Farness Write-up

By
Nasim Sulaiman
Published on
20 Nov 2021
1 min read
DOMECTF2021

Story

The Chinese server was hacked with advanced AI techniques. Interpol investigated and concluded that the attack was from Russia.

Chinese General GenSim asked the people not to panic. The last word to Vector(Chief Secretary of the cyber wing) by the general in a meeting was to “find the criminal from positions 4645, 742, 2129, and 591”

Solution

The challenge contains 3 text files and a python file.

lockbox1

This challenge is NLP-related, and it is required to find the elements at the positions mentioned in the story.

The first step is to find out which type of model has to be used. On having a closer look at the story, we can see that they have given some keyword hints such as “Gensim” and “Word to Vector”.

Here, we train a word to vector model in Gensim and get the vocab list of the model. Also, ensure that you have applied basic preprocessing steps before training the model.

lockbox1

This will give the words for the index values.

lockbox1

Run the python file with python flag.py and enter the respective keywords as shown below and this will give you the flag.

lockbox1
Automated human-like penetration testing for your web apps & APIs
Teams using Beagle Security are set up in minutes, embrace release-based CI/CD security testing and save up to 65% with timely remediation of vulnerabilities. Sign up for a free account to see what it can do for you.

Written by
Nasim Sulaiman
Nasim Sulaiman
AI Engineer
Experience the Beagle Security platform
Unlock one full penetration test and all Advanced plan features free for 10 days
Find surface-level website security issues in under a minute
Free website security assessment
Experience the power of automated penetration testing & contextual reporting.