So what is a CTF? In hacker conventions, CTF or Capture the Flag is a game event which has challenges that vary from exploitation, CrackMes, crypto, forensic, web security, logical games, wireless security, and many more. If you just want to have fun and dive in then these challenges are for you.
Each level can be hopped in the navigation bar of the web application where different kinds of challenges are in place which include basic static source code analysis for a page, file analysis, steganography, pcap (packet capture) analysis, and other basic forensics challenges. Here is a screenshot of the Level 8 page:
As what you can see from the image above, you need to download app.exe and then decompile it. This exercise is meant as an educational experience – about learning and developing your skills for the greater long term good. But we do want this to be fun, too! For that reason, we are offering cash bounties totaling $1200 for people successfully winning up to three flags and posting helpful write-ups online. (Details provided on the CTF site, accessed through the form below.) In the meantime, there are many articles you can find in the Resources archives that offer up useful information which will help you advance through each level. Here are twelve articles somehow related to the challenge: Wireshark Checking out Backdoor Shells Steganalysis: Your X-Ray Vision through Hidden Data Forensics Investigation: The M57 Jean Case 21 Computer Forensics Tool OWASP Top 10 Tools and Tactics Top Links of Tools Compilation for Pentesting, Forensics, Security, and Hacking Extending Debuggers Reverse Engineering with Ollydbg Python for Web application security professionals Metadata: The Hidden Treasure Cryptography, Chapter 7 Interesting, right? So let’s start hacking…
