-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathchallenges-category-7.html
408 lines (402 loc) · 13.7 KB
/
challenges-category-7.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8"/>
<title>
Challenges : IrisCTF 2024 - CTF fun for hackers of all skill levels
</title>
<meta content="A fun, lighthearted, and educational 48-hour online CTF aimed towards hackers of all levels." name="description"/>
<meta content="" name="author"/>
<meta content="/static/img/favicon.png" property="og:image">
<link href="/static/img/favicon.png" rel="icon" type="image/png"/>
<link href="/static/ctfx.css-v-1.3.0.css" rel="stylesheet"/>
</meta>
</head>
<body>
<div id="navbar">
<a href="/">
<img id="navbar-logo" src="/static/img/logo_navbar.png"/>
</a>
<div id="navbar-buttons">
<a href="/home.html">
Home
</a>
<a class="active" href="/challenges.html">
Challenges
</a>
<a href="/scoreboard.html">
Scoreboard
</a>
<a href="/profile.html">
</a>
<form action="/api" method="post">
</form>
</div>
</div>
<div id="body-content">
<div class="pre-category-name">
Challenge category:
</div>
<div class="category-name typewriter">
Radio Frequency
</div>
<div style="display:flex; flex-wrap:wrap">
<div class="decorator-square-container" style="transform: rotate(270deg)">
<div class="decorator-square-component" style="background-color:#009927">
</div>
<div class="decorator-square-component title-decorator-gray">
</div>
<div class="decorator-square-component decorator-square-icon" style="background-image: url('/static/img/icons/arrow.png');background-size: 16px;filter:invert(1);">
</div>
</div>
<a class="btn-solid btn-solid-warning" href="challenges-category-Binary+Exploitation.html" style="margin:0px 8px 8px 0px">
Binary Exploitation
</a>
<a class="btn-solid btn-solid-warning" href="challenges-category-Cryptography.html" style="margin:0px 8px 8px 0px">
Cryptography
</a>
<a class="btn-solid btn-solid-warning" href="challenges-category-Forensics.html" style="margin:0px 8px 8px 0px">
Forensics
</a>
<a class="btn-solid btn-solid-warning" href="challenges-category-Miscellaneous.html" style="margin:0px 8px 8px 0px">
Miscellaneous
</a>
<a class="btn-solid btn-solid-warning" href="challenges-category-Networks.html" style="margin:0px 8px 8px 0px">
Networks
</a>
<a class="btn-solid btn-solid-warning" href="challenges-category-Open-Source+Intelligence.html" style="margin:0px 8px 8px 0px">
Open-Source Intelligence
</a>
<a class="btn-solid btn-solid-warning active" href="challenges-category-Radio+Frequency.html" style="margin:0px 8px 8px 0px">
Radio Frequency
</a>
<a class="btn-solid btn-solid-warning" href="challenges-category-Reverse+Engineering.html" style="margin:0px 8px 8px 0px">
Reverse Engineering
</a>
<a class="btn-solid btn-solid-warning" href="challenges-category-Web+Exploitation.html" style="margin:0px 8px 8px 0px">
Web Exploitation
</a>
<a class="btn-solid btn-solid-warning" href="challenges-category-Welcome.html" style="margin:0px 8px 8px 0px">
Welcome
</a>
</div>
<div style="margin-bottom: 8px">
</div>
<div class="card">
<div class="card-header">
<div style="display:flex">
<a href="challenge-id-1.html">
Disclaimer
</a>
<div class="challenge-points">
<img src="/static/img/icons/flag.png"/>
50 Points
</div>
</div>
<small>
</small>
</div>
<div class="card-content">
<p>
Hey, welcome to the radio frequency category!
</p>
<p>
</p>
<p>
Radio hacking can be a lot of fun, but what's not fun is getting the feds knocking at your door, paying fines, and getting your equipment confiscated. Before we let you dig into this category, let's get some housekeeping items out of the way.
</p>
<p>
</p>
<p>
<strong>
We are not lawyers. We're not your lawyers. This isn't legal advice.
</strong>
</p>
<p>
</p>
<p>
When playing with radios, never transmit unless you know what you're doing. Always check your local laws and legislations before you transmit. In the United States, unauthorized transmission outside of certain frequency bands is illegal and can even be considered a felony offense in some cases. Radio frequency is cool, but don't get in trouble!
</p>
<p>
</p>
<p>
<strong>
You do not need to transmit for any of these challenges. You do not need any radio hardware for any of these challenges. All of these challenges were made to be solved without the need for real-life hardware.
