Itâs clear to me that the one who approved the challenge did not try to solve it without looking at the guide.
The waltz thing was very confusing to me. To solve this, stack different simple decodings/ciphers and remember the hint at triplets. Then its mostly guessing the right amount and parameters.
Hoooly â â â â , this is definitely the most retarded challenge I have ever done.
First of all, for the author, I feel sorry for you. I know you have not created challenges before, but hopefully this feedback makes you think twice before creating challenges that make people guess what is going on in your mind. I hope no one else has to suffer the amount of torture we had to go through to solve this challenge. I also hope that this thread has enough hints so that people can solve this challenge without spending more than 5 minutes.
For the person who tested this, what the â â â â were you thinking. Did you even try to solve this without reading the solution? I understand there are some cases where the challenge might be out of our skill level so you have to read the solution, but this was clearly not one of them. Why did you think this was okay for us to solve? I learnt nothing from this challenge.
Also, I voted this challenge Piece of Cake and I hope everyone does too because it does not deserve a Brainfuck rating for being a âhard to guessâ challenge. Maybe I will create a challenge that requires you to guess the number I thought of in my head between 1 and 1000 and call it information asymmetry. For fucks sake.
This challenge is barely related to a Waltz, only 100% guessing and slamming ciphers together. The hints also werenât that great⌠it only threw me off thinking about the beats in a Waltz (which is somewhat related) and the âstep side closeâ for hours (which is useless). I even started drawing diagrams trying to find some square pattern following the footsteps of a Waltz.
This is definitely the worst CTF challenge I have ever seen. I am not sure what the person who approved this challenge was thinking⌠if that person was thinking at all at that moment.
As @sampriti said, please rate this a piece of cake and give it a thumbs down. It is a complete waste of time. Sorry @0xEA31 , I really enjoyed the CTF and Lightweight box (and learned a lot from them!), but this challenge really disappointed me.
I finally managed to solve this problem. As far as the second step I even guessed myself, using bruteforce so the whole thing is so fucked up that I donât know what to say more about it.
Thefirst step is obvious, the next is guessing, the third step is backwardbecause the default ânon-cypherâ has a different shift. And that whole stuff do few times.
As @sampriti said I can choose random thing to hide with many ciphers and make a challenge. At the end i will public a hint like âyou know thereâs a cipherâ.
Finally when i got it i saw that even flag is disabled -.-
Solving this task is like dancing a waltz to a dubstep.
At least I learned that also Cyberchef has problems to solve this challenge If you are facing the same problem (output/download makes absolutely no sense) after you created your recipe manually, just copy/paste the whole cyberchef address in a new browser tab. This should solve it.
I agree with @sampriti and @will135 100%. If HTB actually solved this based on the clue âWalzer Styleâ without seeing the solution , rated it 40pts and published it, then they need their heads checked. Thereâs no way I would have published this puzzle with that clue. Even if I saw the solution without trying to work it out first I wouldnât have green lit this. This is just throwing â â â â at the wall to see what sticks. Thereâs no fun or reward for that.
They need better vetting. At least try to solve these before rating and publishing. As said before this challenge was nothing but trying to guess what is in the authorâs head.
Yeah, I donât know man, but I share the same opinion as my friends @R4J@sampriti@xct . How this challenge got accepted is beyond me and Iâm really pissed off at whoever tested this challenge. We shouldnât be mad at the creator, he tried to teach us something. He made a mistake and owned it. But who the â â â â tested this â â â â and thought like âoh yea, this is fucking good, lets smash 40pts on top of itâ. Well guess what. Itâs fucking easy if itâs fucking solved with a guide. To all the testers, please at least try the challenges without guide. You guys arenât perfect, we know that. But donât â â â â us over like this.
PS: I have a cool crypto challenge for you guys. Guess the number from 1-1337. Send me a DM with your guess. First blood receives a star sticker that says âmaster at guessingâ.
UPDATE: Iâm getting a lot of messages of people asking for hints. Here you go: The number is between 1 and 1337.
UPDATE 2: Iâm getting a lot of messages whether 1 and 1337 are included. No, they are not.
UPDATE 3: Hereâs a hint. Reverse the following piece of code and you will get the flag.
import random
print("HTB{%i}" % random.randint(2, 1337))
What threw me off is that in Waltz you do a certain pattern and then repeat it kind of âbackwardsâ, but that never happens here. Youâre just doing the âequivalentâ to the forward movement a few times. I honestly donât think itâs a bad challenge, but there could have been more information provided on the steps involved, since at least one of them is found literally through guessing and/or bruteforce.
Maybe I will create a challenge that requires you to guess the number I thought of in my head between 1 and 1000 and call it information asymmetry. For fucks sake.
ITS 42 ISNâT IT - YOU KNOW IâM RIGHT - GIVE ME THE FLAG NAO