blog.toxn

あしあと

TMCTF Writeup

開催当日も仕事だったのでがっつり出来ませんでしたが、今まで参加したCTFと比べてレベル高くて降参って感じでした。

自力で唯一解けたのがMisc100

ACROSS

3 A technique used for a piece of email to be sent to specific organisations 

SPEAR PHISHING

6 An effective measure that protects unpatched vulnerabilities on a system 

VIRTUAL PATCHING

8 Indicator of Compromise 

IOC

9 The year the company hosting TMCTF was founded 

EIGHTY EIGHT (1988)

11 Malware or technique used by cybercriminals that were arrested by FBI in 2011. The company hosting TMCTF contributed to this case. 

DNS CHANGER

12 Global Technical Support and R&D Center of the company hosting TMCTF 

TREND LABS

14 A piece of malware that prevents you from accessing your files and asks for money 

RANSOMWARE

15 Something that was compromised in CMS in the following video: https://youtu.be/z5FXxnHiZOQ?list=PL08763C67B0C84AA1

VULNABILITY (2:18)

16 Annoying email or canned food 

SPAM

17 A server used by cybercriminals to communicate with a piece of malware planted in corporate network 

COMMAND AND CONTROL

19 Where the main character got infected with malware in the following video: https://youtu.be/ws7Hqb-GPnc?list=PL08763C67B0C84AA1

SxxxExxxTxxxx (DOWN19から)

21 Current CEO of the company hosting TMCTF 

EVA CHEN

23 Also known as 'internet' 

CLOUD

24 Breach detection solution from the company hosting TMCTF 

DEEP DISCOVERY

DOWN

1 Free malware scanning tool from the company hosting TMCTF

HOUSECALL

2 What assumuption does the narrator say is required in the following video: https://youtu.be/0hs8rc2u5ak

BREACH WILL HEPPEN (5:08)

4 A type of malware used for stealing data from corporate network 

BACKDOOR

5 Datacenter security platform from the company hosting TMCTF 

DEEP SECURITY

7 International law enforcement working with the company hosting TMCTF 

INTERPOL

10 The company hosting TMCTF 

TRENDMICRO

13 Malware that was prevalent in late 90s and now resurging in 2015 

MACROVIRUS

18 Cyber attack targeting specific organisation 

APT

19 System used for industrial control system 

SCADA

20 Where the company hosting TMCTF is headquartered 

TOKYO

22 A unique executive position within the the company hosting TMCTF

CCO

先頭の文字を並べるとSVIEDTRVSCSECDHBBDITMASTCになります。 MD5かけたのがflagなので、TMCTF{88f5505a45c9e176e36898095f505187}

あとはチームメイトが解いてくれましたが、200問題以降お手上げ状態。まだまだ実力不足だなーと感じました。