Fri, 05 Feb. 2016, 06:30 UTC — Sat, 06 Feb. 2016, 18:30 UTC 

On-line

Sharif University CTF event.

Format: Jeopardy Jeopardy

Official URL: http://ctf.sharif.edu/

Future weight: 35.00 

Rating weight: 35.00 

Event organizers 

The sixth annual Sharif CTF competition will be held on February 5th, 2016, 10:00 IRST and ran for 36 hours.

Each team could have a maximum of three members. One of the team members should represent the team as the team leader and all communications with respect to the CTF will be through the team leader.

Prizes

2048 millibitcoins for first place

Scoreboard

447 teams total

PlaceTeamCTF pointsRating points
1 dcua 5751.00070.000
2 BambooFox 5711.00052.257
3 217 5476.00044.993
4 TokyoWesterns 5217.00040.500
5 SUSlo.PAS 4424.00033.924
6 undefined 4116.00030.883
7 p4 4106.00029.989
8 scryptos 4016.00028.816
9 PLUS 3850.00027.320
10 GeeksSpeak 3761.00026.389
11 .elite 3700.00025.700
12 More Smoked Leet Chicken 3700.00025.434
13 ASIS 3661.00024.973
14 Snatch The Root 3461.00023.563
15 LosFuzzys 3381.00022.910
16 w0pr 3350.00022.575
17 xil.se 3261.00021.905
18 Batman's Kitchen 3241.00021.669
19 dodododo 3071.00020.532
20 HackXore 3000.00020.008
21 a1exdandy 2911.00019.383
22 Bushwhackers 2900.00019.240
23 Raccoons 2850.00018.867
24 0x0bbb 2821.00018.627
25 Yaoi Boyz 2761.00018.203
26 xeksec 2720.00017.900
27 invincible 2711.00017.795
28 0x90r00t 2700.00017.682
29 signal 2675.00017.487
30 kopipacket 2611.00017.057
31 du1iqvw 2535.00016.557
32 rpplusplus 2521.00016.436
33 Undocumented 2490.00016.214
34 JustForJun 2450.00015.940
35 TenDollar 2400.00015.606
36 BalalaikaCr3w 2400.00015.578
37 Rule110 2350.00015.248
38 b01lers 2200.00014.310
39 CorpOfHack 2111.00013.745
40 khack40 2100.00013.655
41 dephault 2100.00013.634
42 qArch 2020.00013.127
43 Invulnerable 2011.00013.053
44 REDACTED 2010.00013.028
45 Thenub 2000.00012.950
46 MV9rwGOf08 2000.00012.933
47 sec0d 1950.00012.612
48 5unKn0wn 1938.00012.524
49 PPP2 1850.00011.973
50 DTUHAX 1850.00011.959
51 q86 1740.00011.276
52 reboot 1711.00011.086
53 jinmo123 1700.00011.006
54 hxp 1700.00010.994
55 hanto 1700.00010.982
56 Shady Hats 1700.00010.971
57 cyberkastike 1700.00010.960
58 Brutewoorse 1650.00010.645
59 loogie 1560.00010.087
60 Sandbox 1511.0009.779
61 No Internet Access 1500.0009.703
62 m0rl 1500.0009.693
63 distcc 1500.0009.684
64 PiggyBird 1490.0009.615
65 Capture the Swag 1461.0009.430
66 Teak_KBR 1450.0009.355
67 baghali_2 1420.0009.164
68 Bopoznpvt 1400.0009.035
69 Securimag 1400.0009.028
70 Dystopian Narwhals 1400.0009.020
71 Espacio 1400.0009.013
72 Yozakura 1350.0008.702
73 HackingForSoju 1350.0008.695
74 REU 1311.0008.452
75 EpicTeam 1300.0008.378
76 kylo_ren 1300.0008.372
77 Iran_so_far_away 1300.0008.366
78 anesec 1300.0008.360
79 pmp 1300.0008.355
80 pwnpeii 1300.0008.349
81 0x34044 1300.0008.344
82 omakase 1250.0008.034
83 0xBU 1250.0008.029
84 Rdot.org 1200.0007.720
85 TeamRedAce 1200.0007.715
86 m1z0r3 1200.0007.710
87 amn3s1a 1150.0007.401
88 jiding 1150.0007.397
89 VoidHack 1150.0007.392
90 ARGOS 1100.0007.083
