Category Archives: HackIM

[HackIM 2016] [Crypto 400 – Crypto question 3] Write Up

Description

Crypto Question 3 400 pts

After entring the luxurious condomium,you get the feel that you are in home of a yester Star. the extravagant flooring and furnishings shows the richness of this star. But where is she? There she is, lying peacefuly on her couch. See what Envy has done to her…with a perfectly well maintained attractive body she still looks sex diva, except for her face beyond recogniton. Her identity is crucial to know who killed her and why? In absence of any personal data around there is only a file. with a cryptic text in it. Preity sure she has used her own name to XOR encrypt the file. And challenge is to know her name.

Continue reading [HackIM 2016] [Crypto 400 – Crypto question 3] Write Up

[HackIM 2016] [Prog 1/3/4 200/300/400] Write Up

Description

Programming 1 (200 points):

So you reached Delhi and now the noise in your head is not allowing you to think rationally. The Nosise in your head has origin its Origin in your Stomach. And this is a big hunger. You can finish one or probably 2 Tandoori Chicken. So where can you get the best Tandoori Chicken in Delhi? This place tweeted last week that the Tandoori Chicken it servers is like never B4. You got its twitter handle?

Programming 2 (300 points):

Still Hungry and unsutisfied, you are looking for more. Some more, unique un heard dishes. Then you can find one to make it your self. Its his Dish. He has his own website which is he describes as ” a social home for each of our passions”. The link to his website is on his google+ page. whats the name of his site. By the way he loves and hogs on “Onion Kheer”. Have you heard of “Onion Kheer”?

Programming 3 (400 points):

One of the NullCon vidoes talked about a marvalous Russian Gift. The Vidoe was uploaded on [May of 2015] What is the ID of that youtube video.

Continue reading [HackIM 2016] [Prog 1/3/4 200/300/400] Write Up

[HackIM 2016] [Web 400 – SmashTheState] Write Up

Description

This beautiful website for testing zip files contains a replica of a vulnerability found in a well known bug bounty site.
Log in with rob:smashthestate then exploit the vulnerability to gain access to the ‘admin’ account and the flag.
Automated tools and bruteforcing will not help you solve this challenge.

Continue reading [HackIM 2016] [Web 400 – SmashTheState] Write Up