Quals NDH2K15
From Friday 3rd to Saturday 4th for 24 hours, the NDH2K15 CTF qualification rounds were hosted by HZV and Sysdream.
We would first like to apologize for the "Follow the rabbit" challenge: shortly after we started gathering writeups, we noticed a bug in the production deployment. Long story short, this challenge was not solvable and we are so sorry you guys spent time trying to make sense of it all.
However, these rounds were quite a success, mostly thanks to you. Thank you for participating such in numbers this year. We crunched some of our own numbers in return, for the love of data.
Top 10 teams
| Rank | Points | Team |
|---|---|---|
| 1 | 4100 | pollypocket |
| 2 | 3600 | tasteless |
| 3 | 3250 | 0daysober |
| 4 | 3200 | StratumAuhuur |
| 5 | 3200 | SUSlo |
| 6 | 3100 | hexpresso |
| 7 | 3050 | Zenk-Security |
| 8 | 2800 | Fapsec |
| 9 | 2800 | HacknamStyle |
| 10 | 2800 | CyKor |
Regarding the top 10 participating countries, France was ranked first, closely followed by the USA and then the Russian Federation.
There was a total of 64 different countries, 633 signed up teams and 219 teams who scored minimum of 100 points and 880 flag captures within 24 hours.
Top 10 teams skills
We love charts! Let's see how the top 10 teams skilled in each category.
Top 10 participating countries
| Country | # of teams |
|---|---|
| France | 207 teams |
| United States of America(USA) | 44 teams |
| Russian Federation | 34 teams |
| japan | 33 teams |
| India | 31 teams |
| Afghanistan | 27 teams |
| South Korea | 21 teams |
| Viet Nam | 19 teams |
| Germany | 17 teams |
| Spain | 15 teams |
First 10 validations
Here are the flags that got validated first! Game of life had quite a success. hexpresso got the "I love to be among the firsts" award.
| Position | Team | Date of validation | Challenge | Type |
|---|---|---|---|---|
| 1 | hexpresso | 2015-04-04 00:10:18 | Game Of Life | Crypto |
| 2 | 0daysober | 2015-04-04 00:12:19 | Private | Forensic |
| 3 | keysec | 2015-04-04 00:15:19 | Private | Forensic |
| 4 | hexpresso | 2015-04-04 00:15:54 | Clark Kent | Crackme/Reverse |
| 5 | LSE_ | 2015-04-04 00:17:28 | Bpythonastic | Forensic |
| 6 | luckyPenguins | 2015-04-04 00:17:54 | Game Of Life | Crypto |
| 7 | Mr.ST4N | 2015-04-04 00:20:15 | Game Of Life | Crypto |
| 8 | CandyEaters | 2015-04-04 00:21:27 | Game Of Life | Crypto |
| 9 | w0pr | 2015-04-04 00:22:01 | Game Of Life | Crypto |
| 10 | Drety | 2015-04-04 00:22:02 | Clark Kent | Crackme/Reverse |
Last 10 validations
And the last validations. People played till the end! (4 seconds before the end!) Seconds really are important in CTFs. TeamTFH scores the "I am not going to stop until the end" award.
| Position | Team | Date of validation | Challenge | Type |
|---|---|---|---|---|
| 1 | TeamTFH | 2015-04-04 23:59:56 | Private | Forensic |
| 2 | NYUSEC | 2015-04-04 23:58:13 | Bpythonastic | Forensic |
| 3 | BH2453 | 2015-04-04 23:56:19 | Cooper | Stegano |
| 4 | HacknamStyle | 2015-04-04 23:54:10 | faceBox | Web |
| 5 | On est pas contents | 2015-04-04 23:53:59 | Superman | Crackme/Reverse |
| 6 | On est pas contents | 2015-04-04 23:52:31 | Updator | Exploit |
| 7 | MagicSmoke | 2015-04-04 23:52:27 | faceBox | Web |
| 8 | 0ops | 2015-04-04 23:50:56 | Cooper | Stegano |
| 9 | TeamTFH | 2015-04-04 23:48:46 | faceBox | Web |
| 10 | SpamAndHex | 2015-04-04 23:48:07 | Raptor | Misc |
Top 10 firstblood
First team to validate a challenge. Hexpresso got 3 first blood in the top 10! Impressive enough for the "I love blood and you are going to bleed" award.