91 UMD-CSEC 1070.0006.897
92 nickfrostatx 1058.0006.819
93 UCCU 1050.0006.767
94 brucel33t 1050.0006.763
95 2nit 1050.0006.759
96 harse 1050.0006.755
97 ProgramCaiCai 1050.0006.751
98 MeePwn 1013.0006.522
99 NYUSEC 1000.0006.439
100 Sunset 1000.0006.436
101 WhatTheSheep 1000.0006.432
102 rad 1000.0006.429
103 PKTeam 1000.0006.426
104 BONYADI 961.0006.185
105 F4nt45i4 950.0006.115
106 TKOX 950.0006.112
107 Ayaat 950.0006.109
108 Nabla 950.0006.106
109 I Like Trains 900.0005.798
110 serena159 900.0005.795
111 vimvaders 900.0005.793
112 FS2015G.EXE 900.0005.790
113 wizard_of_skn 900.0005.787
114 11-Digit Prime Number 900.0005.784
115 LSE 850.0005.477
116 Magic Hat 850.0005.475
117 PeterPEN 850.0005.472
118 vulnhub-ctf 850.0005.470
119 sauces 850.0005.467
120 LeastWerePretty 800.0005.160
121 DPX 800.0005.158
122 Hexpresso 800.0005.156
123 QuokkaLight 800.0005.153
124 Slug Security 770.0004.968
125 Just4Fun 750.0004.844
126 zwhubuntu 750.0004.842
127 Deepsea 750.0004.840
128 err0r-451 750.0004.838
129 tank1st99 750.0004.836
130 MeSelf 750.0004.834
131 BU 750.0004.832
132 k2701 750.0004.830
133 tak 700.0004.523
134 ISITDTU 700.0004.521
135 GRIS 700.0004.519
136 B2WAR 700.0004.517
137 Parsian 700.0004.516
138 StratumAuhuur 700.0004.514
139 AfkeSix 700.0004.512
140 Mammon Machine 700.0004.510
141 espresso 700.0004.508
142 Avidya 650.0004.202
143 DisturbedSystems 650.0004.201
144 secteam 650.0004.199
145 dkdk1 610.0003.954
146 napdrag0n 600.0003.891
147 CcccC 600.0003.890
148 Insanity 600.0003.888
149 Team Sportsball 600.0003.886
150 Khale_Anvar 600.0003.885
151 cpaw 600.0003.883
152 Brotherhood 600.0003.882
153 Cybrosis 600.0003.880
154 player 600.0003.879
155 rcn 550.0003.573
156 mrhuman 550.0003.572
157 OPT 550.0003.570
158 r3b00+ 550.0003.569
159 YanTayga 550.0003.567
160 mrx 550.0003.566
161 drdr 550.0003.565
162 shellshocker 550.0003.563
163 SASASA 550.0003.562
164 1up 500.0003.256
165 CTF-infinit 500.0003.255
166 GhatheringThe126 500.0003.254
167 DiaW01f 500.0003.253
168 Mhe 500.0003.251
169 All4Hacks 500.0003.250
170 Bono_iPad 500.0003.249
171 noraneco 500.0003.248
172 invader 500.0003.246
173 smoke leet everyday 500.0003.245
174 9SOC 500.0003.244
175 NIS 500.0003.243
176 TestDucko 450.0002.938
177 SHARK 450.0002.936
178 MoM 450.0002.935
179 PHCN 450.0002.934
180 astrodroids 450.0002.933
181 Sudo_root 450.0002.932
182 MSU-CTF 450.0002.931
183 zer0 400.0002.626
184 jup1ter 400.0002.625
185 spaceman 400.0002.624
186 CCSF_HACKERS 400.0002.623
187 YACT 400.0002.622
188 gooligans 400.0002.621
189 kurachan 400.0002.620
190 niu 400.0002.619
191 In3omnia 400.0002.618
192 Virink 400.0002.617
193 PDP 400.0002.616
194 Honeypot 400.0002.615
195 popopo 350.0002.310
196 H3XOR 350.0002.309
197 krx 350.0002.308
198 g399 350.0002.307
199 HackCat 350.0002.306
200 Caspian 350.0002.305
201 begwinners 350.0002.304
202 SteinsGate 350.0002.303
203 zzoru 350.0002.302
204 NaruseJun 350.0002.302
205 FluxFingers 350.0002.301
206 ECC 320.0002.117
207 phat 300.0001.995
208 Gomi 300.0001.994
209 NANO 300.0001.993
210 GUNnu 300.0001.992
