I had this challenge in my browser tabs for months while I kept deluding myself about starting it; since it wrapped up at the end of June I forced myself to sit down and knock it out. I finished a lot faster than I expected; since I'm always lacking for …
read moreXCP-NG On An EliteDesk 805 G8 Mini
read morePrologue: Computers Were A Mistake
I guess it was only a matter of time until a Youtuber showed me something I wanted to buy.
I'd been thinking about building a small homelab since late last year with the goal of having a local Git repository for my open-source code, and …
Microcorruption: Algiers
read moreThe Scenario
My adventures in Algeria begin the same as everywhere else I've gone so far - staring down a Lockitall LockIT Pro, revision d.01 this time with support for the brand-spanking-new LockIT Pro Account Manager. This lock doesn't have an attached HSM so with any luck the exploit will …
Microcorruption: Novosibirsk
read moreThe Scenario
Touching down in Russia, I am greeted by the Lockitall LockIT Pro revision c.02 whose manual states "[w]e have added features from b.03 to the new hardware." So another Ethiopian-style format string attack is in the cards. The HSM-2 connected to the lock could potentially …
Microcorruption: Addis Ababa
read moreThe Scenario
The bonds in Addis Ababa are secured by a Lockitall LockIT Pro revision b.03, a surprisingly old software revision which claims "[w]e have verified passwords can not be too long." The lock is connected to a LockIT Pro HSM-1, but that hasn't stopped me the other …
Microcorruption: Jakarta
read moreThe Scenario
Arriving in Jakarta, I find my next opponent is Lockitall LockIT Pro revision b.06, whose manual claims "We have added further mechanisms to verify that passwords which are too long will be rejected". Second time's the charm, and all that. Or maybe eighth? I dunno, I just …
Microcorruption: Santa Cruz
read moreThe Scenario
Having touched down in Johannesburg, I am greeted by revision b.04 of the Lockitall LockIT Pro; coupled with an HSM-1 module, the manual states this version of the firmware "rejects passwords which are too long". Somehow I don't have high hopes for their efforts - but that's not …
Microcorruption: Johannesburg
read moreThe Scenario
Having touched down in Johannesburg, I am greeted by revision b.04 of the Lockitall LockIT Pro; coupled with an HSM-1 module, the manual states this version of the firmware "rejects passwords which are too long". Somehow I don't have high hopes for their efforts - but that's not …
Microcorruption: Montevideo
I was kinda let down by the difficulty of Whitehorse compared to its predecessor - sure the underlying vulnerability in Reykjavik was also similar to a previous challenge, but the twist forcing the loss of the automatic disassembly made it hit different. But the time for reminiscing is later - the time …
read moreMicrocorruption: Whitehorse