CTFtime.org / DEF CON CTF Qualifier 2018

Sat, 12 May 2018, 00:00 UTC — Mon, 14 May 2018, 00:00 UTC

On-line

A DEF CON CTF Qualifier event.

Format: Jeopardy

Official URL: http://oooverflow.io/

This event's weight is subject of public voting!

Future weight: 59.95

Rating weight: 71.97

Event organizers

Order of the Overflow

Scoreboard

585 teams total

	Team	CTF points	Rating points
1	Samurai	4294.000	143.940
2	mhackeroni	4066.000	104.134
3	Plaid Parliament of Pwning	3909.000	89.507
4	Sauercloud	3815.000	81.934
5	RPISEC	3670.000	75.905
6	Tea Deliverers	3650.000	73.171
7	KaisHack+PLUS+GoN	3462.000	68.307
8	HITCON	3272.000	63.837
9	Shellphish	2742.000	53.954
10	Dragon Sector	2679.000	52.099
11	koreanbadass	2536.000	49.048
12	Via Vee	2439.000	46.877
13	0daysober	2245.000	43.164
14	binja	2211.000	42.198
15	C.G.K.S	2194.000	41.571
16	r00timentary	2194.000	41.271
17	DEFKOR	2150.000	40.269
18	PwnThyBytes	2090.000	39.028
19	TokyoWesterns	2090.000	38.818
20	hxp	2089.000	38.611
21	JD-r3kapig	1986.000	36.714
22	BFS	1971.000	36.306
23	NASA Rejects	1866.000	34.404
24	TeamBaguette	1800.000	33.168
25	!SpamAndHex	1785.000	32.796
26	perfect blue	1600.000	29.585
27	Tasteless	1585.000	29.231
28	5BC	1470.000	27.208
29	LC↯BC	1454.000	26.852
30	securisecctf	1449.000	26.685
31	Validity	1399.000	25.770
32	CLGT	1370.000	25.211
33	Never Stop Exploiting	1282.000	23.668
34	dcua	1274.000	23.470
35	galhacktictrendsetters	1259.000	23.158
36	xSTT	1196.000	22.045
37	Bushwhackers	1167.000	21.505
38	ElectroBoard	1152.000	21.202
39	hackmissile	1150.000	21.120
40	team enu	1145.000	20.990
41	HackAtSeoul	1123.000	20.578
42	AbsentChefs	1106.000	20.251
43	Azure Assassin Alliance	999.000	18.418
44	upbhack	948.000	17.525
45	In`shellah	920.000	17.019
46	p4	891.000	16.498
47	BAH-Humbug	884.000	16.348
48	Hexpresso	875.000	16.165
49	Neg9	864.000	15.950
50	VoidHack	785.000	14.596
51	Harekaze	780.000	14.484
52	Shell Collecting Club	771.000	14.306
53	robotmafia	768.000	14.230
54	noraneco	757.000	14.021
55	ASIS	754.000	13.946
56	pixels	754.000	13.923
57	EmpireCTF	754.000	13.900
58	ChocolateMakers	749.000	13.795
59	secse	746.000	13.723
60	WhatTheSheep	746.000	13.703
61	RiceSec	746.000	13.683
62	LosFuzzys	743.000	13.614
63	WE_0WN_Y0U	743.000	13.596
64	badfirmware	743.000	13.578
65	cyon	680.000	12.504
66	TeamAardvark	661.000	12.169
67	AlmaFA	660.000	12.136
68	0xbadf00d	645.000	11.869
69	Knights of the DROP TABLE	642.000	11.803
70	Apex	642.000	11.788
71	shellrippers	636.000	11.673
72	SCS2018	636.000	11.659
73	ManceRadare2	636.000	11.646
74	YoungPwnawans	636.000	11.632
75	cyberkastike	633.000	11.569
76	ids-TeamCC	633.000	11.556
77	NBUSEC	633.000	11.544
78	HackerDom	633.000	11.532
79	Epic Leet Team	633.000	11.520
80	Hackademia	625.000	11.375
81	Pandemic	625.000	11.364
82	FireShell	625.000	11.353
