🌸Girls in CTF 2024

Writeup for Girls in CTF 2024. In this CTF, my team placed 16th out of 80 teams.

DevOps 101: Piping Works!

Do you know the relationships among tasks, stages, and jobs? Oh and, it might not be what you're seeing : )

We were given a VM file that we have to download beforehand (~9GB). Extract and insert the file into your VM.

Once logged in, you would see a bunch of files in the repository.

Browsing through the .yml files, notice that there are strings on the comments. It is base64.

Pieced the string obtained from the folder jobs and gitlab-ci.yml, reverse string it and use CyberChef to decode the b64 and there's your flag!

flag: gctf{2880bbebddfd6e45c086630c5dc9aa029ab20b5e565be3d65e6a46b9}

I Forgot

Here's a song that demonstrates real plagiarism. An artist sued the singers in this song and had won the lawsuit for over 5 million, ya then...uh....wait, I forgot in which courthouse they settled....yea uhm, welcome to osint! FIND THE COURTHOUSE!

We were given a .mp3 file, labelled Plagiarism. The question hinted of a 5 million lawsuit.

I remembered it was from a famous lawsuit case of Robin Thicke and Pharrell Williams vs Marvin Gaye, which the former allegedly plagiarised Marvin's Got to Give It Up in their hit song Blurred Lines, which was a sensational hit.

Googling landed us on the wikipedia page.

Courtname:

United States Court of Appeals for the Ninth Circuit

flag: gctf{United_States_Court_of_Appeals_for_the_Ninth_Circuit}

side note: we also obtained an extra 50 points for filling up the feedback form. Thanks organiser!

That's all! I learned a lot from this CTF and this was my first attempt in devops. Had a good time attempting all the challenges and trying out DevOps. Looking forward to join the next GCTF!

Last updated 8 months ago