211 H3X0R 300.0001.992
212 b_O 300.0001.991
213 Owe 300.0001.990
214 Resistance 300.0001.989
215 jacks 300.0001.989
216 EEvEE 300.0001.988
217 Execute 300.0001.987
218 warriors 300.0001.986
219 shsirk 300.0001.986
220 crayontheft 300.0001.985
221 Shadow Servants 300.0001.984
222 ffx 300.0001.983
223 keks 300.0001.983
224 Bl@ckWhite 300.0001.982
225 morganFr33man 300.0001.981
226 raftim 300.0001.981
227 joizel 250.0001.676
228 quanyang 250.0001.675
229 Temporary_Team 250.0001.674
230 s0.wh4t.baby-_- 250.0001.674
231 fs0c13ty 250.0001.673
232 Fu1lsp1dAtk 250.0001.672
233 BugBunnys 250.0001.672
234 DjigIT 250.0001.671
235 Team-Onymous 250.0001.670
236 555 250.0001.670
237 Y2FwdF9kdWNrCg 250.0001.669
238 glaros 250.0001.669
239 Dr_Fez 250.0001.668
240 ECX Inc. 250.0001.667
241 Rush 250.0001.667
242 lmxs 250.0001.666
243 HeXA 250.0001.666
244 TeamName 250.0001.665
245 2mr__ 250.0001.664
246 Not_yet_but_soon 250.0001.664
247 g0tiu5a 250.0001.663
248 Dragon Sector 250.0001.663
249 xxxxxxx 250.0001.662
250 Borja 250.0001.661
251 samboose 250.0001.661
252 DefHackto 250.0001.660
253 yourAdHere 250.0001.660
254 THM 250.0001.659
255 JnJHAHA 200.0001.354
256 ALLES! 200.0001.354
257 Attacker 200.0001.353
258 moongs 200.0001.353
259 GotGotGotGotGot 200.0001.352
260 Sae 200.0001.352
261 d4rkc0de 200.0001.351
262 esra 200.0001.351
263 randohm 200.0001.350
264 soluna 200.0001.350
265 secgroundzero 200.0001.349
266 s111 200.0001.349
267 The DHARMA Initiative 200.0001.348
268 rutrack 200.0001.348
269 chauncey_davs 200.0001.347
270 ImHappy2 200.0001.347
271 r00tmont 200.0001.346
272 TobyLinRouters 200.0001.346
273 wolverines 200.0001.345
274 brussel 200.0001.345
275 R.R 200.0001.344
276 CLGT 200.0001.344
277 chuckabuck 200.0001.344
278 mau5 200.0001.343
279 loco 200.0001.343
280 Mugivara 200.0001.342
281 Koibasta 200.0001.342
282 ChocolateMakers 200.0001.341
283 Spam9Dayz 200.0001.341
284 Hacknam Style 200.0001.340
285 Image 200.0001.340
286 D3afMut3s 200.0001.340
287 hy00un 150.0001.035
288 ByteBandits 150.0001.034
289 VatsalDesai93 150.0001.034
290 kek 150.0001.034
291 tiwuileong 150.0001.033
292 kernelpool 150.0001.033
293 JGC 150.0001.032
294 RobloxDragon 150.0001.032
295 1337egy 150.0001.032
296 corrosive 150.0001.031
297 l.-_-l 150.0001.031
298 overflowsec 150.0001.030
299 Hourglass 150.0001.030
300 MyTeam 150.0001.030
301 HumptyDumpty 150.0001.029
302 machan 150.0001.029
303 MandSVs.tW 150.0001.028
304 K4l4m3l 150.0001.028
305 idpnz 150.0001.028
306 OverDover 150.0001.027
307 Cyber2 150.0001.027
308 CaptainRNG 150.0001.027
309 blabla 150.0001.026
310 White_Hat_Eagles 150.0001.026
311 PUBU 150.0001.025
312 G04tzZZ 150.0001.025
313 KubSTU 150.0001.025
314 nofoozi 150.0001.024
315 Glidermed 150.0001.024
316 taurus 150.0001.024
317 Desiprox_Team 150.0001.023
318 seiyakyokai 150.0001.023
319 Natalia 150.0001.023
320 Meerkat 150.0001.022
321 TontonsFl4ggeurs 150.0001.022
322 hAIXer 150.0001.022
323 NL_StartUP 150.0001.021
324 hAIXer 150.0002.042
325 NeOLux-C1Ph3r 150.0001.021
326 CyberTeam6 150.0001.020
327 NEWSEC 150.0001.020