83	ddosattacks	625.000	11.342
84	RTFM	625.000	11.332
85	0e85dc6eaf	625.000	11.322
86	PKTeam	625.000	11.312
87	YOKARO-MON	625.000	11.303
88	tuna	625.000	11.293
89	ID-10-T	625.000	11.284
90	Limpopo	625.000	11.275
91	noxale	625.000	11.266
92	P@nic!	563.000	10.218
93	TeamMugit	534.000	9.724
94	vuls	532.000	9.682
95	!soBad	532.000	9.674
96	凝聚网安工作室	529.000	9.616
97	hinazuru	521.000	9.474
98	TheYellingCow	521.000	9.467
99	The Northern Coalition	521.000	9.459
100	underhill	521.000	9.452
101	yohanes	521.000	9.445
102	InfoSecIITR	521.000	9.438
103	OSI Layer 8	521.000	9.431
104	0x4556368625	521.000	9.424
105	y12uN	521.000	9.418
106	Ph0t1n1a	521.000	9.411
107	▲▲▲	521.000	9.405
108	Dogod	515.000	9.298
109	NYUSEC	515.000	9.292
110	Contagion	515.000	9.286
111	OpenToAll	515.000	9.280
112	DokuDempa	515.000	9.274
113	Lorem Checksum	515.000	9.269
114	WeAreNotPrepared	515.000	9.263
115	Made In MIM	515.000	9.258
116	validity1	515.000	9.252
117	SSAT	515.000	9.247
118	ARGOS	515.000	9.242
119	HMPerson1	515.000	9.236
120	IISEC-mochigoma	515.000	9.231
121	ICST_NOT_NCCST	515.000	9.227
122	UAFCSC	515.000	9.222
123	CyberCholos	515.000	9.217
124	Invulnerable	515.000	9.212
125	onotch	515.000	9.207
126	HackXore	515.000	9.203
127	Don'tPanic!	515.000	9.198
128	Rapace Diabolique	515.000	9.194
129	TheEmperors	515.000	9.190
130	ShineShadow	515.000	9.185
131	UCI_Cyber	515.000	9.181
132	IrishBunnies	436.000	7.853
133	sheldon2	433.000	7.798
134	Neutrino_Cannon	428.000	7.711
135	hxzene	425.000	7.656
136	SiBears	425.000	7.652
137	kosh	425.000	7.649
138	Juniter	419.000	7.544
139	secteam	419.000	7.540
140	FresherMan	417.000	7.503
141	cr00se elroy	417.000	7.500
142	VXRL	417.000	7.496
143	Xp0int	417.000	7.492
144	TheSpaniards	417.000	7.489
145	katagaitai	417.000	7.486
146	Knightsec	417.000	7.482
147	AnomalousMaterials	411.000	7.378
148	Tempest	411.000	7.375
149	Ten*48	411.000	7.372
150	technic	411.000	7.368
151	aslrulz	411.000	7.365
152	WeBareBears	411.000	7.362
153	bi0s	411.000	7.359
154	[TechnoPandas]	411.000	7.356
155	Pwnium	411.000	7.353
156	luxeria	411.000	7.350
157	CarrotSuitMen	411.000	7.347
158	dtdt	411.000	7.344
159	CyB3r1	411.000	7.341
160	RunCMD	411.000	7.338
161	BORG	411.000	7.336
162	defragmented brains	411.000	7.333
163	0xD13A	411.000	7.330
164	b0tch_sec	411.000	7.327
165	I'm ggonna	411.000	7.325
166	T0X1C V4P0R	411.000	7.322
167	Buzz3d	411.000	7.320
168	amuncic	411.000	7.317
169	FiveTree	411.000	7.314
170	yharima	411.000	7.312
171	paid2penetrate	411.000	7.309
172	saarsec	411.000	7.307
173	Rapadura	411.000	7.305
174	White Orchid	411.000	7.302
175	BSLabs	411.000	7.300
176	0x34044	411.000	7.298
177	kazuaa	335.000	6.021
178	Colonel0x20	335.000	6.019
179	JohnDoe	327.000	5.883
180	fishhsif	315.000	5.679
181	73mp31	313.000	5.644
182	Fujisawa	310.000	5.591