| Position | Team | Date of validation | Challenge | Type |
|---|---|---|---|---|
| 1 | hexpresso | 2015-04-04 00:10:18 | Game Of Life | Crypto |
| 2 | 0daysober | 2015-04-04 00:12:19 | Private | Forensic |
| 3 | hexpresso | 2015-04-04 00:15:54 | Clark Kent | Crackme/Reverse |
| 4 | LSE_ | 2015-04-04 00:17:28 | Bpythonastic | Forensic |
| 5 | MagicSmoke | 2015-04-04 00:36:20 | Crackme Prime | Crackme/Reverse |
| 6 | khack40 | 2015-04-04 00:50:44 | faceSec | Web |
| 7 | khack40 | 2015-04-04 01:40:43 | Updator | Exploit |
| 8 | hexpresso | 2015-04-04 01:41:56 | Cooper | Stegano |
| 9 | 0x8F | 2015-04-04 02:06:07 | Mass Surveillance Software | Crackme/Reverse |
| 10 | tasteless | 2015-04-04 02:14:00 | faceBox | Web |
Leaders in each category
| Type | Team | Points |
|---|---|---|
| Web | tasteless | 200 |
| Forensic | tasteless | 900 |
| Misc | pollypocket | 600 |
| Crypto | tasteless | 450 |
| Stegano | tasteless | 300 |
| Exploit | tasteless | 550 |
| Crackme/Reverse | pollypocket | 1100 |
Congratulations to tasteless who got 1st in 5 categories out of 7 and the well earned "I love all categories" award.
Totals per category
| Type | Points |
|---|---|
| Crackme/Reverse | 56900 |
| Forensic | 51200 |
| Crypto | 29700 |
| Exploit | 13600 |
| Web | 10300 |
| Stegano | 8700 |
| Misc | 8600 |
Categories profitability
Which categories were the most profitable?
| Type | Points / team |
|---|---|
| Crackme/Reverse | 611 |
| Forensic | 353 |
| Crypto | 166 |
| Exploit | 302 |
| Web | 119 |
| Stegano | 300 |
| Misc | 390 |
Top 10 sleepless teams
Who slept the less? These stats are really approximative, based on the leap between first and latest validation for each team.
| Position | Team | Uptime |
|---|---|---|
| 1 | TeamTFH | Uptime of 23:59:57 |
| 2 | NYUSEC | Uptime of 23:58:14 |
| 3 | BH2453 | Uptime of 23:56:20 |
| 4 | HacknamStyle | Uptime of 23:54:11 |
| 5 | On est pas contents | Uptime of 23:54:00 |
| 6 | MagicSmoke | Uptime of 23:52:28 |
| 7 | 0ops | Uptime of 23:50:57 |
| 8 | SpamAndHex | Uptime of 23:48:08 |
| 9 | CandyEaters | Uptime of 23:47:52 |
| 10 | RDot | Uptime of 23:46:57 |
TeamTFH gets the "I don't sleep, sleeping is for weaklings" award.
Top 10 fastest flaggers
Who was the fastest to validate flags in average (average time to capture after the team scored its first flag)?
| Position | Team | Mean duration between validations | # of flags |
|---|---|---|---|
| 1 | pollypocket | 01:19:41 | (17 flags) |
| 2 | hexpresso | 01:19:54 | (14 flags) |
| 3 | 0x8F | 01:25:00 | (12 flags) |
| 4 | 0x00000000 | 01:31:10 | (10 flags) |
| 5 | tasteless | 01:31:44 | (15 flags) |
| 6 | CyKor | 01:32:41 | (13 flags) |
| 7 | Zenk-Security | 01:33:37 | (14 flags) |
| 8 | StratumAuhuur | 01:41:15 | (14 flags) |
| 9 | 0daysober | 01:41:18 | (14 flags) |
| 10 | Fapsec | 01:43:15 | (13 flags) |
Congratulations to pollypocket for : "I am a speedster and I love it" award.
Top 10 slowest flaggers
Who was the slowest to validate flags in average?
| Position | Team | Mean duration between validations | # of flags |
|---|---|---|---|
| 1 | LSE_ | 02:21:17 | (10 flags) |
| 2 | binja | 02:18:25 | (10 flags) |
| 3 | On est pas contents | 02:10:21 | (11 flags) |
| 4 | SpamAndHex | 02:09:49 | (11 flags) |
| 5 | hackgyver | 02:09:29 | (11 flags) |
| 6 | dodododo | 02:09:19 | (10 flags) |
| 7 | securimag | 02:05:34 | (10 flags) |
| 8 | Ad Victoriam | 02:01:50 | (10 flags) |
| 9 | MagicSmoke | 01:59:22 | (12 flags) |
| 10 | 0ops | 01:59:14 | (12 flags) |
Congratulations to LSE_ for the "I got time and I am going to use it" award.
Conclusion
All in all, this CTF was quite a success and we hope everyone had some fun. Thanks to all teams for participating to the NDH2K15 CTF quals! Most write-ups are now available on the amazing CTF writeups Githup repo, please send us your own or post a pull request directly.
We'll post write-ups for any remaining challenge in the next few days and start contacting teams next week to arrange for the prizes and the finals.
We hope to see you in June in Paris and next year for another round of qualifications.