328 duguhu 150.0001.020
329 FishnChips 150.0001.019
330 ByteShredders 150.0001.019
331 Aussie 100.0000.714
332 garb0 100.0000.714
333 yum00 100.0000.714
334 NetSecies 100.0000.713
335 mobiletest 100.0000.713
336 CyberAge 100.0000.713
337 MisterChoc 100.0000.712
338 Byte 100.0000.712
339 negainoido 100.0000.712
340 ExMoK 100.0000.712
341 Flynn 100.0000.711
342 Sanson 100.0000.711
343 AboutTrout 100.0000.711
344 glucose 100.0000.710
345 MrStansfielddd 100.0000.710
346 She-off 100.0000.710
347 Veneno 100.0000.709
348 bofbof 100.0000.709
349 CEH 100.0000.709
350 th3jackers1 100.0000.709
351 Bashiri 100.0000.708
352 Nu1L 100.0000.708
353 KernelPanic 100.0000.708
354 Maigel 100.0000.707
355 _try 100.0000.707
356 hrkljus 100.0000.707
357 D@rkSmileys 100.0000.707
358 TobyLinServers 100.0000.706
359 dz_hackers 100.0000.706
360 SUSHI 100.0000.706
361 noneinone 100.0000.706
362 em000 100.0000.705
363 devcraft 100.0000.705
364 Bittzzz 100.0000.705
365 Jockers 100.0000.704
366 chomuX 100.0000.704
367 bananina 100.0000.704
368 0xTester 100.0000.704
369 MMA 100.0000.703
370 mtn 100.0000.703
371 A13x_404 100.0000.703
372 i401 100.0000.703
373 AugmentedSkies 100.0000.702
374 D@rk$h3ll 100.0000.702
375 Planters 100.0000.702
376 enZyme 50.0000.397
377 qwpx 50.0000.397
378 atestpk 50.0000.397
379 Acquia 50.0000.397
380 JoC 50.0000.396
381 Faker 50.0000.396
382 camus 50.0000.396
383 Zonda 50.0000.396
384 a1ta1r 50.0000.395
385 HackITGuys 50.0000.395
386 KishTUIS 50.0000.395
387 casper 50.0000.395
388 006 50.0000.395
389 Pwn October 50.0000.394
390 ocksumoron 50.0000.394
391 SherlockInOurHolmes 50.0000.394
392 Bobby_Table 50.0000.394
393 Fox 50.0000.393
394 SherlockInOurHolmes0 50.0000.393
395 Acheron 50.0000.393
396 se7en 50.0000.393
397 EieiGumz 50.0000.392
398 hayiicle 50.0000.392
399 fbfbfb 50.0000.392
400 Lone_Wanderer 50.0000.392
401 soom 50.0000.392
402 IITRHackers 50.0000.391
403 Sole_Survivor 50.0000.391
404 MokkaBodz 50.0000.391
405 ASIS 50.00025.363
406 r00t_b00t 50.0000.391
407 Hans 50.0000.390
408 funk_u 50.0000.390
409 UnwontedStyle 50.0000.390
410 ChrizBMX 50.0000.390
411 BCA_ATCS17-18 50.0000.389
412 CPU 50.0000.389
413 WOLFPACK 50.0000.389
414 polygon 50.0000.389
415 deadcoder 50.0000.389
416 denial0day 50.0000.388
417 bahldeigals 50.0000.388
418 HWA 50.0000.388
419 nopnop 50.0000.388
420 omnious3 50.0000.388
421 tuhackers 50.0000.387
422 squareroots 50.0000.387
423 sucksctf 50.0000.387
424 0000000000 50.0000.387
425 abab123 50.0000.387
426 efiens 50.0000.386
427 BTSec 50.0000.386
428 UINAM_CyberArmy 50.0000.386
429 Pirates 50.0000.386
430 wtfmehftw 50.0000.386
431 golden_potato 50.0000.386
432 kafuuchino 50.0000.385
433 torf 50.0000.385
434 blah 50.0000.385
435 Thanos2 50.0000.385
436 Alma 50.0000.385
437 HumanCurse 50.0000.384
438 xSTF 50.0000.384
439 DMU Hackers 50.0000.384
440 On3Touch 50.0000.384
441 techrex 50.0000.384
442 TheExploiter 50.0000.383
443 Shielder 50.0000.383
444 v1p3r 50.0000.383
445 Arxenix 50.0000.383
446 Ololo 50.0000.383
447 maron 50.0000.191
HertzJan. 13, 2016, 7:13 p.m.