183	PwnaSonic	310.000	5.589
184	0xBADA55	309.000	5.570
185	NDSU_Cyber_Bison_Gold	309.000	5.568
186	beer_side	309.000	5.566
187	fugashi	309.000	5.564
188	ＶＡＰＯＲＳＥＣ	307.000	5.528
189	glua.team	307.000	5.526
190	i81109	307.000	5.524
191	WishYouWereHere	307.000	5.522
192	K.Knock	307.000	5.520
193	pwndevilsasu	307.000	5.518
194	SecurityFactorial	307.000	5.516
195	Vulntron	307.000	5.515
196	tokumeiusagi	307.000	5.513
197	Lerdsuwa	307.000	5.511
198	BabyPhD	307.000	5.509
199	vand	307.000	5.507
200	m1z0r3	307.000	5.505
201	De1ta_	307.000	5.504
202	Pronoia	307.000	5.502
203	Nnnaaa...	307.000	5.500
204	losiny	307.000	5.498
205	Exponential	307.000	5.497
206	ThreatLevelMidnight	307.000	5.495
207	T1pst4r	307.000	5.493
208	coyote	307.000	5.492
209	Nightmare Mechasheep	307.000	5.490
210	cafejoa	307.000	5.488
211	shellgamez	307.000	5.487
212	Solo	307.000	5.485
213	indo8	307.000	5.483
214	hAIXer	307.000	5.482
215	n00bp0tat0	307.000	5.480
216	N0t_Y0u	307.000	5.479
217	secsi	307.000	5.477
218	irGeeks	307.000	5.476
219	w33t34m	307.000	5.474
220	farmingsimulator2015	307.000	5.473
221	secspirit	307.000	5.471
222	胖二翁	307.000	5.470
223	胖四海1	307.000	5.468
224	rmrfslash	307.000	5.467
225	胖四方	307.000	5.465
226	kopipacket2	307.000	5.464
227	FuckingHellLetMeLogIN	307.000	5.463
228	bolgia4	307.000	5.461
229	madhaxers	307.000	5.460
230	RF	307.000	5.458
231	CTF-infinit	307.000	5.457
232	ElderWang	307.000	5.456
233	NIS	307.000	5.454
234	sunny_place_e04va8nkcmj9	307.000	5.453
235	r	307.000	5.452
236	int3pids	307.000	5.450
237	10n3r	307.000	5.449
238	rawsec	307.000	5.448
239	ReasonCtf	307.000	5.447
240	ToyPoodleBites	307.000	5.445
241	Cse	307.000	5.444
242	Just_M3	307.000	5.443
243	WeaponisedSarcasm	307.000	5.442
244	jsutset	233.000	4.200
245	BluntForceTrauma	225.000	4.065
246	luponed	223.000	4.030
247	CultDeadChupacabras	222.000	4.012
248	Stack	211.000	3.827
249	DigRev	211.000	3.826
250	Av3ng3rs_1n1t14t1v3	211.000	3.824
251	grzegol	211.000	3.823
252	UNCC	208.000	3.772
253	TU6PM	208.000	3.771
254	fivestarsunburst	206.000	3.736
255	grc	206.000	3.735
256	TeamAZ	206.000	3.734
257	#Thacket;	206.000	3.733
258	P2PPressure	206.000	3.732
259	Ascope	206.000	3.731
260	KEEPER	206.000	3.729
261	bl@m3t43c@t	205.000	3.712
262	/bad	205.000	3.711
263	FruitSnacks	205.000	3.710
264	cbs	205.000	3.709
265	_	205.000	3.708
266	gitak	205.000	3.706
267	$criptKiddies	205.000	3.705
268	Xhunter	205.000	3.704
269	WAKANDA_FOREVER!	205.000	3.703
270	g30	205.000	3.702
271	just_r0b	205.000	3.701
272	showeremoji	205.000	3.701
273	eval	205.000	3.700
274	blueship	205.000	3.699
275	MonSec	205.000	3.698
276	bananagoat	205.000	3.697
277	Yamagi.com	205.000	3.696
278	pengabc	205.000	3.695
279	The Lynebackers	205.000	3.694
280	CatPawn	205.000	3.693
281	PPAP_Dance	205.000	3.692
282	Youalreadyknow	205.000	3.691