</strong>
</p>
<p>
</p>
<p>
This disclaimer isn't meant to deter. It's meant to educate and communicate that you should educate yourself on the specific legalities for your locality if you want to dive into the world of RF. Once again,
<strong>
this is not legal advice, and you do not need to transmit for any of these challenges.
</strong>
</p>
<p>
</p>
<p>
Now that we've gotten that out of the way, let's give you the flag so you can ungate the rest of this category.
</p>
<p>
</p>
<p>
<code>
irisctf{its_radioing_time_and_then_you_radio_all_of_them}
</code>
</p>
<div style="margin-top:8px; display:flex; flex-wrap: wrap">
</div>
<div>
</div>
<div class="tag tag-inline" style="margin-bottom:0px">
<img src="/static/img/icons/user.png" style="width:20px; height:20px; margin-right:8px">
<b style="margin-right:8px">
By:
</b>
skat
</img>
</div>
</div>
</div>
<div class="card">
<div class="card-header">
<div style="display:flex">
<a href="challenge-id-3.html">
Radio Hijacking
</a>
<div class="challenge-points">
<img src="/static/img/icons/flag.png"/>
409 Points
</div>
</div>
<small>
</small>
</div>
<div class="card-content">
<p>
I was listening to some banger jams on 920 MHz the other day when the broadcast was suddenly interrupted! The channel was just replaced with some erratic bursts of static before it went back to the music. I managed to capture the audio as well as the RF at 2 Msps at the time of the event. What happened?
</p>
<p>
</p>
<pre><code>$ shasum *
96c65f2f404fa6bc27a38a3b822ef2aefb404b92 radio_hijack.mp3
2125e3a21e74dbbc9139e8666e98b2d26676e5f9 rf_capture.zip</code></pre>
<div style="margin-top:8px; display:flex; flex-wrap: wrap">
<a href="https://cdn.2024.irisc.tf/radio-hijacking.tar.gz" style="text-decoration:none; margin-right:8px; margin-bottom:8px" target="_blank">
<div class="tag tag-inline btn-solid btn-solid-link" style="margin-bottom:0px">
<img src="/static/img/icons/package.png" style="width:20px; height:20px; margin-right:8px">
radio-hijacking.tar.gz
</img>
</div>
</a>
</div>
<div>
</div>
<div class="tag tag-inline" style="margin-bottom:0px">
<img src="/static/img/icons/user.png" style="width:20px; height:20px; margin-right:8px">
<b style="margin-right:8px">
By:
</b>
skat
</img>
</div>
</div>
</div>
<div class="card">
<div class="card-header">
<div style="display:flex">
<a href="challenge-id-2.html">
Spicy Sines
</a>
<div class="challenge-points">
<img src="/static/img/icons/flag.png"/>
491 Points
</div>
</div>
<small>
</small>
</div>
<div class="card-content">
<p>
"RF is easy, I swear. It's all just spicy sines."
</p>
<ul>
<li>
skat
</li>
</ul>
<div style="margin-top:8px; display:flex; flex-wrap: wrap">
<a href="https://cdn.2024.irisc.tf/spicy-sines.tar.gz" style="text-decoration:none; margin-right:8px; margin-bottom:8px" target="_blank">
<div class="tag tag-inline btn-solid btn-solid-link" style="margin-bottom:0px">
<img src="/static/img/icons/package.png" style="width:20px; height:20px; margin-right:8px">
spicy-sines.tar.gz
</img>
</div>
</a>
</div>
<div>
</div>
<div class="tag tag-inline" style="margin-bottom:0px">
<img src="/static/img/icons/user.png" style="width:20px; height:20px; margin-right:8px"/>
<b style="margin-right:8px">
By:
</b>
skat
</div>
</div>
</div>
<div class="card">
<div class="card-header">
<div style="display:flex">
<a href="challenge-id-4.html">
l1pcap
</a>
<div class="challenge-points">
<img src="/static/img/icons/flag.png"/>
500 Points
</div>
</div>
<small>
</small>
</div>
<div class="card-content">
<p>
On relaxing afternoons, I sometimes like to sit around and just watch the waves -- radio waves, that is!
</p>
<p>
</p>
<p>
On one particular afternoon as I was listening at a center frequency of 433 MHz, sampling at 2 Msps with a bandwidth of 2 MHz, I picked up some RF from my neighbor. Every time a signal was transmitted, I saw that some stuff happened around their house, so I think that this is some kind of a home remote control system.
</p>
<p>
</p>
<p>
I captured the signals and tried replaying them, but it didn't work! There must be some kind of a mechanism to prevent replay attacks. If you can complete the analysis of the captured signals, then we should be able to transmit our own commands to make their house go berserk!
