题目网盘备份
链接:https://pan.baidu.com/s/1Ai87q0QcbNN8pyGdB_y0tA 提取码:xmxm
Description
oier?ctfer! Click the url to create the gamebox.Send delete request to the url to destroy the gamebox. Try to log in to the oct user,Please do not submit the flag in the environment variable attachment: https://github.com/syzoj/syzoj/wiki/Docker#web--judge%E5%85%A8%E5%A5%97%E9%85%8D%E7%BD%AE
Challenge Address
https://oblivion.d3ctf-challenge.n3ko.co/api/env/d3oj?token=2cc8693760
Base Score
1000
Now Score
588.74
Team solved
11
ezsql
Description
nobody know sql better than me attachment: https://d3ctf-2022.oss-cn-shanghai.aliyuncs.com/Web/voting_6c1435cd02e8d12c0467d219d690f8c4.zip
Challenge Address
http://861260a1ad.ezsql-d3ctf-challenge.n3ko.co/
Base Score
1000
Now Score
502.79
Team solved
17
NewestWordPress
Description
The newest WordPress version! Oh... 5.9.1 is the newest... P.S. Challenge environment reset every 10min.
Hint: WordPress 和 UsersWP 都是最新版本 问题不在 WordPress 和 UsersWP 上 而在一个 WPScan 没有识别出的插件上
WordPress and UsersWP plugin are newest version. There is another plugin with problem, and WPScan can not identify.
Oversea: http://global-wordpress-d3ctf-challenge.n3ko.co/
Challenge Address
http://d3wordpress.d3ctf-challenge.n3ko.co/
Base Score
1000
Now Score
820.35
Team solved
3
Description
A harmless challenge for your D^3 tour.
Exp: cat /flag (^_^).
Hint: There is a little vulnerability that can complete information leak. This is very helpful for the progress of some teams.
Hint: The builtin Print() function accept multi args, what could this mean? or you can just read https://github.com/tianocore/edk2 to find some directions.
Files: attachment.zip
Challenge Address
nc 1-lb-pwn-challenge-cluster.d3ctf.io 32659
Base Score
1000
Now Score
1000
Team solved
0
Description
easy filesystem in userspace
Challenge Address
nc 1-lb-pwn-challenge-cluster.d3ctf.io 30671
Base Score
1000
Now Score
480.42
Team solved
19
Description
easy usercode in kernelspace
attachment: http://d3ctf-attachments.n3ko.co/Pwn/d3bpf-fe89139cf452491fc88158f672848c50a372e2ce6811644b28035361ea4fbd01.zip
Challenge Address
nc 1-lb-pwn-challenge-cluster.d3ctf.io 31227
Base Score
1000
Now Score
514.92
Team solved
16
Description
easy usercode in the latest kernelspace
hint: Try to make the kernel panic with ebpf and see what happens.
attachment: http://d3ctf-attachments.n3ko.co/Pwn/d3bpf-v2-4aa63bee64239e8519c74820c9b1a750213dc34aa69a52ffb37f03cd4ca028a6.zip
Challenge Address
nc 1-lb-pwn-challenge-cluster.d3ctf.io 32254
Base Score
1000
Now Score
965.54
Team solved
1
Description
baby heap in kernel space, just sign me in plz :)
Challenge Address
nc 1-lb-pwn-challenge-cluster.d3ctf.io 30597
Base Score
1000
Now Score
649.57
Team solved
8
Description
This calculator is not so smart. Let's take it down~ Remote server kernel version: 4.19.91-24.1.al7.x86_64
attachment: http://d3ctf-attachments.n3ko.co/Pwn/smarCal-2c03310a3f2190fc60d716108c244395.zip
Hint: Remote server has set kernel.msgmax = 8192, and please consider how to bypass the printable check.
Challenge Address
nc 1-lb-pwn-challenge-cluster.d3ctf.io 31067
Base Score
1000
Now Score
820.35
Team solved
3
Description
「Dive into」the w3ter, deeper and deeper.
Challenge Address
[http://d3ctf-attachments.n3ko.co/Misc/WATER%20-%20baebc013019c6a2db3c854da7448d304.zip](http://d3ctf-attachments.n3ko.co/Misc/WATER - baebc013019c6a2db3c854da7448d304.zip)
Base Score
1000
Now Score
416.59
Team solved
26
Description
OMG, I think this is a ransomware virus. New WannaWacca file (add hint): http://d3ctf-attachments.n3ko.co/Misc/flag.zip.WannaWacca Note: please add 'd3ctf{}' to flag
Challenge Address
http://d3ctf-2022.oss-cn-shanghai.aliyuncs.com/Misc/WannaWacca_56de276c1ce9fd8f3df25b16632b7a4c.7z
Base Score
1000
Now Score
702.6
Team solved
6
Description
Join QQ group / DingTalk group / Telegram group to get flag.