283	stankc	205.000	3.690
284	Hash Slinging Hackers	205.000	3.689
285	DBCooper	205.000	3.688
286	katamon	205.000	3.688
287	Guest9282322	205.000	3.687
288	Coxxs	205.000	3.686
289	brucel33t	203.000	3.651
290	X1cT34m	203.000	3.651
291	toolate	203.000	3.650
292	i_asked_jeeves	203.000	3.649
293	Ggoggoma	203.000	3.648
294	ConfigConsole	203.000	3.647
295	HNN4ABO	203.000	3.646
296	Security First	203.000	3.646
297	110_team	203.000	3.645
298	1064CBread	203.000	3.644
299	pandasys	203.000	3.643
300	Rebyc	203.000	3.642
301	kichung	203.000	3.642
302	wwwllkk	203.000	3.641
303	blockchain878787	203.000	3.640
304	ByteBandits	203.000	3.639
305	y0d31	203.000	3.638
306	madmonies	203.000	3.638
307	hack4fun!	203.000	3.637
308	win&cloud	203.000	3.636
309	TeamNotFound	203.000	3.635
310	flteam	203.000	3.635
311	IGRUS	203.000	3.634
312	shhoya	203.000	3.633
313	tq2	203.000	3.632
314	jackestax	203.000	3.632
315	MhackGyver	203.000	3.631
316	se0g1	203.000	3.630
317	r4mg7hund3r	203.000	3.629
318	os1913	203.000	3.629
319	snack_canary	203.000	3.628
320	MSTUCA	203.000	3.627
321	Loners	203.000	3.627
322	GOBBLES	203.000	3.626
323	blobby	203.000	3.625
324	UCCU	203.000	3.625
325	VanceCTF	203.000	3.624
326	Divas hit the road	203.000	3.623
327	mityada	203.000	3.622
328	ctf_und_so	203.000	3.622
329	CaptureTheFrog	203.000	3.621
330	X10Sec	203.000	3.620
331	WeCool	203.000	3.620
332	crayontheft	203.000	3.619
333	Beast	203.000	3.619
334	AoToI	203.000	3.618
335	bobgil	203.000	3.617
336	Freakazoids	203.000	3.617
337	Gadol	203.000	3.616
338	Platypodes	203.000	3.615
339	memyselfandi	203.000	3.615
340	DevoMeat	203.000	3.614
341	AddPayphones	203.000	3.613
342	just CatTheFish	203.000	3.613
343	M.5.F.4	203.000	3.612
344	HoT	203.000	3.612
345	wight	203.000	3.611
346	6duk	203.000	3.610
347	ShortestMonth	203.000	3.610
348	PDKT	203.000	3.609
349	Batman's Kitchen	203.000	3.609
350	SYPER	203.000	3.608
351	TryTry	203.000	3.607
352	nacayoshi00	203.000	3.607
353	fi	203.000	3.606
354	BlockchainEnabledMulti-LevelCloudBasedCorporateSynergyforSmartThingsofInternet	203.000	3.606
355	.elite	203.000	3.605
356	Nepalian	203.000	3.605
357	nonamana	203.000	3.604
358	qqqqq	203.000	3.603
359	SnowSeal	203.000	3.603
360	Dancing Simpletons	203.000	3.602
361	azure	203.000	3.602
362	CS-WAT	203.000	3.601
363	OPT	203.000	3.601
364	Hackthissite	203.000	3.600
365	SMlee	203.000	3.600
366	I_AM_gROOT	203.000	3.599
367	f1yyy	151.000	2.727
368	africaking	121.000	2.224
369	p0k3r	104.000	1.938
370	keep	104.000	1.938
371	hime14	104.000	1.937
372	jiva	104.000	1.937
373	LonelyBit	104.000	1.936
374	1pwnch	104.000	1.936
375	I’m GGonna	104.000	1.935
376	0xB455r0p	104.000	1.935
377	SubZero	104.000	1.934
378	nemo	104.000	1.933
379	0x1f5	104.000	1.933
380	RockRiver	104.000	1.932
381	qweqweqwe	104.000	1.932
382	awg	104.000	1.932
383	starPt	104.000	1.931
