fcsc2026 on Hackropole

10 Fast Fishers

Mon, 13 Apr 2026 00:00:00 +0000

Think you’ve got fast typing skills? Prove it in 10 Fast Fishers — the addictive underwater typing game where speed meets style!

Watch colorful fish swim across your screen, each carrying a word. Type fast, match the word, click the fish, and watch your document transform before your eyes. Bold pufferfish, italic angelfish, and even some sneaky jellyfish that’ll mess with your formatting!

Build combos, rack up points, and become the ocean’s greatest typist. But beware of the squid… 🦑

A la recherche du Wapiti

Mon, 13 Apr 2026 00:00:00 +0000

While traveling in northern China, you find sensors in your accommodation. These are based on ESP32C3, but they seem to speak a language you do not understand.

Armed with your Wi-Fi card and your tools, you manage to retrieve the firmware from one of the ESP32 devices.

À une vache près

Mon, 13 Apr 2026 00:00:00 +0000

Adresses du noyau - Pour commencer

Mon, 13 Apr 2026 00:00:00 +0000

You receive RAM captures on three machines, and you are looking for the address of the first kernel instruction (using the _stext function) for each of them.

The flag is in the format FCSC{phys-virt} where:

phys is the physical address of the first kernel instruction,
virt is the virtual address of the first kernel instruction in the kernel text mapping.

All addresses are 64 bits, in hexadecimal format with a 0x prefix.

Adresses du noyau - Sans symboles

Mon, 13 Apr 2026 00:00:00 +0000

You receive RAM captures on three machines, and you are looking for the address of the first kernel instruction (using the _stext function) for each of them.

The flag is in the format FCSC{phys-virt-direct} where:

phys is the physical address of the first kernel instruction,
virt is the virtual address of the first kernel instruction in the kernel text mapping area,
direct is the virtual address of the first kernel instruction in the direct mapping area.

All addresses are 64 bits, in hexadecimal format with a 0x prefix.

Adresses du noyau - Un peu d'aléa

Mon, 13 Apr 2026 00:00:00 +0000

You receive RAM captures on three machines, and you are looking for the address of the first kernel instruction (using the _stext function) for each of them.

The flag is in the format FCSC{phys-virt} where:

phys is the physical address of the first kernel instruction,
virt is the virtual address of the first kernel instruction in the kernel text mapping.

All addresses are 64 bits, in hexadecimal format with a 0x prefix.

ASCII Badge

Mon, 13 Apr 2026 00:00:00 +0000

A friend configured their Hackropole badge to encode a flag on the 8 LEDs. While they are away, you dump the firmware of their badge.

Can you recover the flag from the dump ?

Note: having the physical badge is not necessary to solve this challenge, the original firmware has not been modified.

autodiag

Mon, 13 Apr 2026 00:00:00 +0000

This debug port looks promising.

BadAES

Mon, 13 Apr 2026 00:00:00 +0000

boring

Mon, 13 Apr 2026 00:00:00 +0000

JSON format is pretty boring, don’t you think? A binary representation is immediately more fun!

Note: This challenge is the first part of the Not So Boring challenge.

Brontosaure

Mon, 13 Apr 2026 00:00:00 +0000

You need to write a keygen for this binary, and then validate it on the remote service.

Bubulle Corp (Part 1)

Mon, 13 Apr 2026 00:00:00 +0000

Bubulle Corp is hiring! Join our team of marine experts and help us monitor deep sea operations from our brand new corporate dashboard.

As a new recruit, you’ll have access to fleet tracking, catch reports, and depth analytics. But rumor has it the captain keeps his secret Paella recipe hidden somewhere on the platform…

Can you find it?

Bubulle Corp (Part 2)

Mon, 13 Apr 2026 00:00:00 +0000

Bubulle Corp is hiring! Join our team of marine experts and help us monitor deep sea operations from our brand new corporate dashboard.

As a new recruit, you’ll have access to fleet tracking, catch reports, and depth analytics. But rumor has it the captain keeps his secret Paella recipe hidden somewhere on the platform…

Can you find it?

Ceci n'est pas une Bellcore 1/2

Mon, 13 Apr 2026 00:00:00 +0000

Imagine it’s the fall of 1996, and a team at Bellcore has just announced an attack that can break RSA keys. To break an RSA key (n, e, d), they require a pair (s, s'), where s = m^d mod n is the correct signature of a message m, and s' is a faulty signature of the same message, resulting from a perturbed computation.