So is this an online CTF or onsite ?


SharifCTFJan. 26, 2016, 6:45 a.m.

It is an online CTF.


0x3C3EFeb. 2, 2016, 4:58 p.m.

Hey, someone registered your team (Invulnerable), what should we do?


adiFeb. 5, 2016, 5:53 a.m.

is there any irc channel ?


SharifCTFFeb. 5, 2016, 7:44 a.m.

No, But there is a Public Chat on the portal.


ktFeb. 5, 2016, 6:44 p.m.

I could not register as I never got the confirmation email.


capgrey7Feb. 6, 2016, 11:04 a.m.

This was the first time I tried CTF thing and Sharif University CTF 2016 organizers have failed miserably! They failed to send me the the activation link.
I followed it up with them, and instead of sending me the activation link, they sent me the wrong login username and password. Then, when I followed it up with them again,
they told me I need to register again! I would have thought Sharif University CTF 2016 organizers would fully automate the CTF registration process, but it is obviously not the case.


SharifCTFFeb. 6, 2016, 11:50 a.m.

Sorry for the inconvenience CapGrey.
Please check your email.


zkuFeb. 6, 2016, 6:50 p.m.

The organizers really put some effort into this CTF, well done! Great support system in place.
Challenges were overall well done with only minor (unintended) ambiguities. 5/5


PharisaeusFeb. 6, 2016, 6:55 p.m.

After some terribe CTFs this year, this one was a nice change! :)
Interesting and challenging tasks, very responsive and helpful admins - everything was as it should be! :)


Number4Feb. 6, 2016, 7:15 p.m.

Wery nice challenges, very good work with cathegories!


kbeckmannFeb. 6, 2016, 7:48 p.m.

Really enjoyed this CTF. Good challenges, good admins that responded quickly in PMs, cheat-proof challenges where each team get a different challenge URL with unique flags (i think) so no flag sharing. All in all, awesome! Didn't have any problems with bad peering either. Thank you for hosting this!


saintmehFeb. 6, 2016, 8:10 p.m.

Good challenges. I regret not getting on here sooner! I would have planned my weekend around it, if I knew how awesome this challenge would be ^_^ Thank you. I did poorly due to only having 2 hours left and 1 person on my team. 5/5 stars. I wish the ratings went up to 10. This was an excellent challenge. WTG! Next year, could we see how many teams solved each challenge?


arturo182Feb. 6, 2016, 8:33 p.m.

I have to agree with the positive opinion! Really well thought out CTF!
The challenges were described well enough, so it was never guessing.
There was a lot of them, so there was always something to do, even if you get stuck in one, you can try another to clear your head.
The whole system was well designed. Great idea with the extra points for first three teams and shared points.
I also liked that the flag not only hard a proper format, but also many of them were unique for the team, so that minimized the sharing for sure.
The scoreboard is nice and clear with pretty stats. One downside is that there's no json for it, but not many CTFs have it.
The chat was a nice addition as well, it could do with some polishing (timestamps, make the window bigger) but it was a nice addition.

You might want to consider open sourcing the CTF system, I could see it becoming a standard (maybe with some theme changes ;)


arturo182Feb. 6, 2016, 8:35 p.m.

One more thing: I think this CTF definitely deserves to be worth at least 5 pts, it was really good difficulty and organization-wise.


sml555Feb. 7, 2016, 2:24 a.m.

I registered and never got a confirmation email. Couldn't even participate because of that!


DacatFeb. 7, 2016, 2:28 a.m.

This was a great CTF, Please give this one a rating next time :)


h0rstFeb. 7, 2016, 11:02 a.m.

Great CTF! (Good quality, great learning effect!)


msmFeb. 7, 2016, 1:07 p.m.

Great CTF, fun and educational challenges.


SharifCTFFeb. 7, 2016, 1:35 p.m.

