Pwn:

Automated Exploit Generation 2

Now with printf!

By Tristan (@trab on discord)

nc pwn.utctf.live 5002

Bloat

I've created a new binary format. Unlike ELF, it has no bloat. It just consists of a virtual address to store the data at, then 248 bytes of data. However, when I tried to contribute it back to the mainline kernel they all called my submission "idiotic", and "wildly unsafe". They just cant recognize the next generation of Linux binaries.
Login with username bloat and no password

By Tristan (@trab on discord)

nc pwn.utctf.live 5003

[bzImage](<https://utctf.live/files/c2984d7b294739448fdcda4fe103ccdc/bzImage?token=eyJ1c2VyX2lkIjo2NCwidGVhbV9pZCI6MzcsImZpbGVfaWQiOjV9.Yivj7g.KEtPUAXI6LA_RGYAe5PA0Xssrlg>)
[rootfs.cpio.gz](<https://utctf.live/files/69ef959b30b7f58f58646db0b2f603a0/rootfs.cpio.gz?token=eyJ1c2VyX2lkIjo2NCwidGVhbV9pZCI6MzcsImZpbGVfaWQiOjZ9.Yivj7g.xdXmcjg3Ig_ugRnOSzBjBvlJYl0>)
[run.sh](<https://utctf.live/files/dcb2502c8772f64e56beb724f04ca510/run.sh?token=eyJ1c2VyX2lkIjo2NCwidGVhbV9pZCI6MzcsImZpbGVfaWQiOjd9.Yivj7g.wBwqIozOttJLBR4UYsJID3A0j3c>)

Bloat .zip

Smol Overflow

You can have a little overflow, as a treat

By Tristan (@trab on discord)

nc pwn.utctf.live 5004

[smol](<https://utctf.live/files/42900cb23b543152908dc3bfa95182f0/smol?token=eyJ1c2VyX2lkIjo2NCwidGVhbV9pZCI6MzcsImZpbGVfaWQiOjh9.Yivj-w.7c8gf509poF8MpwDf0grPxW65C8>)

smol.zip

Web:

Websockets?

Can you hack my website?

By Daniel Parks (@danielp on discord)

[<http://web1.utctf.live:8651>](<http://web1.utctf.live:8651/>)

ReReCaptcha:

Just solve 1000 captchas. It's super easy. 

By ggu (@ggu on discord)

[<http://web1.utctf.live:7132>](<http://web1.utctf.live:7132/>)