Last updated
Last updated
The objective of this challenge is to retrieve the FLAG which is encrypted with the user input.
The challenge is served using socat
so the user can only send data and receive the ciphertext.
Here an oracle is possible as the user can inject and manipulate arbitrary data into the targeted ciphertext as he want and he have the ciphertext output.
By sending 32 bytes, the user can prooved that ECB mode is used :
output :
As ECB is used, it's possible to bruteforce the FLAG :
Note: not all bytes are tester, only printable characters are tested as the flag must be human readable.