# YBN CTF 2024 SOLVED CHALLENGES
YBN CTF 2024 SOLVED CHALLENGES + WRITEUPS ACROSS MISC, FORENSISCS, WEB, CRYPTO, AND PWN
### Overview
| Categories | Solved* | Points |
|------------|---------|--------|
| Sanity | 2 | 300 |
| Misc | 5 | 1566 |
| Forensics | 2 | 1094 |
| Web | 7 | 3142 |
| Crypto | 10 | 6363 |
| Osint | 2 | 912 |
| Reversing | 5 | 3347 |
| Pwn | 1 | 956 |
| Physical | 0 | 0 |
| Total | 34 | 17680 |
\*includes solves after CTF ended.
### Misc
| Challenges | Writeup | Key Concept(s) | Points |
|-----------------------|---------|-----------------------|--------|
| Cats in Nets | ❌ | netcat command | 250 |
| Shroom Server 1 | [here](https://hackmd.io/@ctf-lol/shroom_server_1) | python pickling | 250 |
| Warmup 1 | ❌ | - | 250 |
| Carhugger | ❌ | Text hidden in images | 313 |
| Help me find the flag | ❌ | - | 503 |
### Forensics
| Challenges | Writeup | Key Concept(s) | Points |
|-------------------|---------|-----------------------------------------------|--------|
| Text but not text | ❌ | godot scene files | 250 |
| crackers | [here](https://hackmd.io/@ctf-lol/crackers) | password cracking, hidden data in excel files | 844 |
### Web
| Challenges | Writeup | Key Concept(s) | Points |
|-------------------|---------|------------------------------------------|--------|
| Don't look at me | [here](https://hackmd.io/@ctf-lol/dont_look_at_me) | javascript deobfuscation, xor encryption | 250 |
| Web Web Web | ❌ | chrome devtools, robots.txt | 250 |
| Inspector Who | ❌ | inspect element | 250 |
| Simple Website | ❌ | path traversal, local file inclusion | 393 |
| Stationary Threat | ❌ | crafting web requests | 486 |
| Number Oracle | ❌ | cookies | 633 |
| MORE KABOOMMMMM | [here](https://hackmd.io/@ctf-lol/more_kaboommmmm) | weird javascript behaviour | 880 |
### Crypto
| Challenges | Writeup | Key Concept(s) | Points |
|--------------------------------|---------|-------------------------------------------------------------|--------|
| ROXROXROX | ❌ | xor encryption, binary representation of strings | 250 |
| 64 Bases | ❌ | base64 encoding | 250 |
| Cipher? What's that? | ❌ | cyberchef magic mode :skull: | 250 |
| Salad for the king | ❌ | caesar cipher | 250 |
| Hush | ❌ | - | 704 |
| Have you heard of Spacespeare? | ❌ | unicode stenography | 844 |
| Hero 1 | [here](https://hackmd.io/@ctf-lol/hero_1) | unsafe eval | 912 |
| Cool Math Games | [here](https://hackmd.io/@ctf-lol/cool_math_games) | prng exploitation, pwntools | 956 |
| Hero 2 | [here](https://hackmd.io/@ctf-lol/hero_2) | gcd, modular inverses | 956 |
| Hero 3 | [here](https://hackmd.io/@ctf-lol/hero_3) | unsafe eval, gcd, fermat's little theorem, modular inverses | 991 |
### Osint
| Challenges | Writeup | Key Concept(s) | Points |
|----------------------|---------|-----------------|--------|
| a long long time ago | ❌ | wayback machine | 250 |
| whereami | ❌ | just geoguesser | 250 |
### Reversing
| Challenges | Writeup | Key Concept(s) | Points |
|------------------------|---------|-------------------------------|--------|
| baby rev | [here](https://hackmd.io/@ctf-lol/ybnctf2024_rev#baby-rev) | strings command | 250 |
| super password checker | [here](https://hackmd.io/@ctf-lol/ybnctf2024_rev#super-password-cracker) | strings + using your eyes | 537 |
| bored xorboard | [here](https://hackmd.io/@ctf-lol/ybnctf2024_rev#board-xorboard) | decompilation, xor decryption | 704 |
| sekurity | ❌ | decompilation | 863 |
| Perl in the rough | ❌ | perl deobfuscation | 993 |
### Pwn
| Challenges | Writeup | Key Concept(s) | Points |
|------------|---------|----------------|--------|
| memory_sim | [here](https://hackmd.io/@ctf-lol/memory_sim) | - | 956 |
(sorry guys only 1 pwn i'll learn how to actually do binary exploitation trust)
### Physical
never do
Sign in with Wallet
Connect another wallet