384	ATeam	104.000	1.931
385	Adnan_Slef	104.000	1.930
386	ch3ny4n6	104.000	1.930
387	dankhax0r	104.000	1.929
388	0?#3XK	104.000	1.929
389	Team1234567	104.000	1.928
390	N.Korea	104.000	1.928
391	vanhelsing	104.000	1.927
392	TonyLoserFace	104.000	1.927
393	CyBest	104.000	1.926
394	dirtymikeandtheboyz	104.000	1.926
395	DENKOSEKKA	104.000	1.925
396	QQQQQQ	104.000	1.925
397	NUCL3@R	104.000	1.924
398	Soy	104.000	1.924
399	Pwn Leak	104.000	1.923
400	DeltaStrikeOp	104.000	1.923
401	pwners	104.000	1.923
402	n0body	102.000	1.889
403	hawaiijohn	102.000	1.888
404	LSE	102.000	1.888
405	HiXoR	102.000	1.887
406	Infinite loop	102.000	1.887
407	David's here, now it's a party	102.000	1.886
408	TwoWayTieForLast	102.000	1.886
409	n0psledbyte	102.000	1.886
410	kernel_panic	102.000	1.885
411	swt02026	102.000	1.885
412	tiredman	102.000	1.884
413	invalid	102.000	1.884
414	hyde4	102.000	1.883
415	khide	102.000	1.883
416	Yes	102.000	1.883
417	ISITDTU	102.000	1.882
418	IND	102.000	1.882
419	river	102.000	1.881
420	xxxxxx	102.000	1.881
421	Devhat	102.000	1.881
422	RevEng	102.000	1.880
423	In'shallah	102.000	1.880
424	1nv@l1d	102.000	1.879
425	Kandros	102.000	1.879
426	Lunas	102.000	1.879
427	Retr0id	102.000	1.878
428	E42494	102.000	1.878
429	ex0ns	102.000	1.877
430	soloso	102.000	1.877
431	EPAD	102.000	1.877
432	CyRadar	102.000	1.876
433	0xdardas	102.000	1.876
434	H3x Pr0ph3ts	102.000	1.875
435	evey	102.000	1.875
436	dictat0rs.php	102.000	1.875
437	hack_free	102.000	1.874
438	SIGFLAG_	102.000	1.874
439	BTeam	102.000	1.874
440	Z-OneX	102.000	1.873
441	3BlindNerds	102.000	1.873
442	isbjorn	102.000	1.872
443	PAsec	102.000	1.872
444	AUTHority	102.000	1.872
445	UnKn0wn	102.000	1.871
446	Caerus	102.000	1.871
447	TheWereCicadas	102.000	1.871
448	o0i9u88	102.000	1.870
449	p4wnWAT	102.000	1.870
450	Kernelsanders	102.000	1.870
451	Hackday	101.000	1.852
452	kek	101.000	1.852
453	LooneyToons	101.000	1.852
454	XTZ	101.000	1.851
455	alexander	101.000	1.851
456	space copybaras	101.000	1.851
457	NULL Life	101.000	1.850
458	no_team_like_this_team	101.000	1.850
459	The Art Of Exploration	101.000	1.850
460	5ffcc4e309ab20a2cc2f2b669e5f05e5	101.000	1.849
461	HexQueens	101.000	1.849
462	IloveBaguette	101.000	1.849
463	TeamCyprus	101.000	1.848
464	TokyoForest	101.000	1.848
465	shadowCrack	101.000	1.848
466	GRIN	101.000	1.847
467	H3X0R	101.000	1.847
468	Curiosity	101.000	1.847
469	OTR	101.000	1.846
470	TeamNotFound123	101.000	1.846
471	nopdata	101.000	1.846
472	AORSEC	101.000	1.845
473	DefconHackers	101.000	1.845
474	Codename:PineApple	101.000	1.845
475	Wolves	101.000	1.844
476	Slug Security	101.000	1.844
477	moveaxebx	101.000	1.844
478	CuChuoiChamMuoi	101.000	1.843
479	it4lian_inf4ntry	101.000	1.843
480	bzbzbz	101.000	1.843
481	wasamusume	101.000	1.842
482	3NIGM4	101.000	1.842
