ctf challenges to solve with usercorn
lunixbochs opened this issue · comments
Ryan Hileman commented
- dc2017 quals
- liberty - VM anti-detection, filesystem + kernel (syscall) mocking (and network?), far return from 32-bit to 64-bit, crypto detection
- nekisahloth - custom ld.so
- http://gaasedelen.blogspot.com/2014/09/solving-fireeyes-flare-on-six-via-side.html
Caesurus commented
I like the idea, and wanted to tackle one of these.
- liberty: seems like it's going to be a problem since it receives data from a server over the network, but since the CTF is over, that's no longer possible?
- FlareOn Six (2014), I'm not able to find the binary for this challenge. I have looked at several write-ups, and the ones that do have links to the binary are dead. :(.
Caesurus commented
Awesome. I also contacted gaasedelen and he still had a copy of the binary, so I have a copy to work on
C6.zip. Solve: https://github.com/Caesurus/usercorn_examples/blob/master/2014_flareon_six/readme.md