111 lines
4.1 KiB
Markdown
111 lines
4.1 KiB
Markdown
# ESPILON CTF 2026 — Write-ups officiels
|
||
|
||
> **Édition 1** · Thème : *Serial Experiments Lain × Sécurité industrielle & embarquée*
|
||
|
||
Write-ups de l'ensemble des challenges de la première édition ESPILON CTF.
|
||
Les catégories couvrent le matériel bas niveau, l'IoT, les systèmes OT/SCADA, l'ESP32 et les smart contracts EVM.
|
||
|
||
---
|
||
|
||
## Challenges
|
||
|
||
### 🟢 Intro
|
||
|
||
| Challenge | Difficulté | Flag |
|
||
|-----------|-----------|------|
|
||
| [The Wired](Intro/The_Wired/) | Easy | `ESPILON{th3_w1r3d_kn0ws_wh0_y0u_4r3}` |
|
||
|
||
---
|
||
|
||
### 📡 ESP
|
||
|
||
| Challenge | Difficulté | Flag |
|
||
|-----------|-----------|------|
|
||
| [ESP Start](ESP/ESP_Start/) | Easy | `ESPILON{st4rt_th3_w1r3}` |
|
||
| [Phantom Byte](ESP/Phantom_Byte/) | Medium | `ESPILON{bl1nd_str4ddl3}` |
|
||
| [Jnouner Router](ESP/Jnouner_Router/) | Hard | 4 flags *(voir WU)* |
|
||
|
||
---
|
||
|
||
### 🔌 Hardware
|
||
|
||
| Challenge | Difficulté | Flag |
|
||
|-----------|-----------|------|
|
||
| [Serial Experimental 00](Hardware/Serial_Experimental_00/) | Easy | dynamique |
|
||
| [Signal Tap Lain](Hardware/Signal_Tap_Lain/) | Medium-Hard | `ESPILON{s1gn4l_t4p_l41n}` |
|
||
| [NAVI I2C Sniff](Hardware/NAVI_I2C_Sniff/) | Medium-Hard | dynamique |
|
||
| [Phantom JTAG](Hardware/Phantom_JTAG/) | Medium-Hard | dynamique |
|
||
| [Wired SPI Exfil](Hardware/Wired_SPI_Exfil/) | Medium-Hard | dynamique |
|
||
| [CAN Bus Implant](Hardware/CAN_Bus_Implant/) | Medium-Hard | dynamique |
|
||
| [Glitch The Wired](Hardware/Glitch_The_Wired/) | Medium-Hard | dynamique |
|
||
|
||
> Les challenges Hardware sont des containers Docker avec des flags dynamiques générés par instance.
|
||
|
||
---
|
||
|
||
### 📶 IoT
|
||
|
||
| Challenge | Difficulté | Flag |
|
||
|-----------|-----------|------|
|
||
| [Nurse Call](IoT/Nurse_Call/) | Easy | `ESPILON{r3v31ll3_m01_d4ns_l3_w1r3d}` |
|
||
| [Lets All Love UART](IoT/Lets_All_Love_UART/) | Easy | `ESPILON{LAIN_TrUsT_U4RT}` |
|
||
| [Wired Airwave 013](IoT/Wired_Airwave_013/) | Medium | `ESPILON{sdr_fsk_w1r3d_m3d_013}` |
|
||
| [LAIN Breakcore](IoT/Lain_Br34kC0r3/) | Medium | `ECW{LAIN_Br34k_CryPT0}` |
|
||
| [Anesthesia Gateway](IoT/Anesthesia_Gateway/) | Medium-Hard | `ESPILON{mQtt_g4tw4y_4n3sth3s14}` |
|
||
