Pwn:

Kinderheim 511(pwn,heap): [59 solves]

pwn,heap

zoop

Long live the expo. No wait, I mixed that one up.

This is a remote challenge, you can connect to the service with: nc k511.challs.srdnlen.it 1660

Attachments
[k511.elf](<https://ctf.srdnlen.it/api/file/2dac8cb3-3d84-4763-8cf3-039017b963d4/k511.elf?download=&auth=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6MTI5LCJpYXQiOjE3MzcyMTM1NDEsImV4cCI6MTczNzI1Njc0MX0.OvGoR7CEY_IsUhauz_YUjGo0kDSlL4CXh9dliPw57dI>)

k511.zip

Future Desk Market(crypto,pwn): [1 solves]

crypto,pwn

doliv,guaddu

Future Desk Market
This service is a marketplace where you can put your desks for sale and see the desks that others put for sale; in this market the listings can be signed in order to allow other users to verify their authenticity.

Our current monetization plan isn't fully defined yet. We are working on a premium plan but that isn't released yet...

In the next FDM update, you will be able to buy a FDM GOLD subscription that will give you access to some extra features:

Login authentication for improved security
Customizable colors in listing descriptions (BETA)
Listing preview (BETA)
Remove listings
For the time being it's not possible to buy the FDM GOLD plan, as our admin is still testing the new features, but you can still use the basic features.

This is a remote challenge, you can connect to the service with: nc fdm.challs.srdnlen.it 2025

Authors: @doliv & @guaddu

sha1sum(s):
2e8fdfe5d5f6dc574338b9eb94476ad1dd01d17c  Dockerfile
53702c307c7125884f0a7bc7d368c396ff225887  FDM

Attachments
[Dockerfile](<https://ctf.srdnlen.it/api/file/7d96e788-f47a-4b42-b9f6-237b0fd755f4/Dockerfile?download=&auth=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6MTI5LCJpYXQiOjE3MzcyMTM1NDEsImV4cCI6MTczNzI1Njc0MX0.OvGoR7CEY_IsUhauz_YUjGo0kDSlL4CXh9dliPw57dI>)
[FDM](<https://ctf.srdnlen.it/api/file/04e7013e-219e-4b8c-944a-9900bd7dc812/FDM?download=&auth=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6MTI5LCJpYXQiOjE3MzcyMTM1NDEsImV4cCI6MTczNzI1Njc0MX0.OvGoR7CEY_IsUhauz_YUjGo0kDSlL4CXh9dliPw57dI>)
 
Hint:
1. Look for ECDSA key recovery attacks keeping in mind what information you can use. If you haven't yet you should also try to understand where and how GMP stores its integers.

FDM.zip

Snowstorm: [48 solves]

pwn

church

Being an air traffic controller may not be your dream job. There are so many protocols with radio communications, radar, etc. And in case of an emergency, some parts of the message might be missing.

This is a remote challenge, you can connect to the service with: nc snowstorm.challs.srdnlen.it 1089

Author: @church

Attachments
[libc.so.6](<https://ctf.srdnlen.it/api/file/0837aabb-4dce-4dfc-8dbe-5454303dd613/libc.so.6?download=&auth=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6MTI5LCJpYXQiOjE3MzcyMTM1NDEsImV4cCI6MTczNzI1Njc0MX0.OvGoR7CEY_IsUhauz_YUjGo0kDSlL4CXh9dliPw57dI>)
[s**nowstorm**](<https://ctf.srdnlen.it/api/file/f17bbc19-36d6-4af0-9e05-61e7e152ebc5/snowstorm?download=&auth=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6MTI5LCJpYXQiOjE3MzcyMTM1NDEsImV4cCI6MTczNzI1Njc0MX0.OvGoR7CEY_IsUhauz_YUjGo0kDSlL4CXh9dliPw57dI>)

snowstorm.zip

A child's dream: [4 solves]

pwn

davezero,church

In 1990, a new console was released in Japan.

The beginning of a new era, of a child's dream,

Where exploits were still unknown,

And a new world was yet to be discovered.

This is a special PWN challenge. First, try to solve the challenge locally. If you believe you have the solution, open a ticket where you describe with the keystrokes your exploit, and we will open an online instance for you.

Authors: @davezero & @church

Attachments
[breakout.sfc](<https://ctf.srdnlen.it/api/file/cf20f6c7-187b-464a-985f-53412ead23e2/breakout.sfc?download=&auth=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6MTI5LCJpYXQiOjE3MzcyMTM1NDEsImV4cCI6MTczNzI1Njc0MX0.OvGoR7CEY_IsUhauz_YUjGo0kDSlL4CXh9dliPw57dI>)

breakout.sfc

Web:

Sparkling Sky: [49 solves]