</p>
<p>
</p>
<pre><code>Signal 1(a) and 1(b):
<message: "GARAGE OPEN"> .. <message: "GARAGE CLOSE">
Signal 2(a) and 2(b):
<message: "ROOM 1 LIGHTS ENABLE"> .. <message: "ROOM 1 LIGHTS DISABLE">
Signal 3(a) and 3(b):
<message: "ROOM 2 LIGHTS ENABLE"> .. <message: "ROOM 2 LIGHTS DISABLE">
Signal 4(a) and 4(b):
<message: "FRONT SPRINKLERS ENABLE"> .. <message: "FRONT SPRINKLERS DISABLE">
Signal 5(a) and 5(b):
<message: unknown> .. <message: unknown>
Signal 6(a) and 6(b):
<message: unknown> .. <message: unknown>
Signal 7(a):
<message: unknown></code></pre>
<p>
</p>
<p>
These signals were transmitted in sequential order, so 1(a) was transmitted first, 1(b) second, 2(a) third, etc.
</p>
<p>
</p>
<p>
Kids these days are so used to using Wireshark to analyze wireless traffic, but what if the wireless traffic you're trying to analyze isn't Wi-Fi-based?
</p>
<p>
</p>
<pre><code>$ shasum l1pcap.zip
b984b27669a7751126f18418a6fa0b2f9a79da73 l1pcap.zip</code></pre>
<div style="margin-top:8px; display:flex; flex-wrap: wrap">
<a href="https://cdn.2024.irisc.tf/l1pcap.tar.gz" style="text-decoration:none; margin-right:8px; margin-bottom:8px" target="_blank">
<div class="tag tag-inline btn-solid btn-solid-link" style="margin-bottom:0px">
<img src="/static/img/icons/package.png" style="width:20px; height:20px; margin-right:8px">
l1pcap.tar.gz
</img>
</div>
</a>
</div>
<div>
</div>
<div class="tag tag-inline" style="margin-bottom:0px">
<img src="/static/img/icons/user.png" style="width:20px; height:20px; margin-right:8px"/>
<b style="margin-right:8px">
By:
</b>
skat
</div>
</div>
</div>
<div class="card">
<div class="card-header">
<div style="display:flex">
<a href="challenge-id-5.html">
Birdie
</a>
<div class="challenge-points">
<img src="/static/img/icons/flag.png"/>
500 Points
</div>
</div>
<small>
</small>
</div>
<div class="card-content">
<p>
I had a conversation with a little birdie over the radio the other day. She told me her name is Laura and she's from a far away place. Then, she sent me the flag.
</p>
<div style="margin-top:8px; display:flex; flex-wrap: wrap">
<a href="https://cdn.2024.irisc.tf/birdie.tar.gz" style="text-decoration:none; margin-right:8px; margin-bottom:8px" target="_blank">
<div class="tag tag-inline btn-solid btn-solid-link" style="margin-bottom:0px">
<img src="/static/img/icons/package.png" style="width:20px; height:20px; margin-right:8px">
birdie.zip
</img>
</div>
</a>
</div>
<div>
</div>
<div class="tag tag-inline" style="margin-bottom:0px">
<img src="/static/img/icons/user.png" style="width:20px; height:20px; margin-right:8px"/>
<b style="margin-right:8px">
By:
</b>
skat
</div>
</div>
</div>
</div>
<div id="footer">
<b>
Forked from
<a href="https://github.com/Milkdrop/CTFx">
CTFx
</a>
</b>
v1.3.0.
<br/>
CTFx by
<a href="https://gitlab.com/Milkdrop">
Milkdrop
</a>
, based on
<a href="https://github.com/Nakiami/mellivora">
mellivora
</a>
</div>
<audio id="audio-typewriter" src="/static/audio/typewriter.mp3">
</audio>
<audio id="audio-nav-mouseover" src="/static/audio/nav_mouseover.mp3">
</audio>
<audio id="audio-nav-click" src="/static/audio/nav_click.mp3">
</audio>
<audio id="audio-btn-dynamic-mouseover" src="/static/audio/btn_dynamic_mouseover.mp3">
</audio>
<audio id="audio-btn-dynamic-click" src="/static/audio/btn_dynamic_click.mp3">
</audio>
<audio id="audio-btn-solid-mouseover" src="/static/audio/btn_solid_mouseover.mp3">
</audio>
<audio id="audio-btn-solid-click" src="/static/audio/btn_solid_click.mp3">
</audio>
<audio id="audio-checkbox-click" src="/static/audio/checkbox_click.mp3">
</audio>
<script src="/static/ctfx.js-v-1.3.0.js" type="text/javascript">
</script>
</body>
</html>