Easy
Live
I found an interesting game made by some guy named "John_123". It is some betting game. I made some small fixes to the game; see if you can still pwn this and steal $1000000 from me!
To get flag, pwn the server at: nc thekidofarcrania.com 10001
First 10 Solvers
| Rank | Username |
|---|---|
| 1 |
thekidofarcrania
|
| 2 | evoque |
| 3 | bobo1239 |
| 4 | sandr0 |
| 5 | vidar |
| Rank | Username |
|---|---|
| 6 | notElliot |
| 7 | EL_Psyc0p4the |
| 8 | Vermillion |
| 9 | ArchHax |
| 10 | overdrive |
WannaCry
How did you get the python game running on a server?
thekidofarcrania
I used docker to setup an environment for it, and either socat or xinetd to basically pipe the output of the python script to a socket. If you want exact config help PM me on slack
thekidofarcrania
@WannaCry
libkluid
[REDACTED] This comment is only shown to users who have solved this challenge.
g33k4y
[REDACTED] This comment is only shown to users who have solved this challenge.
superdedekind
[REDACTED] This comment is only shown to users who have solved this challenge.
Peder
Ohhhh waaoooooooow
ralphtheninja
Hahaha nice one :)
ralphtheninja
[REDACTED] This comment is only shown to users who have solved this challenge.
ralphtheninja
Gah, can someone please protect my comment above. Sorry I messed up.
intelagent
I gotchu!
ralphtheninja
Thank you very much! It's a shame that you can't edit your comments or delete them.
intelagent
I'll fix that (; !
ralphtheninja
Cool. I must say this forum has great service! :D
Theriphunters
[REDACTED] This comment is only shown to users who have solved this challenge.
ludov
any hint please? I've got CTFlearn{REDACTED}
thekidofarcrania
You are suppose to exploit a bug on the remote server, if you solve it on remote, instead of it printing CTFlearn{REDACTED}, you will get real flag
ludov
thanks!!
enkillerz
put - on amoun bet
k4at3034
nic trick
EXECSEC
first time doing this type of ctf, felt really cool once i figured it out lol
sharkmagic07
good one!!
invers3
123
QuintusJoyal
Just mess it with (-)
loopwithinaloop
It was COol math out there
95ych
pretty Baddass
c0conut
[REDACTED] This comment is only shown to users who have solved this challenge.
parasarora06
tricky , negative values will help
Frezi2005
[REDACTED] This comment is only shown to users who have solved this challenge.
stup1dg3nius
minus minus on bet, this is cool :)
AnimaSpecial
thnx
Defendr
Very interesting!
watson
that was a hell lotta fun! great challenge
d4nielix
Host not found...
Ertersy
I had to do it without the "nc" in it
t3zla
It was the most fun and my last problem in the EASY category. Thanks! I had a lot of fun. I solved it quickly, but with interest, and learnt something.
Mossi13
Wow! Nice it to find code for the game ;)
lonec
So i have no idea how to pwn a server. Can someone help me out by listing some literature i could read or something? Do i need to use netcat for this? what does netcat do?
alter
[REDACTED] This comment is only shown to users who have solved this challenge.
Jumpah94
Great challenge
AlexKaos
[REDACTED] This comment is only shown to users who have solved this challenge.
Caillou
Nice one.
Exyss
One of the best challenges of the easy category
--N8
Basically nuclear Gandhi, nice
CerebrumObliterator
I'm an absolute nook. How do I access the server with nc thekidofarcrania.com 10001 lol
CerebrumObliterator
*noob ahah
UnknownFruit
What software should I use to find the flag I got CTFlearn{REDACTED}
Melino
same :(
k1k9
Cool but take me some time to figure it out
arklegru
[REDACTED] This comment is only shown to users who have solved this challenge.
Akhilesh
nice
ImYawn
What is going on here is that when you place a negative bet, what its doing it is storing it in a variable like bet = -1000000000. Then it takes that bet, and if you guess everything wrong, it will try to take -1000000000 from your account. minus and minus make plus which instead of taking from your account adds to your account!
ImYawn
Can someone please delete this i forgot to protect it
ImYawn
[REDACTED] This comment is only shown to users who have solved this challenge.
ImYawn
[REDACTED] This comment is only shown to users who have solved this challenge.
B4B4TUND3
You wanna get netcat on google chrome. Thats what i did. And think about variables and negative numbers. Minus and minus make a plus...
enkillerz
konsep positif negatif dlm matematik -- jadi tambah .tf game ni
MrNef0
I wish real betting games were like this!
olelek
The best challenge from level "easy" so far. Only downside is it can't work in PuTTy
faceless_jack
I got $1000000 but not the flag.
RLangdon
Great one. I am a noob but starting to catch things up.