483	shadowlolz	101.000	1.842
484	Brahmana	101.000	1.842
485	bebop-squad	101.000	1.841
486	U+1F4A3	101.000	1.841
487	topkek	101.000	1.841
488	Telegram	101.000	1.840
489	test0000	101.000	1.840
490	민준이는멍멍	101.000	1.840
491	kk28	101.000	1.839
492	solotraveler	101.000	1.839
493	삐융삐융	101.000	1.839
494	DISC	101.000	1.839
495	MadHat	101.000	1.838
496	owo	101.000	1.838
497	eciph3r	101.000	1.838
498	ch4n3	101.000	1.837
499	Sorena	101.000	1.837
500	smakaduta	101.000	1.837
501	Code_Black	101.000	1.836
502	Teppay	101.000	1.836
503	KOBE	101.000	1.836
504	Halo.no	101.000	1.836
505	sezhuo	101.000	1.835
506	azertyuiop	101.000	1.835
507	TheFlagIsNotHere	101.000	1.835
508	Testing999	101.000	1.834
509	ZenHack	101.000	1.834
510	babybaby	101.000	1.834
511	fadam	101.000	1.834
512	Hodor	101.000	1.833
513	test12	101.000	1.833
514	Sibnew	101.000	1.833
515	ret2fail	101.000	1.833
516	eavesdroppers	101.000	1.832
517	Red_Falcon	101.000	1.832
518	pyc3	101.000	1.832
519	Badf00d	101.000	1.831
520	3zStyl3	101.000	1.831
521	noar	101.000	1.831
522	Sleepy	101.000	1.831
523	Ethical Hackers Club	101.000	1.830
524	infini.inc	101.000	1.830
525	6l0ry	101.000	1.830
526	CyberAces	101.000	1.830
527	Oblivion	101.000	1.829
528	GRSEC_TEAM	101.000	1.829
529	webprog	101.000	1.829
530	a_i	101.000	1.829
531	commie	101.000	1.828
532	aiueo	101.000	1.828
533	ohboi	101.000	1.828
534	TeamHM	101.000	1.828
535	Charles_Yang	101.000	1.827
536	NovaSentinel	101.000	1.827
537	PT	101.000	1.827
538	Group14	101.000	1.827
539	zamoureux	101.000	1.826
540	Newbs	101.000	1.826
541	pirates	101.000	1.826
542	IamError	101.000	1.826
543	Intothe_nw0	101.000	1.825
544	f.killrra	101.000	1.825
545	argaz	101.000	1.825
546	NULLKrypt3rs	101.000	1.825
547	b_b4ndits	101.000	1.824
548	DontMindMe	101.000	1.824
549	NoobTubeExtraordinaire	101.000	1.824
550	S3sh2	101.000	1.824
552	marshmallowcalpis	101.000	1.823
553	NtroCubane	101.000	1.823
554	TheSynfulAcks	101.000	1.823
555	rutrack	101.000	1.822
556	NCC1701D	101.000	1.822
557	KółkoRozpustyMaryja	101.000	1.822
558	poop	101.000	1.822
559	GUDUBET	101.000	1.822
560	kiiro	101.000	1.821
561	LowoiseHG	101.000	1.821
562	0xyGen	101.000	1.821
563	JamLive	101.000	1.821
564	Termination	101.000	1.820
565	Vidar	101.000	1.820
566	LittleNarwhals	101.000	1.820
567	rook1e	101.000	1.820
568	ScriptBaby	101.000	1.820
569	aaaaa123132	101.000	1.819
570	humb1ec0ding	101.000	1.819
571	uhmtoto	101.000	1.819
572	watchdog	101.000	1.819
573	noar2	101.000	1.818
574	ssssssoooooos	101.000	1.818
575	hellaluah	101.000	1.818
576	SE_Lab	101.000	1.818
577	lotto	101.000	1.818
578	DotSecret	101.000	1.817
579	Zonda	101.000	1.817
580	spider	101.000	1.817
581	ppeb15	101.000	1.817
582	alfasin	101.000	1.816
583	m4nn0r07h	101.000	1.816
584	wtfftw	101.000	1.816
585	Ripping	101.000	0.908
586	badcofee	101.000	0.908

