Syskron Security CTF (21–26 Oct, 2020)

“The 2020 Syskron Security CTF event is a free online cyber security competition for everyone. This year’s CTF event features an original background story! You act as a cyber security professional, working for a Czech manufacturing company.

We provide 20 challenges focused on industrial security (all levels of difficulty). Most challenges are derived from real-world security problems, so you have fun and learn about actual cyber security!”

This one is self-explanatory, I just wanted to put a copy of the welcome letter in the post:

syskronCTF{th4nk-you}

For this one I used Packet Total, because it is able to recognize malware signatures:

syskronCTF{Industroyer}

This is another simple one:

syskronCTF{y0u-f0und-a-header-flag}

This one took some internet research because I don’t know much about how to navigate through SQL databases yet, but I was eventually able to piece it together:

For the number of users just scroll to the end of the table:

For similar passwords, use the following:

For the number of bcrypt passwords, just group everything by password and the ones that start with $2b$ will stand out:

syskronCTF{376_mah6geiVoo_21}

For this one I used a website called FotoForensics to search for Hidden Pixels:

syskronCTF{d0-Y0u-UNdEr5TaND-C2eCh?}

Unfortunately I did not get to complete many challenges here because I was spending most of my time on the NCL Fall 2020 Individual Game. But the few that I completed did teach me some new skills. I was mostly proud of getting that SQL one!

Happy Hacking! ❤

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Samantha

Samantha

CTF Writeups to facilitate cyber education.