Posts

Sans Kringlecon 2022 - Christmas CTF Finale

Image
Finale Upon Collection of all 5 rings, we are being asked to meet Santa exciting the tunnels and Santa asks us to get into the building where we are greeted with Santa’s congratulations and credits to all the fantastic effort of smart folks from SANS rolling. Hidden Chests & Tunnel Map Was able to identify a total of 5 hidden chests. To find these hidden chests any new location you enter within the tunnel or even while navigating to the tunnels. Zoom out by pressing (Ctrl or Command) + “-“, which should make the hidden chests easily visible and you should be able to identify the pathways by playing with the arrow keys and even by looking for cracks in the mine wall that tells you can enter through to get to the hidden chest Most of the chest provide you with hints and almost all of them with Kringlecoins    Overall chest locations: 1 in Tokien Ring area 1 in Cloud Ring are 3 in pathways in the tunnel to different challenge areas Below is the Full Navigation map within the Tunnel h

Burning Ring of Fire - Exploit a Smart Contract Walkthrough

Image
Exploit a Smart Contract Exploit flaws in a smart contract after completing Blockchain Divination , to buy yourself a Bored Sporc NFT. Find hints for this objective hidden throughout the tunnels. Difficulty Level 5/5 Next we are being asked to exploit a smart contract and buy ourselves a Bored sporc NFT from boredsporc gallery. But to be able to make the purchase we will have to be part of the Pre-Sale list and we will have to add ourselves into it. "Earlier, I overheard that disgruntled customer in the office saying he wanted in on the “rug pull”. If our suspicions are correct, that’s why the sporcs want an invite to the presale so badly.  Once the “Bored Sporc Rowboat Society” NFTs officially go on sale, the sporcs will upsell them. After most of the NFTs are purchased by unwitting victims, the Sporcs are going to take the money and abandon the project.  Mission #1 is to find a way to get on that presale list to confirm our suspicions and thwart their dastardly scheme!  We also

Burning Ring of Fire - Blockchain Divination Walkthrough

Image
Blockchain Divination Use the Blockchain Explorer in the Burning Ring of Fire to investigate the contracts and transactions on the chain. At what address is the KringleCoin smart contract deployed? Find hints for this objective hidden throughout the tunnels. Challenge Difficulty 4/5   As we progress through the game’s next challenge after buying a hat with Kringlecoin, we are being asked to investigate the contracts and transaction on the chain and the question asking us to find the address of the KringleCoin smart contract deployment.Before we proceed further a quick familiarisation of different terminologies used here   Transaction – any transfer that has occurred from one wallet to another that gets recorded. Can eb submitted to any node in the blockchain network which gets broadcasts so that all node see the transaction. Smart contract – executable programs that are written in high level languages to represent a logic or criteria. Ethereum first introduced smart contract support

Burning Ring of Fire - Buy a Hat

Image
Buy a Hat with Kringlecoin Travel to the Burning Ring of Fire and purchase a hat from the vending machine with KringleCoin. Find hints for this objective hidden throughout the tunnels. Challenge Difficulty 2/5 This objective is fairly easy compared to the further ones, in this challenge we will have to browse through a collection of hats, pick the one we are interested to buy. When we click a specific hat we are interested in we get to see the wallet address for which we need to send 10KC  To be able to transfer 10KC to the wallet address, head down to the nearby KTM, click on “Approve a KringleCoin transfer” and fill out the receiver’s wallet address as per above screenshot, then enter the amount of coins for transfer after which enter your wallet key and click transfer. Now comeback to the vending machine and click on “Approved a transaction? Know your Hat ID? Click here to buy” button on the vending machine again to grab the hat :) This challenge familiarises us on how to make purch

Cloud Ring - Exploitation via AWS CLI Walkthrough

Image
Flex some more advanced AWS CLI skills to escalate privileges after completing Trufflehog Search Challenge! Help Gerty Snowburrow in the Cloud Ring to get hints for this challenge. After referencing the AWS command reference we were able to identify the following command that lists the iam attached user policies for user haug >> aws iam list-attached-user-policies --user-name haug  Next Question in Terminal  >> aws iam get-policy --policy-arn arn:aws:iam::602123424321:policy/TIER1_READONLY_POLICY This command allows us to view the TIE1_READONLY_POLICY in detail which was attached to the user identity we stole from the commit  Next question in terminal  Now we will have to view the default version of the TIER1_READONLY_POLICY by suing the –version-id switch and to support terminal navigation have pipped the command through more >> aws iam get-policy-version --policy-arn arn:aws:iam::602123424321:policy/TIER1_READONLY_POLICY --version-id v1 | more Next question in term

Cloud Ring - Trufflehog Search Walkthrough

Image
Trufflehog Search Upon completion of AWS CLI Intro challenge, we are being asked to use Trufflehog to find secrets in a Git repo. Work with Jill Underpole in the Cloud Ring for hints. What's the name of the file that has AWS credentials? Difficulty Level 2/5 Question in Terminal Use Trufflehog to find credentials in the Gitlab instance at https://haugfactory.com/asnowball/aws_scripts.git. Configure these credentials for us-east-1 and then run: $ aws sts get-caller-identity Trufflehog is a secrets scanner for git repos usage examples - https://github.com/trufflesecurity/trufflehog As per above prompts in question we run the below command to git clone aws_script.git and run trufflehog againt this repository (Assuming trufflehog is preinstalled and it is) >> git clone https://haugfactory.com/asnowball/aws_scripts.git >> trufflehog git https://haugfactory.com/asnowball/aws_scripts.git   Identified 3 unverified results, lets look at the first one a bit deeper >> git s

Cloud Ring - AWS CLI Intro Walkthrough

Image
As the story progresses, we get meet Jill underpole who gives us the initial challenge with regards to the cloud ring and the challenge being related to AWS. The last two challenges can be played in the same console and just have to continue to answer the question asked in the terminal AWS CLI Intro - Difficulty Level 1/5 Try out some basic AWS command line skills in this terminal. Talk to Jill Underpole in the Cloud Ring for hints. Question within terminal Q1: Type aws help Great! When you're done, you can quit with q. Q2: Next, please configure the default aws cli credentials with the access key AKQAAYRKO7A5Q5XUY2IY, the secret key qzTscgNdcdwIo/soPKPoJn9sBrl5eMQQL19iO5uf and the region us-east-1 . https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-quickstart.html#cli-configure-quickstart-config Q3: Excellent! To finish, please get your caller identity using the AWS command line. For more details please reference: $ aws sts help or reference: https://awscli.amazonaws.