UsbPort – May 12, 2018, 1:26 a.m.

all dressed up and nowhere to go

guest – May 12, 2018, 2:58 a.m.

unprofessional organization, there is no menu on the registration form that allows you to log in and save your password right away. they can not reset the password. bottomless communication - they got the message "Note: Please only register a single account per team." while there is a blockage and it is impossible to register more than one account, and the communication itself suggests as if it were possible. crowell dug me out of irc when I asked if he was kidding that I should register under a different team name. never again.

guest – May 12, 2018, 3:12 a.m.

and two more things, I'm just starting the game, but it was the first registration form that forced me to modify KeePass's rules just because someone frivolous invented super-secure passwords up to 72 characters in ctf. Providing in a clear way the address of the irc server also outgrew the organizers, but you must necessarily try to translate through the next useless pages. I hope that although creating tasks comes out much better than communicating. have a good time.

KevinChow – May 12, 2018, 5:16 a.m.

Status: timestamp is too recent?????

kdr – May 12, 2018, 3:02 p.m.

cancerous proofs of work everywhere

slenderestman – May 12, 2018, 5:51 p.m.

food was good

AntithesisConundrum – May 14, 2018, 2:09 a.m.

A good event - enough entry-level challenges that I didn't feel completely stumped, and some really cool challenges that I'm interested to see the writeups for!

Pharisaeus – May 14, 2018, 2:12 a.m.

In their "philosophy" they write about "Intellectually Rewarding Challenges" and "State-of-the-art Challenges" and then you get tasks like "bruteforce million user agents to get a flag"...

Asiral – May 14, 2018, 2:19 a.m.

Entry-level challenge does not mean to copy challenges of other CTFs! The `easy pisy` challenge was so lame for DEFCON! We'd already seen a couple of times in previous CTFs. In your philosophy you'd promised to design novel challenges!

fortenforge – May 14, 2018, 2:40 a.m.

I would leave a review, but your timestamp is too recent.

rubiya – May 14, 2018, 3:43 a.m.

where are you legitbs

mathboy7 – May 14, 2018, 3:54 a.m.

too many guessing, terrible challenges. Was it really "DEF CON"?

bincat99 – May 14, 2018, 4:10 a.m.

super duper kimchi oriental salad ;)

ghostly_gray – May 14, 2018, 4:14 a.m.

ugh.

dagnypimiskern – May 14, 2018, 4:21 a.m.

terrible challenges, the defcon has gone....

shiki7 – May 14, 2018, 4:36 a.m.

IMHO several challenges involved too much guessing, which are extremely frustrating and time-wasting, should not have appeared in a "DEFCON CTF".

king.of.irc.and.perl.aka.dwn – May 14, 2018, 5:02 a.m.

wasn't really fair, i had to think about things other than intel ISA pwnables. often i had to guess because i didn't understand what the challenge was hinting at.

also they reused other CTF challenges OBVIOUSLY for example in several challenges you had to exploit memory corruption (booooring)

rated 100

cts – May 14, 2018, 6:41 a.m.

too much blind / guessing

s14ve – May 14, 2018, 9:42 a.m.

We liked that there were noob-friendly challenges, so even noob teams hadn't felt completely stomped.

Even if user-agent brute-force wasn't really that rewarding, (Mozilla 10 - 50). In the end, answer was obvious tho:),

80/100 (complaints about guessing are right)

noraj – May 14, 2018, 8:53 p.m.

sbva => guessing paroxysm ?

okas832 – May 15, 2018, 2:47 a.m.

I was confused when I see the kimchi guessing problems...

kanglib – May 15, 2018, 9:03 a.m.

geckome) Even kimchi hackers use mstsc instead of that webapp haha

Redford – May 15, 2018, 3:11 p.m.

I have mixed feelings about this CTF. Some challenges were really great, but a lot of others required guessing or were really unrewarding. The whole CTF seemed like the organizers enjoyed bullying players...

