JerseyCTF III

Hello mates!

I played JerseyCTF III which was hosted by the NJIT ACM along with my team Invaders0x1.Our team achieved a commendable 125th place in the CTF competition, and we are determined to strive for even better results in future competitions.

Here are some of the challenges I have solved :

back-to-the-office #

Challenge details :

There's a flag somewhere in this Microsoft Word document.

Hint :

Newer Microsoft Office files are in OOXML format. Learn more about this file format to find the flag.

Here is the attached file back-to-the-office.docx.

Download the given file and extract with the command unzip back-to-the-office.docx

And to check directories use tree *

m4r10@ARLinux:~/Desktop/CyberSec/CTF/jerseyCTF/misc$ tree *
back-to-the-office.docx  [error opening dir]
[Content_Types].xml  [error opening dir]
docProps
├── app.xml
└── core.xml
_rels
word
├── document.xml
├── fontTable.xml
├── _rels
│   └── document.xml.rels
├── settings.xml
├── styles.xml
├── theme
│   └── theme1.xml
└── webSettings.xml

After that run the command cat word/settings.xml

Yayy, you got the flag at the end of the xml code.

Flag : jctf{601n6_1n70_7h3_0ff1c3}

put-the-cookie-down #

Challenge details :

The Terminator has sent you a frantic message from 1996, maybe it's something important! Wait... do I smell cookies?
Flag format: jctf{string}

Here are the steps I followed:

-Open your browser DevTools
-As the hint suggests, we will be exploring DevTools a bit deeper
-Navigate to the Application tab
-On the left side of the Application tab, go to Storage > Cookies
-Click on the website’s URL to see the cookie data.

Or otherwise you can simply open cookies to check the flag,

Flag: jctf{I_WILL_BE_BACK_FOR_MORE_C00KI3S!}

back-to-socials #

Challenge details :

The NICC club that co-hosts this event jumped into the NCAE Cyber Games this past February and placed well for the first time competing as a club! The club wanted to let everyone at the school know of their successes and were very social! Can you dig deep and find out where this flag could be planted?

Hint :

There is usually some sort of website that people can share their achievements to a professional crowd...

From this hint,

I have decided to search for the NICC Competes in their first NCAE Cyber Games post on LinkedIn.
And here is the result with post link,

https://www.linkedin.com/pulse/nicc-competes-first-ncae-cyber-games-njiticc/

Flag : jctf{c0mp3titi0n_spark5_excellency}