Fixed line breaks.

Author: shawnduong

challenges-category-Binary+Exploitation.html

@@ -100,6 +100,7 @@
       I'll let you seek around my file as far as you want, but you can't go anywhere since it's /dev/null.
      </p>
      <p>
+<br>
      </p>
      <p>
       To figure out where things are, you can use the
@@ -239,6 +240,7 @@
       </code>
      </p>
      <p>
+<br>
      </p>
      <p>
       Socat version on remote is
@@ -341,6 +343,7 @@
       At the end lies your flag.
      </p>
      <p>
+<br>
      </p>
      <p>
       Updated distribution file: added Dockerfile and run script
@@ -423,4 +426,4 @@
   <script src="/static/ctfx.js-v-1.3.0r5.js" type="text/javascript">
   </script>
  </body>
-</html>
+</html>

challenges-category-Forensics.html

@@ -100,11 +100,13 @@
       Never done forensics before? No problem. Digital forensics is the branch of forensic science related to the investigation of digital data and media typically pertaining to cybercrime. We do a lot of work related to data and information theory, which includes file formats.
      </p>
      <p>
+<br>
      </p>
      <p>
       I took this picture a while ago, but I deliberately broke the file so that you can't view it! Muahaha! Find out where I was, what time I took that photo, and the serial number of my camera. Oh and I also left a secret in the picture for you to find.
      </p>
      <p>
+<br>
      </p>
      <p>
       The flag format for this challenge is
@@ -173,6 +175,7 @@
       When I was 18 -- 18 years old -- I saw, for the first time in my life, I saw a vision of clarity. I saw that the organizers were trolling me.
      </p>
      <p>
+<br>
      </p>
      <p>
       Original video:
@@ -269,6 +272,7 @@
       Fred found a suspicious new script on his computer, but he doesn't remember making or downloading it! He thinks that an attacker might have left it behind by accident. We have a capture of the network traffic going to and from his computer around the suspected time of the intrusion.
      </p>
      <p>
+<br>
      </p>
      <p>
       Our tools and scanners couldn't detect anything. Can you?
@@ -386,4 +390,4 @@
   <script src="/static/ctfx.js-v-1.3.0r5.js" type="text/javascript">
   </script>
  </body>
-</html>
+</html>

challenges-category-Miscellaneous.html

@@ -192,6 +192,7 @@
       Another song for you - this time in mod format - but no instrument names for you to search up. Same flag format as last challenge.
      </p>
      <p>
+<br>
      </p>
      <p>
       Originally depends on: Name that Song 2
@@ -280,6 +281,7 @@
       My flag is protected by sick nsjail tech. I'm so confident in it, I'll even personally run your binary in it.
      </p>
      <p>
+<br>
      </p>
      <p>
       When you compile your binary to run, please use the provided Dockerfile - it is the same environment as on remote.
@@ -347,4 +349,4 @@
   <script src="/static/ctfx.js-v-1.3.0r5.js" type="text/javascript">
   </script>
  </body>
-</html>
+</html>

challenges-category-Networks.html

@@ -177,6 +177,7 @@
       I saw my arch-nemesis, Billy Bob Bobertson, in the library. He left his laptop open for 3 minutes to go use the restroom. Luckily, I had my BadUSB handy and gave myself a shell and then persistent remote access, and started running a few commands and capturing his web traffic (shown in the attached screenshot). I think he's up to something suspicious and received some sort of message from a group of criminals.
      </p>
      <p>
+<br>
      </p>
      <p>
       They say that looking through a pcap is like finding a needle in a haystack, but what do you do if that haystack is encrypted?
@@ -220,6 +221,7 @@
       We had a rat infestation so I put mousetraps everywhere. Now I can code in peace without rats!
      </p>
      <p>
+<br>
      </p>
      <p>
       I'm a networks guy, so I was doing some network coding the other day when I picked up these interesting transmissions from some not-exactly-802.11 devices. There seems to be some presumably low-power wireless device somewhere transmitting data continuously, like a fountain! I think it's transmitting the flag, but I don't understand its transmissions. Can you recover it?
@@ -308,4 +310,4 @@
   <script src="/static/ctfx.js-v-1.3.0r5.js" type="text/javascript">
   </script>
  </body>
-</html>
+</html>

