Comments for Darth Null

Comment on 2012 Verizon DBIR Cover Challenge by Mike Czumak

Mike Czumak — Thu, 29 Mar 2012 11:15:47 +0000

Great synopsis. Here’s some info about our experience… After starting really late last year and coming in fourth, my co-worker and I were determined to have better results with this one. After day 1 (Thu) we had the decoded poem from the cover, obtained the pastebin info (we realized the Phone #/IP connection very quickly) and with a quick script to check hash frequency, we also had the pinterest site which gave us the gift (ciphertext) and the encryption recipe for openssl w/ base64 rc4-40 and -nosalt. We felt we were off to a blazing start after only a couple of hours and were confident we were in the lead. This is where it all fell apart for us! We went down the path of removing the ‘******’ from the gift and treating it as one block of ciphertext…it base64 decoded and so we assumed this was correct. Our next quest was for the right key. We looked to the poem and the pastebin site, especially the image comments and tried so many different combinations, all in vain of course. Even though we ultimately had the right key (though we didn’t know it at the time), our assumption on the ciphertext was way off. In addition, the clues that were coming in via Twitter were for steps we had already accomplished…and were leading our “competition” closer to where we were…very frustrating! I think for too long we were too proud/stubborn to consider asking for clues so we continued further down the wrong path. When the clue for the grille cipher was released days later we quickly changed gears. We saw the html formatting of the 8′s (very visible in Firefox 3D tilt) and got our cipher. Here’s where it got even more frustrating…we realized it was base64 encoded, decoded it, stared at the decoded string and figured since the encryption ‘recipe’ called for -base64, openssl would take care of it; so then we proceeded to use the original encoded string in our decryption efforts! Of course this led to more frustration and shortly after you had claimed 1st prize, 2nd was also taken and we were once again working with the wrong ciphertext. When you mentioned the encoding of the final string on Twitter I thought about it for a while, went to bed and the next morning realized that I better base64 decode it before I run it through openssl. I had a hunch the password was Markitdude all along, tried it and Voila! I sent in our submission in and wouldn’t you know it…missed 3rd place by less than 1 hr! Either way, we had a great time (even if we did take 4th again) and look forward to next year. Congrats on the win! — Mike Czumak

Comment on 2012 Verizon DBIR Cover Challenge by G Mark Hardy

G Mark Hardy — Thu, 29 Mar 2012 01:28:07 +0000

Wow! That’s an impressive puzzle and an even more impressive solution. I always worry about putting this much complexity into a Con badge puzzle or contest, because few have the insight and the perseverence to grind it out to the end. Hey, with DEFCON 20 coming up, maybe we can up the difficulty factor a bit — especially if I can get Jeff to spring for an iPad as a prize! Well done! — G. Mark

Comment on ShmooCon 2008 Badge Puzzle by G Mark Hardy

G Mark Hardy — Mon, 20 Feb 2012 16:29:11 +0000

Aww, no crypto shortcuts? Never say never. Anyway, there are a couple thousand of my business cards now in circulation, and I tell anyone who is interested the same thing — “everything you need to solve this is on the card,” and “it can be solved with pencil and paper.” Except I used pen when building it — I can never seem to find a pencil when I need one.

Comment on ShmooCon 2008 Badge Puzzle by #Geek? #Friday? #Bored? Check out @schuetzdj & his worked solutions of #Security Conference Badge Contests – dropsafe

Fri, 17 Feb 2012 10:39:36 +0000

[...] example the ShmooCon 2008 Badge Puzzle or the DEF CON 18 Crypto [...]

Comment on ShmooCon 2008 Badge Puzzle by Darth Null

Darth Null — Sat, 11 Feb 2012 03:56:34 +0000

Yeah, every couple months I look at that again, and after a couple days, put it away. I’m pretty sure I know what needs to happen, but just can’t find an easy way to do it short of brute forcing it. I sometimes think I should just write a brute force tester and let it run — if I’d started that a couple years ago it’d be solved by now.

I was really excited when you updated the cards last year, hoping that now I could try an attack in depth, but it appears you did the right thing and did not reuse key/plaintext in any way that’d help me.

Comment on ShmooCon 2008 Badge Puzzle by G Mark Hardy

G Mark Hardy — Fri, 10 Feb 2012 17:24:53 +0000

Very impressive! This is the most complex badge puzzle I’ve seen for a hacker conference. Although it took nearly four years for a solution to be published, Darth is the guy I would have bet on to do it.
(Darth — Now you can turn your attention to my business card puzzle — it’s been unsolved for the same length of time

Comment on ShmooCon 2012 Badge Puzzle by Darth Null

Darth Null — Mon, 06 Feb 2012 16:41:57 +0000

I also ensured that “GMH” (G. Mark) and “DJS” (my initials) were available on the wheels as potential distractors.

I’m glad that the “one stage leads to the next” format worked. I first really saw that with G. Mark’s TOORCON 12 puzzle, and I like the structure of it. Though I do think that there should be some looping / branching, just to make things a little more interesting. Maybe next year. Finally, I’m really glad that you’re learning from my mistakes as far as keeping things simple. Refocusing, stepping back, keeping an open mind, not getting bogged down on a single approach (whether that approach is reasonable or rabbit-hole-crazy) is a skill that I’m still developing.

Thanks again for your comments. Seeing what you went through, and your enjoyment and enthusiasm, makes it all worthwhile!