Following this announcement, Lenstra devised a similar attack that only requires knowledge of (m, s'), without access to the correct signature.

Ceci n'est pas une Bellcore 2/2

Mon, 13 Apr 2026 00:00:00 +0000

The difficulty is further increased by using code that protects the private exponent with Euclidean division (random distribution of the exponent).

This challenge is extremely difficult; it is recommended to start with challenge 1/2. Furthermore, the challenge can initially be solved locally before validating the solution using the server.

The documentation of the virtual machine is available on this page.

Code Breaker

Mon, 13 Apr 2026 00:00:00 +0000

Computing Software

Mon, 13 Apr 2026 00:00:00 +0000

Your friend just found a very interesting piece of software on a portable computer. This software looks like working on his computer, but not on yours. Confused, your friend provided you an execution trace to investigate.

Find a way to execute this software!

Convolu-quoi ?

Mon, 13 Apr 2026 00:00:00 +0000

Convolutional codes are frequently used in wireless communication standards: in mobile networks, in Wi-Fi, but also in space transmissions. With a convolutional code, a message m(x) is multiplied bit by bit by two defined polynomials p1(x) and p2(x).

For example, in GSM (also called second generation mobile network, 2G), two outputs are calculated: c1(x) = m(x) * p1(x) and c2(x) = m(x) * p2(x). The transmitted message alternately contains the bits of c1(x) and c2(x).

Deep Blue

Mon, 13 Apr 2026 00:00:00 +0000

Discover this new marine blog! Will you manage to steal the secret recipe for the best fish & chips in the author?

Délog

Mon, 13 Apr 2026 00:00:00 +0000

The discrete logarithm problem is at the heart of several cryptographic primitives used today. I encrypted my flag with an elliptic curve, can you recover it ?

dixvision

Mon, 13 Apr 2026 00:00:00 +0000

Extensif

Mon, 13 Apr 2026 00:00:00 +0000

What is wrong with my registers ? I do not understand anymore.

FCSC Aquarium

Mon, 13 Apr 2026 00:00:00 +0000

The FCSC has opened an Aquarium, visit it!

FizzBuzz (1/2)

Mon, 13 Apr 2026 00:00:00 +0000

Using the virtual machine, you must produce a string that performs a FizzBuzz count.

The documentation of the virtual machine is available on this page.

FizzBuzz (2/2)

Mon, 13 Apr 2026 00:00:00 +0000

Using the virtual machine, you must produce a string that performs a FizzBuzz count.

Be careful, some instructions are not allowed.

The documentation of the virtual machine is available on this page.

Forenzeek - Compromission initiale

Mon, 13 Apr 2026 00:00:00 +0000

Network logs from the Zeek tool were collected on a network where an attacker was detected. Only a portion of the Zeek log fields are available.

A compromise was observed on the machine with the IP address 192.168.1.42. This compromise was achieved via a malicious email containing a fairly large payload. Can you find the UID of the connection associated with downloading the email? (e.g., 1ac41a8ff0fd305679)

The flag is in the format FCSC{uid} (e.g., FCSC{1ac41a8ff0fd305679}).

Forenzeek - Latéralisation

Mon, 13 Apr 2026 00:00:00 +0000

Following the initial compromise you analyzed, the attacker apparently didn’t stop there! It seems the network administrator detected unusual activity on their network administration machine. Can you identify the UID of the connection that allowed the attacker to compromise the administrator’s machine? (e.g., 1ac41a8ff0fd305679)

The flag is in the format FCSC{uid} (e.g., FCSC{1ac41a8ff0fd305679}).

Frankenshtein

Mon, 13 Apr 2026 00:00:00 +0000

What is this creature ?

Note: This challenge requires a sufficiently recent version of Python, e.g., Python 3.13. If you need to execute the given script, you can use this Docker command: docker container run -v ./frankenshtein.py:/fcsc/frankenshtein.py -it python:3.13.11-alpine3.23 /fcsc/frankenshtein.py.

Fully Homomorphic RSA

Mon, 13 Apr 2026 00:00:00 +0000

It is well known that the plain RSA primitive is multiplicatively homomorphic: the ciphertext corresponding to the product of two plaintexts is the product of the two ciphertexts. After several years of work, our researchers have obtained a major breakthrough: they have figured out how to compute the ciphertext corresponding to the sum of two plaintexts using only the original ciphertexts and the public key. This makes the RSA cryptosystem fully homomorphic!

