn tasks. I'…
I played DEF CON CTF 2022 Quals in ./V /home/r/.bin/tw (my company colleagues and friends) and we got 7th place. With the great help of the great members, I could solve some tasks during the competition. Although there were some good tasks…
本家yoshikingが参加していたのを横目に見ていたので、その様子をお届けします。 [pwn 100pts] bpxover (15 solves) [pwn 200pts] bpxor (8 solves) [pwn 300pts] spmov (1 solve) [rev 400pts] DNS ROPOB (8 solves) [crypto 150pts] Roulette (7 solves) […
はじめに 超一流有名SNSブランドLINEの開催する第二回目のCTFです。 24時間CTFだったので参加してみました。 最初の方は一人寂しくマウスポチポチしてましたが、起床失敗君や海外旅行から返ってきたチームメンバーなど数名が参加してくれて得点ブーストした…
はじめに zer0pts CTF 2022を開催しました。 今年は論文・就職勢がいたり国際オンサイトCTF(?)と開催日が被っていたりでアクティブなメンバー数が少なかったです。 参加された方の中には「st98さんのwebがないぞ?」や「yoshikingの暗号がないやん!」とブチ…
Introduction I played Hayyim CTF 2022 with keymoon, st98, and theoremoon. We solved all pwn tasks there and stood the 3rd place. *1 There was a pwn challenge to exploit an anti-virus software, which looked interesting. So, I started on sol…
Harekaze mini CTF 2021、3時間だし平日だしpwnないしで参加するか微妙でしたが、yoshikingとtheoremoonとで参加することになりました。 チームyoshikingdomは基本的にyoshiking国王が解くのですが、好き嫌いの激しい国王が残した問題は部下が解くことになり…
TSG製のCTFは面白いというか他のCTFがあんま面白くないことが知られてきた今日この頃ですが、駒場祭か5月祭か*1のTSG LIVEによるCTFが平日に放り込まれました。 たぶん私は社会人なのですが、フルフレックスとかいうモンハンとジュラシックパークがコラボし…
I wrote 4 pwn and 1 rev tasks for ASIS CTF 2021 Quals. This article covers the brief writeups of the tasks I made. I'm very looking forward to reading your write-ups. (Exploit-only is okay too if you're busy!) This is why I often make some…
難易度詐欺師集団として国際指名手配されているあのTSGが今年も捜査の手を逃れてCTFを開催しました。 私は基本的にpwnだけ見ましたが、今年は去年ほどの難易度詐欺はpwnにはなく、正直な難易度が書かれていたと思います。 反省の色が現れており、情状酌量の…
はじめに いままでInterKosenCTFとしていたのが、チームinsecureからの高専生消滅*1により名前がCakeCTFに変わりました。 内容はあんまり変わっていませんが、今年は明示的に「中級者向け」としたつもりです。 が、なぜか初心者向けCTFとして認知されてしま…
I played Google CTF 2021 Quals in zer0pts and I worked on several tasks. In the 6 pwnable challenges I solved during the CTF I liked "Full Chain" the most. This challenge consists of 3 parts: browser exploitation, sandbox escape, and privi…
What is heap? I don't know. Anyways I guess we're qualified to the Finals. I want to play it if I can play it onsite. Please open the border as soon as possible, Suga-san [pwn 154pts] ListBook (61 solves) [pwn 200pts] uc_masteeer (45 solve…
I played Pwn2Win CTF 2021 in uuunderflow and got the 2nd place. Unfortunately(?) we couldn't get the 1st place thanks to the flag hoarding but the CTF itself was a lot of fun! I couldn't play it full time but worked on some pwn challenges …
はじめに Beginner's CTF Online 2021に1問だけ出した問題のwriteupを書きます。 今年はSECCON Beginnersには新しいメンバーが入り、pwnを作ってくれる人も入ったのでHard問だけ担当しました。 SECCON Beginner'sのHard問は2年前がなんかtcacheいじるやつ(…
有名サークルであるTSG*1が先日開催したTSG LIVE! 6 CTFにゲストチームとして参加しました。 ゲストチームにはzer0ptsから私含めて3人と、暗号系VTuber*2のkurenaifさんと合同で出陣しました。 Pwn担当として参加しましたが、結果として力不足によりpwnを1問…
This article covers the exploit part. Check this one written by s1r1us for the web and chromium-security part. I solved some pwnable tasks from PlaidCTF 2021. There was a challenge named "Carmen Sandiego Season 2", which was a series of tw…
This week I played ångstromCTF 2021 in zer0pts and we stood the 3rd place. I solved all of the pwn tasks + some rev tasks*1 + bug-finding part of thunderbolt (crypto). As there're many number of challenges, I'm only going to write about th…
I'm tired since I played 2 CTFs successively without sleep. So, I only leave very simple writeups. Other members' writeups: st98.github.io Although there were lots of pwn tasks, I only solved 2 tasks.*1 (Spending most time on sqlite pwn, I…
I solved all of the pwn tasks, one forensics, steganography, and rev task with other members. Although I felt the stego and forensics tasks somewhat guessy, I enjoyed the CTF overall. Solving those pwn tasks after the heavy LINE CTF was a …
はじめに 2回目のzer0pts CTF 2021を開催しました。 今年も去年に引き続き、中級者向け〜上級者向け難易度を目標にしました。 正直去年は全完チームが4チームいて簡単だった説が出ていたので、去年より少しwarmup以外の難易度を引き上げたと思います。 なの…
I played DiceCTF 2021 in zer0pts and we got the 2nd place :dice: I couldn't play it full-time because of my school stuff :sob: but I solved some challenges. [pwn 116pts] babyrop (163 solves) [pwn 149pts] flippidy (62 solves) [pwn 415pts] s…
justCTF [*] 2020*1 had been held by @justCatTheFish from Jan 30th for 37 hours. I played it in zer0pts and we got the 5th place. I'd been busy writing my bachelor thesis and I couldn't play some CTFs for some weeks. I felt it'd been a long…
24時間のHarekaze mini CTF*1 2020が開催されました。 zer0ptsとして参加しましたが、作問陣にいたり忙しかったりで参加できないメンバーが多かったのでチーム名を「yoshiking*2と愉快な仲間たち」にすれば良かったと後悔しています。 難易度は比較的易しめ…
Last weekend I played HackTM CTF Finals 2020, the Finals event of HackTM CTF Quals 2020, in zer0pts and we won the CTF I mostly worked on pwn, forensics and few reversing tasks. Especially the pwn tasks were well-designed and I reaperhaops…
pbctf 2020 had been held from December 5th 00:00 UTC for 48 hours. I played it in zer0pts and we won the CTF I mainly worked on the pwn tasks. Every pwn task was very hard (except for Amazing ROP) and there were something to learn. I reall…
Layer7 CTF had been helf on 14th November. It was a 15-hour individual competition. I played it as retsuko and reached 2nd place. Same as last year, the challenges were well-designed and I enjoyed them! And same as last year, I couldn't so…
BingoCTF took place from 12th Nov, 09:00 KST for 24 hours. This CTF is a new-style competition for individuals. The score is calculated based on the number of bingo you made and the time you used to make bingo. We have 5 hours to solve the…
I wrote some challenges for this year's SECCON CTF. SECCON was famous for providing some crappy challenges but they eliminated those crappy-challenge authors this year XD Congratulations to HangulSarang, perfect blue, and MSLC! Thank you f…