Challenge Address
Base Score
1000
Now Score
10
Team solved
293
Description
Hosts: Mainland Server: 139.196.43.126 HongKong Server: 8.210.150.42
# L2TP Tunnel User: D3CTF Password: AFZcByFx5c2dQxXr IPsec Secret: M99iDSq6RAHY5quU
Create a L2TP tunnel and launch a OSPFv3 Instance to get flag Server OS: RouterOS v6.49.4 CHR
Challenge Address
https://en.wikipedia.org/wiki/Open_Shortest_Path_First
Base Score
1000
Now Score
607.15
Team solved
10
Description
问卷调查 - Feedback Survey
Challenge Address
https://forms.gle/jzpMewuxmAQARmgf7
Base Score
1000
Now Score
268.64
Team solved
53
Description
can you break my system
Challenge Address
http://d3ctf-attachments.n3ko.co/Crypto/d3share_release_c9503a7c1062ad0b656c7f51c1dbb998.zip
Base Score
1000
Now Score
820.35
Team solved
3
Description
this is carl. carl bring you some ks to help you break this system. say thank you carl
Challenge Address
https://d3ctf-attachments.n3ko.co/Crypto/leak_dsa_c137cc0febc015a04f12f4ec43aaccd8.zip
Base Score
1000
Now Score
820.35
Team solved
3
Description
You won't get my secret key!!!
Challenge Address
[http://d3ctf-attachments.n3ko.co/Crypto/equivalent_%20595c9ac3f03ab29ce538ea99ce84bd00.zip](http://d3ctf-attachments.n3ko.co/Crypto/equivalent_ 595c9ac3f03ab29ce538ea99ce84bd00.zip)
Base Score
1000
Now Score
702.6
Team solved
6
Description
Can you help me debug my code? QAQ
Challenge Address
[http://d3ctf-attachments.n3ko.co/Crypto/D3BUG%20-%20df028dac53489d0a43ae7f320956b390.zip](http://d3ctf-attachments.n3ko.co/Crypto/D3BUG - df028dac53489d0a43ae7f320956b390.zip)
Base Score
1000
Now Score
470.05
Team solved
20
Description
Can you find the unkonwn bits? flag is surrounded by d3ctf{}
Challenge Address
https://d3ctf-2022.oss-cn-shanghai.aliyuncs.com/Crypto/babyqcg_d93b0b026b8855bd98709388883c98c7.py
Base Score
1000
Now Score
470.05
Team solved
20
Description
EldenRing!!!(bushi
Challenge Address
http://d3ctf-attachments.n3ko.co/Crypto/d3factor_ZDNmYWN0b3IucHloaGhoaGhoMTEK.py
Base Score
1000
Now Score
380.4
Team solved
31
Description
easy puzzle in the TABLE
Hint: Search for address of the string
Challenge Address
https://d3hotel.d3ctf-challenge.n3ko.co/
Base Score
1000
Now Score
702.6
Team solved
6
Description
Enjoy d3thon! flag is surrounded by d3ctf{}
Challenge Address
http://d3ctf-attachments.n3ko.co/d3thon/d3thon_65ce6c9042839e95d0b5b2880.zip
Base Score
1000
Now Score
527.78
Team solved
15
Description
Welcome to... Show your talent and get All Perfect! flag is surrounded by D3CTF{}.
Challenge Address
http://d3ctf-attachments.n3ko.co/Reverse/d3mug/a70690e09bb009ef45-d3mug.apk
Base Score
1000
Now Score
514.92
Team solved
16
Description
Just an easy case
Challenge Address
http://d3ctf-attachments.n3ko.co/Reverse/d3arm/b0565d4157.bin
Base Score
1000
Now Score
527.78
Team solved
15
Description
pure reverse password:1234
Challenge Address
http://d3ctf-attachments.n3ko.co/Reverse/d3w0w/d3w0w_650895f5d02d33cbf5c0655dcf29d20a.7z
Base Score
1000
Now Score
527.78
Team solved
15
Description
Explore the native world
Challenge Address
Base Score
1000
Now Score
880.7
Team solved
2
Description
AntSRC 预热任务1
Challenge Address
https://security.alipay.com/taskDetails/200002.htm
Base Score
400
Now Score
386.22
Team solved
1
Description
AntSRC 预热任务2
Challenge Address
https://security.alipay.com/taskDetails/200002.htm
Base Score
400
Now Score
400
Team solved
0
Description
AntSRC 预热任务3
Challenge Address
https://security.alipay.com/taskDetails/200002.htm
Base Score
200
Now Score
193.11
Team solved
1
Description
AntSRC 预热任务4
Challenge Address
https://security.alipay.com/taskDetails/200002.htm
Base Score
400
Now Score
400
Team solved
0
Description
AntSRC 预热任务5
Challenge Address
https://security.alipay.com/taskDetails/200002.htm
Base Score
200
Now Score
200
Team solved
0