GoodAES

Mon, 13 Apr 2026 00:00:00 +0000

AES (Advanced Encryption Standard) is used in tens of billions of products. This symmetric encryption algorithm has found its way in computers, phones, cars, watches… It is used to protect data of all kind.

It is therefore critical to know how to use it, to encrypt and decrypt data. Here is a flag encrypted with AES-128 in CBC mode, decrypt it.

Grhelp - Connect back

Mon, 13 Apr 2026 00:00:00 +0000

You have the auditd logs of a compromised infrastructure.

The attacker successfully executed a command on a server, allowing it to connect to their command and control server.

What command did the attacker execute? (e.g., `bash echo “FCSC”)
What is the name of the compromised machine that executed this command? (e.g., Workstation)

The flag is the concatenation of the two responses: FCSC{machine-commandline} (e.g., FCSC{Workstation-bash echo "FCSC"})

Grhelp - Exfiltration

Mon, 13 Apr 2026 00:00:00 +0000

The attacker appears to have successfully exfiltrated the backupfiler machine. Can you identify:

the tool used to exfiltrate the data
the absolute path of the exfiltrated file
the time the data was prepared for exfiltration (YYYY-MM-DDTHH:MM:SS in UTC)?

The flag is the concatenation of the three responses: FCSC{tool-filepath-YYYY-MM-DDTHH:MM:SS}

Hashing goes brrr

Mon, 13 Apr 2026 00:00:00 +0000

History

Mon, 13 Apr 2026 00:00:00 +0000

Here is an implementation of logging (history) of entered commands. Do not worry, the commands are not interpreted. Read the file flag.txt located on the server.

I love permutations

Mon, 13 Apr 2026 00:00:00 +0000

I like permutations. So I decided to create my own block cipher.

I've lost my comment

Mon, 13 Apr 2026 00:00:00 +0000

Note: this challenge was a part of the FCSC 2026 prechall.

inferno

Mon, 13 Apr 2026 00:00:00 +0000

They say that hell is paved with good intentions, but this one is made of impossible angles and paths with no return. Even Beastie ended up throwing his trident into the furnace.

Tested on FreeBSD 15.0 (amd64).

L'étape perdue

Mon, 13 Apr 2026 00:00:00 +0000

The program provided performs operations on an IQ signal, allowing you to isolate information that I’m sure will interest you.

Unfortunately, its configuration file has been lost! Will you be able to reconstruct it after recovering the missing step? If so, you’ll need to listen very carefully! The IQ recording provided has been sampled at 250 kHz.

La routine

Mon, 13 Apr 2026 00:00:00 +0000

♫ This is myyyyyyyyy way ♫

Note: This is an untranslatable French musical reference, because “My Way” from Frank Sinatra is an adaptation of “Comme d’habitude” from Claude François. “Comme d’habitude” is translated with “as usual”, which is roughly the challenge name. If you read until this point, you can go listen to each song :)

Las Vegas Baby

Mon, 13 Apr 2026 00:00:00 +0000

You are in Las Vegas, in the middle of a Texas Hold’em poker tournament. All the players have gone on a break, and you find yourself alone with the deck of cards and your conscience. The temptation to cheat arises.

However, the task is not so simple: the dealer cuts the deck at a random position before dealing the cards. You must therefore be clever so that the deal gives you the best hand, regardless of where the dealer cuts. Additionally, you know you will be in the small blind, but you do not yet know whether there will be 3 or 4 players after the break.

Little d - Big trouble

Mon, 13 Apr 2026 00:00:00 +0000

The FIPS 186-5 standard requires, in the generation of an RSA key, that the private exponent d be greater than 2**(size//2). The standard also specifies that in the extremely rare case where d is smaller, new prime numbers p and q must be generated.

Try your luck by submitting one of these extremely rare cases.

Little d - Big trouble (Revenge)

Mon, 13 Apr 2026 00:00:00 +0000

Try your luck by submitting one of these extremely rare cases.

Look up: From the skies

Mon, 13 Apr 2026 00:00:00 +0000

Satellite communications ain’t mystical. Before DVB-S2, another standard was used. To start, here is a baseband signal, sampled at 1 sample per symbol.

Can you recover the transported video ?

The capture contains IQ samples, with each component being a float32.

Look up: Past Future

Mon, 13 Apr 2026 00:00:00 +0000

There is a standard between DVB-S and DVB-S2 known as DVB-DSNG. This is a new baseband signal, at one sample per symbol.

Will you be able to recover the video data?

The capture is in IQ format, with each component being a float32.