challenges-category-Radio+Frequency.html

@@ -100,11 +100,13 @@
       Welcome to the world of radio frequency! Before we give you real-life raw I/Q files and let you start hacking protocols, let's make sure you understand and can show basic competency in the fundamentals.
      </p>
      <p>
+<br>
      </p>
      <p>
       Note: challenges in this category are gated. Completion of babyrf 1 will unlock babyrf 2, and completion of babyrf 2 will unlock all the challenges in the RF category.
      </p>
      <p>
+<br>
      </p>
      <p>
       --- Hint ---
@@ -188,6 +190,7 @@
       Great job with babyrf 1! But what do we do if we have a really long string of 1s or a really long string of 0s? What kind of problem do we run into, and what kinds of solutions are there?
      </p>
      <p>
+<br>
      </p>
      <p>
       Note: challenges in this category are gated. Completion of babyrf 2 will unlock all the challenges in the RF category.
@@ -258,11 +261,13 @@
       Great job completing those babyrf challenges earlier. Now, we're moving from the theoretical domain into the real world! Let's get you started with real world RF.
      </p>
      <p>
+<br>
      </p>
      <p>
       My buddy sent me this file the other day of some signals he recorded. We think it holds the flag, but we're not sure what kind of file this is, nor do we have any idea how to open it! Do you think you could get the flag for us?
      </p>
      <p>
+<br>
      </p>
      <p>
       <strong>
@@ -317,11 +322,13 @@
       Dog goes woof, cat goes meow, bird goes tweet, and mouse goes squeak. Cow goes moo, frog goes croak, and the elephant goes toot. Ducks say quack, and fish go blub, and the seal goes ow ow ow! But there's one sound that no one knows.
      </p>
      <p>
+<br>
      </p>
      <p>
       What does the monkey say?
      </p>
      <p>
+<br>
      </p>
      <p>
       <strong>
@@ -367,6 +374,7 @@
       Sometimes I go around with a radio in my backpack and just see what I pick up.
      </p>
      <p>
+<br>
      </p>
      <p>
       Once you recover the message, wrap it with
@@ -376,6 +384,7 @@
       before submitting the flag.
      </p>
      <p>
+<br>
      </p>
      <p>
       <strong>
@@ -421,16 +430,19 @@
       My arch-nemesis, Billy Bob Bobertson, just moved into a new house. I'm still upset at him for stealing my Pringles all those years ago -- my delicious lemon, cheese, and garlic Pringles! Let's break into Billy Bob Bobertson's house and steal his new Lamborghini parked in his garage. I hear they're a lot of fun to drive in the Hollywood hills.
      </p>
      <p>
+<br>
      </p>
      <p>
       I planted a secret radio receiver near his house and picked up some signals from when he parks in the garage. Unfortunately, it looks like the RF-based access mechanism he uses uses non-static codes, so I can't just replay a captured signal (unless I were to rolljam it, of course). There must be some way to break in!
      </p>
      <p>
+<br>
      </p>
      <p>
       Note: this challenge was set up using the unlicensed frequency spectrum. This is a resource shared by all. There may be other transmissions unrelated to the challenge due to other devices using the medium when these samples were recorded.
      </p>
      <p>
+<br>
      </p>
      <p>
       The flag format for this challenge is the sequence of bits required to be transmitted in order to
@@ -444,6 +456,7 @@
       .
      </p>
      <p>
+<br>
      </p>
      <p>
       <strong>
@@ -507,4 +520,4 @@
   <script src="/static/ctfx.js-v-1.3.0r5.js" type="text/javascript">
   </script>
  </body>
-</html>
+</html>

challenges-category-Reverse+Engineering.html

@@ -188,6 +188,7 @@
       There's this cool new Python obfuscator that came out recently that obfuscates Python. I made some changes to part 1 and obfuscated it. Now how will you get the flag?
      </p>
      <p>
+<br>
      </p>
      <p>
       Originally depends on: Meaning of Python 1
@@ -324,6 +325,7 @@
       Do you remember Scratch? You'll need to for this next challenge.
      </p>
      <p>
+<br>
      </p>
      <p>
       To input a flag, click the green flag and type in a flag. Press enter, then click Michael to check.
@@ -367,6 +369,7 @@
       Closet Computer is a strange, unfinished game that released in 2072. Many critics complained that the game was too unoptimized, and it is! Supposedly, this bad boy holds hundreds of threads in it. Why? Who knows! See if you can escape the closet!
      </p>
      <p>
+<br>
      </p>
      <p>
       Note: In rare cases, the program can get stuck. If it seems like it's doing nothing for a long time, just restart it.
@@ -428,4 +431,4 @@
   <script src="/static/ctfx.js-v-1.3.0r5.js" type="text/javascript">
   </script>
  </body>
-</html>
+</html>

challenges-category-Web+Exploitation.html

@@ -100,6 +100,7 @@
       More byte mean more secure
      </p>
      <p>
+<br>
      </p>
      <p>
       Although this is a web challenge, the script is ran directly with PHP because it doesn't need to have an HTML website attached. Run the command below to connect!
@@ -150,6 +151,7 @@
       JSONP is a old pattern for getting data into JS, but I heard it's insecure because an attacker can specify code instead of a function name. I solved this problem by not letting you change the name.
      </p>
      <p>
+<br>
      </p>
      <p>
       For this challenge you will need to submit a URL to the admin bot (a program that runs a browser and directs it to visit your URL, simulating a real person clicking your link). I recommend learning how to use
@@ -334,6 +336,7 @@
       I've written a program that let's you encrypt and decrypt strings, but it uses a proprietary closed-source SDK through GitHub Actions. Of course you can fork it and only the magical GitHub black box will be able to see it. So there's no way you could dump the entire SDK... right?
      </p>
      <p>
+<br>
      </p>
      <p>
       Note: this challenge uses a non-standard flag format, irisCTF{}.
@@ -389,6 +392,7 @@
       Classic bug combo pack
      </p>
      <p>
+<br>
      </p>
      <p>
       Admin will visit your URL after logging in.
@@ -444,6 +448,7 @@
       What does it truly mean to sanitize something? What is a sanitize? Is this challenge solvable?
      </p>
      <p>
+<br>
      </p>
      <p>
       Admin bot code is provided, running Chromium at least 109.0
@@ -517,4 +522,4 @@
   <script src="/static/ctfx.js-v-1.3.0r5.js" type="text/javascript">
   </script>
  </body>
-</html>
+</html>

challenges-category-Welcome.html

@@ -100,6 +100,7 @@
       Welcome to IrisCTF 2023! Whether this is your 1st or 100th CTF, we want you to have a fun and pleasant experience. Maybe you can even learn something new!
      </p>
      <p>
+<br>
      </p>
      <p>
       Here's a freebie to introduce you to what the flag format looks like:
@@ -141,6 +142,7 @@
       If you need help with a challenge, the only way to connect with us is through our Discord. Joining our Discord will also give you updates about a challenge and updates about the event.
      </p>
      <p>
+<br>
      </p>
      <p>
       Join our Discord and find the flag.
@@ -241,4 +243,4 @@
   <script src="/static/ctfx.js-v-1.3.0r5.js" type="text/javascript">
   </script>
  </body>
-</html>
+</html>