@zku: Thank you very much.
Your support keeps us on our toes!


SharifCTFFeb. 7, 2016, 1:38 p.m.

@Pharisaeus:
We tried our bests to keep the challenges interesting, and motivate everyone by being as responsive as we could.
Your great comments are really appreciated. Thanks!


SharifCTFFeb. 7, 2016, 1:55 p.m.

@Number 4:
We are really happy that you liked it. Thanks a lot for participation!


SharifCTFFeb. 7, 2016, 1:56 p.m.

@kbeckmann:
Thanks a lot for everything. We tried our bests, and your comments show that it has paid off :)


SharifCTFFeb. 7, 2016, 1:56 p.m.

@Saint Saint:
Thank you very much. Hope to see you next time around the clock, and wish you the best of luck.
Your suggestion is really appreciated. We currently have a system that informs the contestants about basic statistics regarding each challenge/team. We hope to improve it for the next year to better satisfy your needs.


SharifCTFFeb. 7, 2016, 1:56 p.m.

@arturo182
Thanks a lot for all your positive comments. We really appreciate them, as well as the 5-star rating :)
Regarding the suggestions about scoreboard JSON and chat design, I will notify the staff to see what we can do to improve it for the next year. Suggestions are always welcome!
Open-sourcing the system is a great suggestion I have never thought of before. We will discuss it internally, but I'm strongly positive about the idea.


SharifCTFFeb. 7, 2016, 1:56 p.m.

@Sajeeb Lohani:
We are so sorry about it. We did all we could, but sometimes the email systems do not behave as we want them to. We regret not to see you around. Hope that we have the chance next year. Sorry again!


SharifCTFFeb. 7, 2016, 1:56 p.m.

@Kris Hunt:
Thanks a lot for your great comment, and the suggestion.
Juts for confirmation, do you mean we put up an online system for rating challenges?


SharifCTFFeb. 7, 2016, 1:56 p.m.

@David Kutik
Thank you very much. Your support is really appreciated, and keeps us going!


SharifCTFFeb. 7, 2016, 1:57 p.m.

@msm
Many thanks for all your support. Hope to see you around next year, too!


msmFeb. 7, 2016, 3:16 p.m.

@SharifCTF - i'll elaborate a bit more.

Bit of background - I'm from p4 team, and we finished CTF at 7th place.

When I praised your challenges I really meant it. Especially in comparsions to previous CTFs (HackIM and BreakIn) seeing some sane challenges, with real reversing and web was a relief.

1) Crypto - crypto challenges was practical and modern - just the kind everyone likes. Virtually zero guessing and obscure "you either know solution right away, or you never will" kind of problems. 10/10 here. By the way, I'll include tiny bit of self-promotion - I'm the one that managed to solve "Hail Zeus" challenge (our team is the only team that solved this task). Kudos to creator of that challenge, by far my favorite task in this CTF. And `The Russian Attack` looked like great challenge, unfortunatelly i didn't have enough time to solve it.
Summing category up, solid 10/10 from me.

2) Reverse - step down, but still solid. Well, at least everything was really reversing, unline HackIM and BreakIN. So first few challenges was almost too easy (but for 50/100 points that's fair, I guess). But then something happens, and you get challenges like HI, WinCC and Maze, that were quite a step up in difficulty. I wouldn't have anything against it, but most of the difficulty came from wrapping executables in off the shelf packers (VmProtect and AsPack, if I remember correctly) - cracking these is not very creative and bit boring (but that's just my opinion). 9/10 for first challenges and 7/10 for last ones from me.

3) Web - i shouldn't say anything, because our team almost finished with 0 points from web challenges (XSS somehow didn't worked for us, we forgot about php: exploit, we wrote solver for captchas but we ran out of time in the middle of cracking, and I solved web 400 in last minute). But objectively speaking, all tasks was real world and interesting, so I rate that category 9/10.

4) Pwn - I'm not pwner, but from what I heard from my teammates, pwn was not really about pwning. For example "sql" was typical web task. I don't know how to rate that category, but more real pwning (binary exploiting) next time, please.

(1/2)


msmFeb. 7, 2016, 3:16 p.m.


5) Forensics - solid challenges, except that first few challenges was way too easy ("strings harif" giving flag away is a bit too easy even for 100p ;) ). But more difficult challenges were fun, so 8/10 or 9/10 from me.

