AUCTF 2020 Writeup - Password Cracking Challenges

April 20, 2020
ctf writeup password cracking hashcat auctf2020

Salty

This challenge was solved 148 times and it was worth 357 points.

Description:

You might need this: 1337

Hash: 5eaff45e09bec5222a9cfa9502a4740d

NOTE: The flag is NOT in the standard auctf{} format

The hash seems a salted MD5.

The correct hash mode is md5($salt.$pass). So with hashcat:

$ hashcat -a 0 -m 20 salty rockyou.txt
.....
5eaff45e09bec5222a9cfa9502a4740d:1337:treetop
.....

salty solved banner

Crack Me 2

This challenge was solved 108 times and it was worth 880 points.

Description:

Here’s another one.

Hash: b1ee3fbc44b4ba721273699ac4511fa1631257f37da7bede3d5ba7bda5e7f96f1bab30e206caf47a5ce8c6587d0fbd6306e70b08a3a7e7233bb707bf21752c33

NOTE: The flag is NOT in the standard auctf{} format

I tried various hash modes. However the correct is: SHA3-512. So with hashcat:

$ hashcat -a 0 -m 17600 crackme2 rockyou.txt
.....
b1ee3fbc44b4ba721273699ac4511fa1631257f37da7bede3d5ba7bda5e7f96f1bab30e206caf47a5ce8c6587d0fbd6306e70b08a3a7e7233bb707bf21752c33:gardener
.....

crackme2 solved banner

Big Mac

This challenge was solved 101 times and it was worth 895 points.

Description:

You might need this: thisisasecret

Hash: 5ee9fafd697e40593d66bef8427d40f8beca6921

NOTE: The flag is NOT in the standard auctf{} format

As the name suggests it’s surely a HMAC.

The correct is HMAC-SHA1 with thisisasecret as salt. So with hashcat:

$ hashcat -a 0 -m 160 bigmac rockyou.txt
.....
5ee9fafd697e40593d66bef8427d40f8beca6921:thisisasecret:scarface
.....

bigmac solved banner

AUCTF 2020 Writeup - Pick Up That CAN

May 1, 2020
ctf writeup car-hacking can-bus auctf2020

AUCTF 2020 Writeup - Remote School

April 20, 2020
ctf writeup pwn x86 auctf2020

AUCTF 2020 Writeup - Thanksgiving Dinner

April 19, 2020
ctf writeup pwn x86 auctf2020