Some examples of things which were IMO especially bad:
- Proofs of work *everywhere*, even for not-resource-heavy tasks. Broken scoreboard PoW ("timestamp is too recent").
- The deadline for write-ups was 24h from the CTF end. This was announced only on IRC and Twitter, without mailing it to teams, so you might have missed this if you went to sleep right after the end. This wasn't mentioned before the CTF, it's not even in the rules!
- The challenges descriptions were removed right after the CTF end (the 24h deadline for write-ups was not enough to make our lives hard?).
- Some hints were published *only* on Twitter, which was spammed with tons of less interesting posts, so it was easy to miss them.
- "PHP Eval White-List" was totally broken (the organizers deployed wrong code to the chall server) and they have never fixed it (nor acknowledged the issue AFAIK).
- Guessing challs:
- BitFlipper - that coredump sending was totally illogical. We saw the message about sending coredumps, but how could anyone expect that it scans all files in the directory and parses ELF headers looking for e_type==ET_CORE?
- ghettohackers - do we really need such challenges...?
- geckome - 100% pain, 0% fun
- "surprise, your flag is in another castle" challs:
- BitFlipper - after spending 15h to dump the flag file, instead of the flag you received a message that there's a filter in between which looks for it and removes it from your output, so you had to start from the beginning.
- babypwn1805 - the server loaded a random libc on every run, which you could learn about only after writing the exploit which didn't take this into account.
- Inconsistent flag prefixes.
- Scoreboard with very bad UX. Hard to see which challs you've already solved, the whole challs page occupies 4 screens, no way to reset you password and many more of such little annoyances.

Ok, enough ranting for today :)

kdr – May 15, 2018, 9:19 p.m.

@Redford
It looks like was not the only one who did not like the PoWs...

maro – May 15, 2018, 9:20 p.m.

When we asked organizers why there is too much binary exploitation challenges they answered that it is time to learn pwn. Finally seems that they have also to learn Web, Crypto and For stuffs based on the quality of challenges we saw in those categories.
challenges variety was the big mess...

rsawald – May 16, 2018, 4:27 a.m.

Gosh!! Please, drop web next time or make it more challenging. The webs like gecko* were not related to anything security, and were unrealistic to real world scenario. They should have been brute-guessing along with BitFlipper and Ghetto Hackers -- non-realistic, non-security related stuff. It feels to me that not enough testing /review for the challenge has been done. Nobody can let this 4 challenges pass through and make it for DEF CON CTF Quals. Even, Webs are better in the worst rated CTF on ctftime. Anyways, many challenges were good.

0xbb – May 16, 2018, 12:20 p.m.

Mixed feelings :
Shitload of great binary foo in many places and generally good CTF!
Getting everything right when running a CTF is really hard.
The organizers did a very good job and we don't agree with the hate in the comments.

But lots unnecessary guessing in challenges: ghettohackers, geckome, www (handing out wrong hashes instead of the binary).
php eval offered the wrong binary as a download, but it was anyhow totally broken.
I found sbva really unrewarding.
babypwn1805 finding the flag after exploitation was really uncool.
Maybe a better quality control instead of publishing philosophies would help.
Please stick with one flag format!

PoW was not a problem for us, but could be removed on the scoreboard if you check timestamps anyhow?
Totally awesome scoreboard design otherwise.

Announcements via Twitter only could easily be missed.

The infrastructure was very stable and worked well for us.

We enjoyed it a huge lot! :)

guest – May 19, 2018, 11:28 a.m.

Am I the only one who had a problem with entering the correct password on the registration form? Have you seen any guidance regarding password requirements, except the strange length for the password up to 72 chars?
Have you seen any comment on why password reset is turned off? Any comment regarding the lack of a login menu? is it intuitive for you that the control panel and menu can be found on scoreboard subdomain?
Is it intuitive to look at the scoreboard few days before the competition starts?

TheEmperors – May 29, 2018, 12:19 p.m.

Hi
Thanks for CTF.
But where is the scoreboard ?
Many teams have missed the public rating
And even though, there is still no scoreboard

DEF CON CTF Qualifier 2018

Scoreboard

Comments

Logon via