前言

我出爛題目我非常抱歉 Orz

Detail

Where’s My Partner? [misc / medium / OSINT]

Score: 430/500 (8 Solved)

Tomorrow is the final day of the annual HITCON CMT, and I’m trying to find my best friend, Setsuna, to give a Lightning talk together.

Setsuna sent me a image with a challenge: “If you can guess from this image where I took the screenshot, I’ll join you on stage for the Lightning talk!”

However, I’m completely clueless about the attached picture. Can you help me find where Setsuna took the screenshot?

Flag format: THJCC{<The website domain name of this location>}

Example: If it’s “Google”, the answer is THJCC{google.com}

Note: Please do not include www., https://, /, etc

Author: chilin.h

1. Extract the BSSID from the image.
   

   

2. Download and run geowifi with the command:
   

   python3 geowifi.py -s bssid 3C:33:32:1D:EA:10
   python3 geowifi.py -s bssid 3C:33:32:1D:EA:18
   python3 geowifi.py -s bssid 08:5A:11:1E:ED:30
   python3 geowifi.py -s bssid 08:5A:11:1E:ED:38
   python3 geowifi.py -s bssid A4:2A:95:48:C7:E0
   python3 geowifi.py -s bssid A4:2A:95:48:C7:E8
   python3 geowifi.py -s bssid 64:29:43:B7:7C:70
   python3 geowifi.py -s bssid 08:5A:11:1F:8D:60
   python3 geowifi.py -s bssid 08:5A:11:1F:16:30
   

3. Location:
   
   
4. Flag: THJCC{ltes.cyc.edu.tw}

Setsuna Message [misc / easy]

Score: 230/500 (28 Solved)

Tonight, my good friend, Arisu Suzushima, brought me this note, saying it contains a message from her sister, Setsuna Sumeragi.

D'`A@^8!}}Y32DC/eR,>=/('9JIkFh~ffAAca=+u)\[qpun4lTpih.lNdihg`_%]E[Z_X|\>ZSwQVONr54PINGkEJCHG@d'&BA@?8\<|43Wx05.R,10/('Kl$)"!E%e{z@~}v<z\rqvutm3Tpihmf,dLhgf_%FE[`_X]Vz=YXQPta

However, the message is mysteriously hidden. Can you help her reveal the hidden message?

Flag Format: THJCC{<ASCII printable characters>}

Author: chilin.h

Hint 1

Some things will not succeed if you just observe them. You need to execute them so that they can lead you to the final path.

Hint 2

Having said that, his level of chaos is beyond imagination. Although it is not as exaggerated as the 18th level of hell, it can be regarded as the 8th level of hell.

Flag: THJCC{@r!su!1y}

Initially, the sentence can be recognized as source code written in the Malbolge programming language.

Upon compilation and execution, the program yields the output VEhKQ0N7QHIhc3UhMXl9.

Subsequently, Base64 decoding this output results in the Flag: THJCC{@r!su!1y}.