Touching down in Russia, I am greeted by the Lockitall LockIT Pro revision c.02 whose manual states "[w]e have added features from b.03 to the new hardware." So another Ethiopian-style format string attack is in the cards. The HSM-2 connected to the lock could potentially …
The bonds in Addis Ababa are secured by a Lockitall LockIT Pro revision b.03, a surprisingly old software revision which claims "[w]e have verified passwords can not be too long." The lock is connected to a LockIT Pro HSM-1, but that hasn't stopped me the other …
Arriving in Jakarta, I find my next opponent is Lockitall LockIT Pro revision b.06, whose manual claims "We have added further mechanisms to verify that passwords which are too long will be rejected". Second time's the charm, and all that. Or maybe eighth? I dunno, I just …
Having touched down in Johannesburg, I am greeted by revision b.04 of the Lockitall LockIT Pro; coupled with an HSM-1 module, the manual states this version of the firmware "rejects passwords which are too long". Somehow I don't have high hopes for their efforts - but that's not …
Having touched down in Johannesburg, I am greeted by revision b.04 of the Lockitall LockIT Pro; coupled with an HSM-1 module, the manual states this version of the firmware "rejects passwords which are too long". Somehow I don't have high hopes for their efforts - but that's not …
I was kinda let down by the difficulty of Whitehorse compared to its predecessor - sure the underlying vulnerability in Reykjavik was also similar to a previous challenge, but the twist forcing the loss of the automatic disassembly made it hit different. But the time for reminiscing is later - the time …
read moreThe exercise informed me I was up against hardware version B, but now running software revision 2. I still had a LockIT Pro HSM-1 to contend with (but more likely bypass entirely), but by this point I was fairly confident in what I expected from the firmware.