Comment on ShmooCon 2012 Badge Puzzle by Matthew (@magicmatt)

Matthew (@magicmatt) — Mon, 06 Feb 2012 16:08:04 +0000

Well as for the last stages of the puzzle, we had the vins already as I was pretty sure we were going to need them at some point. Of course I knew you had solved the puzzle the last three times so we progressed to the three gear stage rather quickly. The three gear stage was pretty tricky though . I tried them the way they were, forwards and backwards but no dice. I then convinced myself that K-E-Y was the key since there was only one k, e, and y on each respective gear. At first we were stuck on how many revolutions it would take to get the gears to align to key. Take that number and rotate the previous 7 gear’s to get the key to the VIN’s. The method was way too complicated and did not work. I then realized I could just set the three gears to key and try reading forwards and backwards. All of a sudden I saw “YOUHAV” pop out and I went crazy! I kept decoding it three letter chunks at a time because I just wanted to see what it said. I was very excited because I could not think of any more cipher text that needed decoding. I thought it was over and we had one. Then I decoded “NOW FOR THE FINAL CHALLENGE” and I started to get stressed again because there was one more step. At the very end our key was messed up and I entered the cipher text wrong so we decoded WHAT CAR DOES BRUCE STILL HAVE ON BLVORD. I felt like Ralphie from “A Christmas Story” saying “have on what?”, “HAVE ON WHAT?”. We then corrected it to blocks after we identified the mistake.

I thought that the puzzle was perfect because each stage led me to the next and presented a clue for the key. You should remember that I had read how it is important to keep it simple. Many of your puzzles showcase how easy the answer was after you know the solution and the importance to not over-complicate matters. At every stage and at every dead end I took a step back and said what I know, what is there left, and what was the clue. This allowed me to refocus on a simple approach after I made leaps in the wrong direction. I hope you are not disappointed now that you know all the wrong directions I went . It was challenging and set us for loops at times!

-Matthew

Comment on ShmooCon 2012 Badge Puzzle by Darth Null

Darth Null — Mon, 06 Feb 2012 14:09:21 +0000

So glad you had fun! I’m a little disappointed that the bulk of the puzzle fell so quickly after you got the badges in order, but then maybe you’d already been thinking about later stages anyway. It’s especially funny how you danced around the ShmooCon date trick but never quite latched on.

And I’m glad that my writeups here helped… don’t feel like that’s “cheating”. I try to document these puzzles for two reasons: 1, so that great puzzles aren’t lost to time (and that others may build upon past successes), and 2, so that people can learn more about solving them. So if my posts helped you in any way, that’s a big win in my book!

Comment on ShmooCon 2012 Badge Puzzle by Matthew (@magicmatt)

Matthew (@magicmatt) — Sun, 05 Feb 2012 05:20:31 +0000

Hey Darth,
I did enjoy it! I am in fact a regular reader of all of your crypto solutions. I studied the past badge puzzles here and how you solved them. When I left work on Thursday before the con all I could think about was that I was going to solve and hopefully win this year’s puzzle. I knew (or thought at the time) that meant I had to contend with you and your knack for solving these things. When Friday came I got my badge and started to check out the program for all elements that may be involved. I was pretty sure that there were 7 badges I just had to find them. The guy next to me had badge 0128 and did not want me to photograph and share it because he thought it may contain Personally Identifiable Information :/ (I even told him that there were only seven unique badges). Luckily the guy in front of me was a speaker from Foundstone and said to follow him on twitter to get all the pictures of the badges. Later I saw the tweet by you “First big breakthrough on the ShmooCon badge puzzle!” I immediately thought you were talking about yourself and I started to get bummed out. Later hope was restored when I read “I’m actually not playing the ShmooCon Badge contest this year. But happy to throw some hints out. ” Now that I knew the Dark Lord was out of the running, I knew I could do this!

Friday night Mike and I had all the badge pictures but were stuck at how to order them. I went to sleep knowing that we needed to find an order to these badges to move on. At 6am Saturday morning I woke up having thought that representing the numbers xxxx as xx/xx would produce dates. I immediately thought that 7 badges = 7 days of the week however it worked out to not be unique days of the week, I was stumped again. At 9am I rode in to ShmooCon with Mike and we discussed my thought that they were dates. He then asked “Was ShmooCon always the last weekend in January?” I said I was not sure and we moved on. We were so close but did not make the connection. As it turned out we never did or did we need to. On 395 I saw the clue from GMark about reading down for directions. Under direction from Mike I just tried to make a word from the first letters of the boxed badge text (see the GMark method above in his comment). At the con Mike fixed up a simple error I made and we were off to “Turn the gears”. Two hours later and the puzzle was solved. I loved the literal use of key and the 80 char long key string, typing that on my phone was a challenge. I also loved when we asked Bruce directly and he looked at Heidi and asked if he could answer she said no and he told us he was leaving so he did not do anything stupid. The reason Mike and I looked through the program was that we thought one of the five car repair slips might have had the initials BP (Bruce Potter). I was really asked by Heidi “who do I ask for anything I don’t know” to which I replied “the internet”. The crowd loved that the closing ceremony.

I did find it odd that both you and GMark were tweeting hints so after it was done I sent some tweets GMark’s way. I told him I did not see any “gmarks” in the puzzle and he said that this puzzle was your show and was just a consultant. After I saw this it was quite obvious as to why you were not competing, and knew all the answers (you designed it).
Sorry for the long comment. I just wanted to give my side and the obstacles Mike and I faced. By the way after I found out that you had made the puzzle I almost felt like I had cheated, knowing that I read all of your crypto posts here. This was my second ShmooCon and I found your site after last year’s groans that you had won again, I needed to see who this guy was that had won.

Long and short Great puzzle, I had a wonderful time figuring it out! Perhaps you may get some joy knowing that you had an unintentional hand in training the winners.

-Matthew