Christmas

For today's Christmas session, we have a load of festive challenges written by current and former AFNOM members! Feel free to pick and choose which to attempt based on what seems interesting to you. Have fun! :)

Note: For challenges not on the CTFd instance, we may or may not have the flags. If you solve them, let one of the board know and we can check.

Skinnylegs' Mini CTF (@skinnylegs)

Go to https://ctf.afnom.net and try the following festive challenges:

  • (Pwn) Christmas Oriented Programming
  • (Forensics) Instant Christmas Merriment Protocol
  • (Web) Bashing Through The Snow
  • (Rev) Encryptmas Carol

Epic Festive Fun (flaberpengu + Azura)

ON https://ctf.afnom.net, try Epic Festive Fun - a fun little festive OSINT challenge!

Santa's Secrets (@leet_lemon)

Santa's been using a new password manager made by one of his elf interns! It's been very useful for him, he doesn't have to write down all the security codes for his North Pole factories anymore, which means he doesn't need to use as much paper, and is better for the environment.

But he's forgotten the password, and can't remember how to get in... Any chance you can work out how to open and decrypt his database?
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THE PEAR TREE (@hendo)

Can you figure out the secret of the magical pear tree?

Download the zip archive from: https://github.com/Jrhenderson11/THE_PEAR_TREE

The Elves (@raine)

Santa's Elves have lost a flag! They tried their hardest to write a script to retrieve it, but they need your help to finish it off!

Starting point is available from here

Hack Hanukkah (@heavyimage)

Our Hanukkah website seems to have broken this year and the programmer who built it using some non-standard technolgies is AWOL! Can you fix the site by relighting all 8 candles and saving the holiday?!

To help, run a local copy of the site with docker: sudo docker run -it -p 5000:5000 -p 564:564 heavyimage/hack_hanukkah. Then visit http://localhost:5000/ in your browser!

Author note: no need to dissect the docker image -- the expected entry point is just the web page on port 5000 🙂

Santa's Reindeers

Challenge description:

Challenge (non-standard flag format):