6) Misc - last category. Secure coding was WAY overrated (i solved both challenges in less than 10 minutes. I'm mainly programmer so that's may be the reason, but still - hack by the sound required to write program 2 magnitudes more complex than secure coding 2, but was worth only 200p?). But first 3 challenges was interesting (especially impossible game, math ftw). Solid category, I can't complain about anything (except overrated seccoding, ofc). Another 9/10.

The only thing I *didn't* like about CTF was limitting team to 3 persons, I don't see why anyone would do that in offline CTFs.

Summing it up, great job and keep it up. I hope to participate next year too.

(2/2)


SharifCTFFeb. 8, 2016, 11:27 a.m.

@msm:

Wow, man!
Excellent comments. They will be really useful for us, and guide us toward a better CTF next year. Thanks so much for putting so much for all your time and effort.

Regarding the "Hail Zeus" challenge: As you are the only team which solved this challenge, we invite you to send us your write-up. We will surely upload your write-up besides our, and it will be useful for other teams to compare and contrast them, so as we will all learn from this synergy.

Thanks a lot again.


msmFeb. 8, 2016, 1:08 p.m.

No problem, that was the least i could do.

`Regarding the "Hail Zeus" challenge (...) we invite you to send us your write-up`: I already did! In fact, together with my team, we uploaded writeups for almost every challenge we did (@see team writeups at https://ctftime.org/team/5152). You can find that specific writeup from Zeus at https://github.com/p4-team/ctf/tree/master/2016-02-05-sharif/crypto_300_zeus (I hope I didn't overcomplicate solution too much).


xassizFeb. 8, 2016, 5:26 p.m.

Why this CTF rating weight was 0.0 and now 25.0? Weight should be fixed before the competition begins, that's not fair


LaysFeb. 8, 2016, 6:14 p.m.

Why there's a team being disqualified?


PharisaeusFeb. 8, 2016, 6:30 p.m.

@xassiz it's a common situation with small/new CTFs that before the competition there is no way of knowing what kind of level it will have, so the score changes accordingly.


xassizFeb. 8, 2016, 6:35 p.m.

@Pharisaeus I understand, but this CTF has been celebrated since 2013


gynvaelFeb. 8, 2016, 7:20 p.m.

@☞ zǝuıʇɹɐɯ olqɐd ☜
Usually CTF ranks are not final and are subject to change after the CTF - in the direction of lower scores if it turns out to have multiple issues or to the higher end if it turns out better than expected.

From a teams perspective this is a little troublesome if you have to chose in which CTFs you want to take part in - e.g. you prefer to skip the ones rated 0-20 to have more energy for the ones rated 25-100, etc. But on the other hand, it is good that the rank is adjusted, as it's worth making good CTFs more meaningful for the ranking, and the more problematic (i.e. more random) ones less meaningful.

That being said, here's a trick I've learned in the past: If a rank looks off (e.g. 0), check the CTFs history.
- if it's the first edition and it's made by not really known crew, the rank will probably end up around 0-20
- if it's the first edition and it's made by a top20 team, it's probably going to end up 20-40
- if it's an Nth edition, and it's previous year had rank K, check the comments - good comments = more rank/same (K - K+20), bad comments = smaller rank (K-20 - K)

Last Sharif quals had 25 points, pool rating 3.6 (which is on the good, but not perfect side), and pretty responsive admins - so a rank of 25-30 was to be expected ;)

Also, when in doubt, ping CTFTime's admin - he's a great guy and responsive as well :)


xassizFeb. 8, 2016, 7:53 p.m.

@gynvael thank you for your time! I understand your tricks, but I think if last Sharif quals had 25 points, this year it should **start with 25** and then, if necessary, end up with more or less weight depending on poll rating :P


unnamedFeb. 9, 2016, 8:56 a.m.

Actually I find the this ctf event really interesting and very very good
But I have a little request (if possible) I wish the organizers publish writeups for challenges with no writeups (specially the HI in re puzzles me I know nothing about vmprotect)


gynvaelFeb. 9, 2016, 10:09 p.m.

@☞ zǝuıʇɹɐɯ olqɐd ☜
I agree. Though it happens at times that CTFTime admin is busy with other things and is not able to setup the initial rank before the CTF. I'm not saying it's a perfect system, just pointing out that it is possible to predict that the rating might be adjusted ;)


Sign in to comment.