Macroplata

Mon, 13 Apr 2026 00:00:00 +0000

I did not know what crypto to use, so I used it all.

Maintenant, l'ESP !

Mon, 13 Apr 2026 00:00:00 +0000

Wi-Fi communication is not limited to devices connected to the same access point. Direct communication between devices is possible using certain protocols. ESP-NOW is one such example.

What were my two ESP32 talking about?

Minimaliste

Mon, 13 Apr 2026 00:00:00 +0000

A flag seems to have been hidden during the development of this very minimalist website. Can you find it?

netsec

Mon, 13 Apr 2026 00:00:00 +0000

You are tasked with carrying out a red team exercise on a major company. After many days spent infiltrating your target’s network, you are very close to achieving your objective. You only need to access the company’s central server to succeed, but unfortunately it appears to be invulnerable.

Your only lead to compromise this machine is a mysterious service listening on port 1337. Fortunately, during your intrusion you previously discovered the file netsec.tar.xz, which seems to be a backup from this server.

Not So Boring

Mon, 13 Apr 2026 00:00:00 +0000

I was informed that the first version of my program contained vulnerabilities… However, fixing them would be quite tedious and I don’t really have the time.

But I still developed my own sandbox so that it can no longer be compromised – a much more fun idea! Even LLMs haven’t found any vulnerabilities in its code.

Find a way to escape the sandbox and obtain the flag by executing /getflag.

OscillArt

Mon, 13 Apr 2026 00:00:00 +0000

My physics teacher sent me this video, but it seems to be corrupted. Can you help me identify the flag shown?

Warning: the video is very loud!

Note: this challenge was a part of the FCSC 2026 prechall.

Provably Secure Signature

Mon, 13 Apr 2026 00:00:00 +0000

It’s a shock for Mr. CRT1: he has just learned that, with the right protocol, the RSA signature scheme is not vulnerable to the famous Bellcore attack.

Confident, he decides to implement RSA without verifying the signature.

The documentation of the virtual machine is available on this page.

Puissance 4

Mon, 13 Apr 2026 00:00:00 +0000

If you succeeded with the “baby version, now try this one, which is just a tiny bit more complex. Your goal is still to read the flag.txt file located on the server.

Puissance 4 (baby)

Mon, 13 Apr 2026 00:00:00 +0000

Will you be able to win at Connect Four against a dumb AI? And if so, you can then try to read the flag.txt file located on the server.

Ready to Go?

Mon, 13 Apr 2026 00:00:00 +0000

We found a network connection that contains an unknown proprietary protocol. Can you understand the application that implements it?

RemoBLE Control

Mon, 13 Apr 2026 00:00:00 +0000

Armed with your trusty nRF52840 and the WHAD project, you captured Bluetooth Low Energy communications between a wireless keyboard and a computer. What did they say to each other?

The command line used for each capture is as follows: wsniff --interface uart0 --format=raw --no-metadata ble -f

Note: The keyboard used is configured in AZERTY.

Rocket Launcher

Mon, 13 Apr 2026 00:00:00 +0000

A missile launch system is operated via an industrial control panel. This panel is controlled by a Siemens S7-300 programmable logic controller (PLC).

The control panel consists of:

16 three-position switches connected to the PLC inputs (only 5 are used)
16 LEDs connected to the PLC outputs (not used)
a block of four 10-digit rotary encoders connected to the PLC inputs
a block of four 7-segment displays connected to the PLC outputs

To validate a missile launch, the command chain, consisting of four people, must take turns entering their 4-digit validation PIN code in the correct order on the rotary encoder and then confirm their entry with the corresponding switch.

scampi32

Mon, 13 Apr 2026 00:00:00 +0000

Our developper has mistakingly lost his license key. Will you be able to recover it? Note: nCPU requires PyTorch to be installed.

SCator

Mon, 13 Apr 2026 00:00:00 +0000

I was thinking of an AES-128 key, and SCator, the genius, managed to recover my key by observing only 10 executions!

Secure Mood Notes 1/2

Mon, 13 Apr 2026 00:00:00 +0000

Create, edit, delete, or share your notes securely.

Secure Mood Notes 2/2

Mon, 13 Apr 2026 00:00:00 +0000

Create, edit, delete, or share your notes securely.

Shellfish Say

Mon, 13 Apr 2026 00:00:00 +0000

Finally, the new version of Shrimp Say has been released! Discover Shellfish Say!

To ask the bot to say something, simply connect using: nc localhost 4000.

