Results 1 to 4 of 4

Thread: AIVD Cyber Challenge

Hybrid View

  1. #1
    Red wine, not vodka! ZaiRoN's Avatar
    Join Date
    Oct 2001
    Blog Entries

    AIVD Cyber Challenge

    Here is a challenge by AIVD (General Intelligence and Security Service of the Netherlands):

    I won't say anything else because I think it's not fair, but I encourage you to give it a try! It's a nice challenge btw, and I would like to see much more like this one! And yes, it's possible to decrypt the ENCrypted file

    Have phun!
    A mind is like a parachute. It doesnt work if it's not open.

  2. #2
    Teach, Not Flame Kayaker's Avatar
    Join Date
    Oct 2000
    Blog Entries
    OK, this is really tough. Getting the 4 zip files was easy.

    The password for the crypt.exe zip has been given away in other threads. I suppose that guessing that password is "easy" in that it was a character name in the movie depicted in the jpg file. However for me that isn't easy at all because I'd never seen the movie or recognized the scene. It was at this point I unfortunately lost interest because instead of being a pure reverse engineering challenge, that step seemed to require "cultural" knowledge, or, barring that knowledge or the desire to waste time on that approach, a brute force password cracker was necessary.

    I may have lost interest in spending hours on solving this, but it's still interesting. Not that I was specifically looking, but I found code for a password cracker for the crypt.exe / file on pastebin. Crypt.exe can both encrypt and decrypt a test file. Making use of the '-e' switch, it comes up with a password which gives a 'decryption suceeded' message on the file.

    However, the password it comes up with is not the real valid one. I also see that several other passwords are possible, but I don't believe any of them are correct either. At this point I *think* that the decrypted .enc file must be a valid PK file. One easy clue to that (other than the name) is the fact that there was no compression size change from when it was in its original zip form. Easy enough to modify the code to check that a valid PK header is being generated, but I haven't done that yet.

    There's also chatter (some of it in Dutch) that there may also be further steganographic info in some of the other jpg files.

    At this point I'll keep working on the file and see if it exposes something more interesting than movie trivia. More likely I'll just wait for the final results.

  3. #3
    Founder FoxB's Avatar
    Join Date
    Mar 2002

    really speed =)

    "Fout op server"
    Last edited by FoxB; November 29th, 2012 at 04:49.

  4. #4
    Red wine, not vodka! ZaiRoN's Avatar
    Join Date
    Oct 2001
    Blog Entries
    Kayaker: You didn't see "War games"? I think you should, it's a nice movie from the '80s

    I really think that the *simple* password has been used for those who are not movie-addicted because a dictionary brute force approach will give you the right password in few seconds.

    Your idea on a possible attack is right, byte-guessing is the way I did follow and the zip format will help you a lot. You only have to figure out the *right* algorithm behind the encryption/decryption system

    FoxB: I have seen they have the needed solutions, I think they don't need that page anymore
    A mind is like a parachute. It doesnt work if it's not open.

Similar Threads

  1. AIVD Cyber-challenge
    By My Infected Computer in forum Blogs Forum
    Replies: 0
    Last Post: June 16th, 2013, 17:49
  2. Challenge
    By Kayaker in forum Off Topic
    Replies: 5
    Last Post: February 18th, 2013, 12:28
  3. Challenge
    By Jak in forum The Newbie Forum
    Replies: 39
    Last Post: August 4th, 2005, 10:35
  4. My Challenge To You
    By KSR0x2b in forum Mini Project Area
    Replies: 25
    Last Post: February 21st, 2002, 22:33
  5. Rsa Challenge
    By int21hex in forum RCE Cryptographics
    Replies: 10
    Last Post: January 29th, 2002, 12:07


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts