Can you Trick the Machine for a Ticket
BSides wouldn't be BSides without challenges!
Last year one challenge remained unsolved but is now solved; we've left on the page for anyone who wants to give it a try! We will be releasing a set of new challenges visit this page regularly to catch one.
Do you think you have what it takes to hack your way through, learn somthing new and possibly win one of a number of excellent prizes?
Go forth, hack, and send us you writeup!
The Rules of the Game:
- All submissions are to be submitted as per the challenge instructions.
- Submissions must be sent in by 27 MAY 2019 or the date listed on the challenge page.
- Hints are only available if the creator
deems you worthyprovides them. - Hints can be requested via the challenges team email listed above.
- The challenge creator is the boss, s/he decides the best winner.
- Prizes will be awarded on the day, unless they come in the form of tickets etc.
The BSidesLondon Team wants to thank all those who helped with the challenges and the fantastic prizes.
Thanks to Sophos for providing supporting infrastructure for the challenges
What's that Encryption?
The Machine has messed up yet another page. It left an encrypted blob but have no idea how to decrypt it.
Can you help us find the password and let us know what the data contains?
Please send your answers to challenges2019 at securitybsides.org.uk with subject set to "Challenge 2019-01 Solution". 2 (two) BSides London 2019 Tickets to be won: first to answer; best write-up of the solution.
The 1st ticket has been won! We are now looking for the best write-up, submit your answers before 2019-06-03 23:00 UTC.Winning ticket announced on 2019-06-04.
Thanks to @talynrae for submitting this challenge
Hack to Impress
Someone found out that the BSides London web development server is here: AywqO6IZdqxGXsCK9AgKhuEOBYs9gn1hJrwxXQA9YvviwCFyPvTYdH5unG8ajmlrIqQfrDiGeYL2f6n4noyzcGC734sX8z85mun4BYeCublRctNMiBb1mDLOCDGajYfVB4cSij2aIkFnir1qVE35Heu1Qh4bZfaGBRweQnSLa5HFznKrMobYgoYBW6I2LUGsvKV8MDJBNrItYOPqw32OOdJ.
Rumors say that you can find your way in to the conference with this challenge, especially if you didn't get a ticket yet. What are you waiting for? Time is limited, GO GO GO!!!
If you don't get to the flag first, there's another prize of a ticket for the best write-up too!
Please send your answers to challenges2019 at securitybsides.org.uk with subject set to "Challenge 2019-02 Solution: Hack to Impress". 2 (two) BSides London 2019 Tickets to be won: first to answer; best write-up of the solution.
You must include a write up or explanation on how you solved the challenge..
The 1st ticket has been won! We are now looking for the best write-up, submit your answers before 2019-06-03 23:00 UTC.Winning ticket announced on 2019-06-04.
Thanks to 
Palisade Bank
You are acting as a member of a security team sent to penetrate the "Palisade Bank" vault.
The CTF requires basic OSINT skills, enumeration, investigation and basic web application testing skills. This requires skill not just brute force!
We hope you enjoy the challenge, the first winner gets a free ticket the London Conference, but that's not all... the best write up will also get one as well!
Please send your answers to challenges2019 at securitybsides.org.uk with subject set to "Challenge 2019-03 Solution: Palisade Bank". 2 (two) BSides London 2019 Tickets to be won: first to answer; best write-up of the solution.
The 1st ticket has been won! We are now looking for the best write-up, submit your answers before 2019-06-03 23:00 UTC.Winning ticket announced on 2019-06-04.
Thanks to Daniel Card from XServus for submitting this challenge
Challenge DS-2018
We are pleased to present this challenge courtesy of the ever inventive Didier Stevens. If you have not already heard of him, you should take a few moments to check out his excellent blog, where you can find a dizzying array of analysis tools, tips, and tricks.
Instructions
Look at the picture & look inside the picture.
Please send your answers to challenges2019 at securitybsides.org.uk with subject set to "Challenge DS-2018 Solution". Bonus point for those who provide a breakdown of the solution.
This challenge is solved!