April 20th, 2014

Defcon 2008 CTF Write-up

1@stPlace recently posted a write-up on the Defcon CTF competition. There’s not too much detail on the specific contests that were run, but it’s good to get some insight into the competition. Also of note is a blog post from atlas, the team captain for 1@stPlace, talking a bit more about the competition.

I’ve heard a bit of speculation about how skewl of root was able to dominate the competition so thoroughly. Here’s an interesting quote from atlas on the topic:

This year, Sk3wl multiplied both the evi1 as well as the technical awe of our attack from last year, instead, denying any of our teams the ability to score. How they did this, I can’t say specifically, but let’s just say they pwned the services themselves and made their own version of a “service-r00tkit”, modifying information to either prevent us from gaining shell on the box or changing the contents of keys so we received bogus keys and our overwrites were dorked as well.

Something else I found pretty interesting was a blurb from atlas on a pretty interesting sounding challenge:

Kenshoto provided a text file with all of shakespeare’s works. our job was to find the longest run of bytes which convert to x86 opcodes which don’t touch memory.

If anyone else knows about other posts, or has other information on either the CTF or openCTF challenges at Defcon, I’d love to hear about them.

The scoreboard @ CTF:

16 Responses to 'Defcon 2008 CTF Write-up'

  1. 1Doc Brown
    August 20th, 2008 at 9:30 am

    We’ve added the Shakespearean Challenge and links to all the binaries now…

  2. 2sth
    August 27th, 2008 at 9:44 pm

    Awesome, thanks Doc Brown, :)

  3. 3עיצוב לוגו
    September 16th, 2012 at 7:05 am

    גשו עוד היום לאתר של studioseven על מנת לגלות קולקציה של עבודות .

  4. 4medigapcentral.com
    September 21st, 2012 at 12:54 am

    It’s actually a great and useful piece of info.
    I’m satisfied that you simply shared this useful info with us.
    Please stay us informed like this. Thanks for sharing.

  5. 5find out more
    April 8th, 2013 at 1:16 am

    Anybody else feel this article should have a Second part to it?
    I believe the information was good, but I even now have unanswered concerns as I am
    absolutely sure other folks do. Whadda ya say admin, give us
    more content material?

  6. 6Rubin Tarella
    April 9th, 2013 at 9:23 pm

    I am so happy to read this. This is the kind of manual that needs to be given and not the accidental misinformation that is at the other blogs. Appreciate your sharing this best doc.

  7. 7a total noob
    July 7th, 2013 at 6:24 am

    I blog often and I seriously thank you for your content.
    Your article has truly peaked my interest.
    I am going to bookmark your website and keep checking for new information about once per week.
    I subscribed to your RSS feed as well.

  8. 8credit sans justificatif de revenu a fournir
    December 1st, 2013 at 1:15 pm

    Tu as un excellent de rédaction très agréable pour lire.

  9. 9code promo
    December 5th, 2013 at 6:28 am

    il propose régulièrement des promotions qui permettent d’acheter des produits à
    prix très intéressants.les frais de livraison restent cependant élevés mais cela est sûrement dû
    au fait qu’il s’agit d’une livraison en 24h. j’ai passé
    plusieurs commandes sur ce site et le délai de livraison a
    toujours été respecté. un seul petit bémol quant à la
    qualité des vêtements; il arrive en effet d’être un peu déçu par
    rapport à la photo du catalogue. d’autre part,les articles taillent différemment d’une marque à l’autre donc il n’est pas facile de savoir quelle taille commander.

  10. 10Roblox Robux Hack Generator
    February 1st, 2014 at 11:08 am

    My programmer is trying to convince me to move to .net from PHP.

    I have always disliked the idea because of the expenses.
    But he’s tryiong none the less. I’ve been using Movable-type on numerous websites for about
    a year and am concerned about switching to another platform.
    I have heard good things about blogengine.net.
    Is there a way I can import all my wordpress content into it?
    Any help would be greatly appreciated!

  11. 11goodgame empire hack download
    March 3rd, 2014 at 9:24 pm

    You are so interesting! I don’t think I’ve read anything like this before.

    So nice to find somebody with a few unique thoughts on this issue.
    Seriously.. thank you for starting this up. This website is something that’s needed on the web,
    someone with some originality!

  12. 12www.goodreads.com
    March 12th, 2014 at 11:22 am

    It’s amazing in favor of me tto ha? a web site, which is
    valuable i? s?pport off my knowledge. thanks admin

  13. 13comment pirater un compte facebook facilement
    April 8th, 2014 at 7:25 pm

    In case you meet this, here i will introduce you how to reset a forgotten Windows 7 password
    in safe mode. 4) Google Dashboard shows the data that each Google service you’ve used stores about you.
    Or are they the guy sitting at home tricking people with a fake website.

  14. 14Whatbloomswhen.Com
    April 16th, 2014 at 1:17 pm

    Everything is very open with a really clear
    explanation of the issues. It was definitely informative. Your website is
    useful. Many thanks for sharing!

  15. 15samsung galaxy s5 review
    April 19th, 2014 at 5:48 am

    Hi there terrific website! Does running a blog such as this require a large amount of work?
    I have absolutely no expertise in programming however I had been hoping to
    start my own blog in the near future. Anyway, should you have any
    ideas or techniques for new blog owners please share.

    I understand this is off subject however I just needed to ask.

  16. 16Contract Wars Hack Tool
    April 19th, 2014 at 7:10 pm

    Please let me know if you’re looking for
    a article writer for your site. You have some really good
    posts and I believe I would be a good asset. If you ever want to
    take some of the load off, I’d absolutely love to write some articles
    for your blog in exchange for a link back to mine.
    Please shoot me an e-mail if interested. Cheers!

Leave a Response

Imhotep theme designed by Chris Lin. Proudly powered by Wordpress.
XHTML | CSS | RSS | Comments RSS