BSides Las Vegas 2024 Challenge

Project Circuit Breaker has scattered challenges around BSidesLV 2024. Solve all the challenges to instantly win one of sixteen prizes. Solving all challenges in each group will earn you entries into a raffle for any unclaimed prizes held at the end of the conference.

Come to our booth to get a copy of the challenge tracking card and get started.

Entry Period

9:00am PST August 6th, through 4:00pm PST August 7th, 2024.

Drawing at 5:00pm PST August 7th, 2024.

Official Contest Rules

Join the Conversation

 

This challenge has ended, but you can still test yourself!

Hint: Check out the Human Interest Project.Hint: Book Worm award was given to hackers who created support resources for other hackers.Hint: Make sure you get the symbol correct.Hint: Binary clockwise rotationHint: Cable CarsHint: Request an NDA over…Hint: Tiger Moth (art)Hint: Intel(R) Software Guard Extensions (SGX)Hint: 1971

Come by the booth and make your mark on our event art. Sign your name, hacker handle, draw your favorite emoji but keep it kid friendly.

Note: Completing this challenge online is just for your own personal tracking purpose.

Hint: Type "Complete" to mark this task done.

Visit the Project Circuit Breaker booth and request one of our event coins to gain access to this challenge.

Participants must solve 2 challenges before receiving a coin, while supplies last.

The flag takes the format flag{xxxx}. Do not include the flag{ } characters in the answer string.

Given certain knowledge about a public/private keypair it is possible to calculate the missing components and subsequently break open all ciphertext made from that keypair.

Enter the 1024-bit RSA Private Key Exponent that goes with this public key:

Public Key 1:

0xbb1fb6574953871d86e044b978954ae578994ef0795cce0e24d553522e22ecb439cb4294cb4071cb9c24fbd3fe54efe40307cd0f5088ac37e4cb82ed404863495dfd4d4908504decdf98fdf47a8dc84a04e1c738f0146f8e46b497de12a6bb7c7662d6edc6014ae1faab37a9b73e186bf2764b73620b23177c323a8fd2939337

Two more public keys generated using the same private key are available at the Project Circuit Breaker booth.

Hint: Private key starts with 0x as the first two characters.

Hint: Public Exponent: 0x10001

Check to make sure you understand how this tool works with these early clock cycle readings.

Limited quantity of Color Badges available.

Come to the Project Circuit Breaker booth and show us that you’ve solved at least 4 challenges to receive the Intel STORM team’s Color Challenge device, v1.0.

There is a flaw in the ‘randomization’ routine that chooses which color the LED will be when the clock cycles (noted by the blinking indicator. Enter the color of the LED when it reaches the specified number of blinks.

Tip: Select all the colors before pressing submit.

NOTICE: You may be required to show your work before receiving a stamp.

This challenge can be entirely solved by downloading the components from the website and submitting an answer online.

It is widely understood that a virtual machine (VM) running on an untrusted hypervisor has no way of protecting itself to keep data integrity and confidentiality. After all, the hypervisor controls the total execution context of the VM, so what chance is there in light of such powers? We invented Trust Domain Extensions (TDX) for a reason! But just because in theory we know the VM has no chance, in practice things might not be so straight forward.

  • TurtleVM is a standard VMware VM image running Linux that can be booted on the freely available VMware player or Workstation Pro (version 16 or newer).
  • The first time you start TurtleVM, click I copied it when VMware asks where the VM comes from.

File for download: TurtleVM.zip

Hint: The first flag-looking thing you come across may not be the final result.

This challenge can be entirely solved by downloading the components from the website and submitting an answer online.

It is widely understood that a virtual machine (VM) running on an untrusted hypervisor has no way of protecting itself to keep data integrity and confidentiality. After all, the hypervisor controls the total execution context of the VM, so what chance is there in light of such powers? We invented Trust Domain Extensions (TDX) for a reason! But just because in theory we know the VM has no chance, in practice things might not be so straight forward.

  • TurtleVM is a standard VMware VM image running Linux that can be booted on the freely available VMware player or Workstation Pro (version 16 or newer).
  • The first time you start TurtleVM, click I copied it when VMware asks where the VM comes from.

File for download: TurtleVM.zip

Note: Do not include flag{} in the answer field.
Note: [&] may need to be replaced with [&]

Hint: Find the flag in format flag{...} in the VM.
Recheck