| [Observe The Wired](IoT/Observe_The_Wired/) | Medium-Hard | `ESPILON{c0ap_0bs3rv3_th3_w1r3d}` |
|
||
| [Lets All Hate UART](IoT/Lets_All_Hate_UART/) | Medium-Hard | `ESPILON{u4rt_nvs_fl4sh_d1sc0v3ry}` |
|
||
| [LAIN_Br34kC0r3 V2](IoT/Lain_Br34kC0r3_V2/) | Hard | `ESPILON{3sp32_fl4sh_dump_r3v3rs3d}` |
|
||
| [LAIN vs Knights](IoT/Lain_VS_Knights/) | Hard | `ESPILON{0nlY_L41N_C4N_S0lv3}` |
|
||
| [Cr4cK_w1f1](IoT/Cr4cK_w1f1/) | Medium | *(challenge en cours)* |
|
||
|
||
---
|
||
|
||
### 🏭 OT / SCADA
|
||
|
||
| Challenge | Difficulté | Flag |
|
||
|-----------|-----------|------|
|
||
| [Schumann Resonance](OT/Schumann_Resonance/) | Medium | `ESPILON{sch0m4nn_r3s0n4nc3_783}` |
|
||
| [Operating Room](OT/Operating_Room/) | Medium-Hard | `ESPILON{m0dbu5_0p3r4t1ng_r00m}` |
|
||
| [Cyberia Grid](OT/Cyberia_Grid/) | Medium-Hard | `ESPILON{cyb3r14_ps7ch3_pr0c3ss0r}` |
|
||
| [Tachibana SCADA](OT/Tachibana_SCADA/) | Medium-Hard | `ESPILON{31r1_k1ds_pr0t0c0l_s3v3n}` |
|
||
| [Protocol Seven](OT/Protocol_Seven/) | Hard | `ESPILON{pr0t0c0l_7_m3rg3_c0mpl3t3}` |
|
||
|
||
---
|
||
|
||
### 🔮 Misc
|
||
|
||
| Challenge | Difficulté | Flag |
|
||
|-----------|-----------|------|
|
||
| [Patient Portal](Misc/Patient_Portal/) | Medium-Hard | `ESPILON{r00t_0f_s41nt3_m1k4}` |
|
||
| [Accela Signal](Misc/Accela_Signal/) | Hard | `ESPILON{4cc3l4_ch1rp_spr34d_w1r3d}` |
|
||
| [LAYER_ZERO](Misc/LAYER_ZERO/) | Hard | `ESPILON{kn1ghts_0f_th3_w1r3d_pr0t0c0l7}` |
|
||
| [AETHER_NET](Misc/AETHER_NET/) | Insane | `ESPILON{4eth3r_n3t_d3us_4dm1n}` |
|
||
| [Last Train 451](Misc/Last_Train_451/) | TBD | *(challenge en cours)* |
|
||
|
||
---
|
||
|
||
### ⛓️ Web3 / EVM
|
||
|
||
| Challenge | Difficulté | Flag |
|
||
|-----------|-----------|------|
|
||
| [GANTZ BALL CONTRACT](Web3/GANTZ_BALL_CONTRACT/) | Insane | `ESPILON{g4ntz_b4ll_100_p01nts_fr33d0m}` |
|
||
| [TACHIBANA FIRMWARE REGISTRY](Web3/TACHIBANA_FIRMWARE_REGISTRY/) | Insane | `ESPILON{t4ch1b4n4_fuzz_f1rmw4r3_r3g1stry}` |
|
||
|
||
---
|
||
|
||
## Système de scoring
|
||
|
||
| Difficulté | Initial | Minimum | Decay (solves) |
|
||
|------------|---------|---------|----------------|
|
||
| Easy | 250 | 50 | 100 |
|
||
| Medium | 400 | 80 | 80 |
|
||
| Medium-Hard | 500 | 100 | 60 |
|
||
| Hard | 600 | 150 | 50 |
|
||
| Insane | 600+ | 150 | 50 |
|
||
|
||
---
|
||
|
||
## Auteur
|
||
|
||
**Eun0us** — ESPILON CTF 2026
|