Shor

Mon, 13 Apr 2026 00:00:00 +0000

After years of dreaming, it finally happened: we got our hands on a top-of-the-line quantum computer. Between two attempts to bend space-time (and mine quantum Bitcoin), we figured breaking RSA would be more fun.

Shrimp Saver

Mon, 13 Apr 2026 00:00:00 +0000

Nothing like a little crustacean-based screensaver to brighten up your workstation!

Warning: when testing the challenge, browser addons may interfere with its proper functioning, it is recommended to disable them.

Shrimp WAF

Mon, 13 Apr 2026 00:00:00 +0000

The shrimp is keeping a secret that we absolutely must uncover.

Si proche et pourtant si loin

Mon, 13 Apr 2026 00:00:00 +0000

Your neighbor Charlie likes to stay at the cutting edge of technology. She recently installed a strange stone in her refrigerator that regularly measures and transmits temperature, humidity, and atmospheric pressure to her phone. This way, her vegetables are always kept under perfect conditions.

Your neighbor Charlie values her privacy. She refuses to transmit the climate data from her refrigerator in plain text to the entire neighborhood. To achieve this, a highly secure system has been implemented to encrypt the measurements.

Spaghetti Badge

Mon, 13 Apr 2026 00:00:00 +0000

Mr. Spaghetti designed a rather unique light-up badge… let’s just say he didn’t wire the LEDs in the most optimal way. This badge features a 120x24 WS2812B LED matrix that displays a flag. The microcontroller controlling the LED matrix is a WCH CH32V003F4U6.

The PCB fabrication data for this badge and its firmware are available. Will you be able to figure out this flag?

Note: The order of the copper layers follows the standard convention, i.e., F.Cu, In1.Cu, In2.Cu, In3.Cu, In4.Cu puis B.Cu. The silkscreen Gerber file is not provided; it is up to you to determine the placement and orientation of the components.

Spidersaurus

Mon, 13 Apr 2026 00:00:00 +0000

After a few hiccups with the FORTH language, as well as the BASIC language, our developper has decided to get back to the roots of the multimedia Internet with the help of a JavaScript interpreter, SpiderMoney 1.3.

He assures us that no security vulnerability is exploitable, thanks to compilation flags; furthermore, he guarantees the code is safe from the Y2K bug.

However, an anonymous hacker has sent us an enigmatic file test.js which seems to trigger the read of uninitialized memory. Can you prove our developer wrong by reading the contents of the flag variable?

Spidersaurus Rex

Mon, 13 Apr 2026 00:00:00 +0000

Despite a memory access problem (see the Spidersaurus challenge), our developer insists on using this ancient version of SpiderMonkey.

He keeps assuring us there are no exploitable security flaws. However, an anonymous hacker sent us this mysterious message: “what happens if a function contains 65536 variables?”. Show our developer wrong by reading the contents of flag.txt.

After sending your JavaScript code, use shutdown(socket, SHUT_WR) to trigger its execution, and then read the potential response.
A JavaScript string can contain arbitrary binary content, for instance \u9090\u9090.
The memory allocation pattern will differ if the JavaScript code is provided as a file with the first argument, instead of using stdin.

Splash Studio

Mon, 13 Apr 2026 00:00:00 +0000

Ever dreamed of designing your own underwater companion?

Welcome to Splash Studio — the ultimate aquatic creation lab where you can craft the fish of your dreams! Choose from a variety of body shapes, customize those big googly eyes, add flowing fins and fancy tails, slap on some snazzy patterns, pick the perfect color palette, and top it all off with adorable accessories like tiny crowns or distinguished monocles.

Name your masterpiece, hit randomize for a surprise, and share your finned friend with the world! 🎨✨

Splhash

Mon, 13 Apr 2026 00:00:00 +0000

You come across a somewhat strange hash function that contains only a single non-linear layer. What an idea!

Steel Sentry

Mon, 13 Apr 2026 00:00:00 +0000

The Sentinelle company has developed a revolutionary license control system with wave-based presence verification. You are invited to test this new product, Steel Sentry, in order to verify its robustness before purchasing it.

Normally, this product is supplied with a hardware component connected to the PC to ensure foolproof protection. In your case, and because Sentinelle does not want an overly intrusive security evaluation, you will only be given a test software version. To make things even more difficult, the company has configured its license server so that, even if you were to get hold of such a dongle, you still would not be able to pass the verification.

Sur la trace

Mon, 13 Apr 2026 00:00:00 +0000

Word of advice: avoid static analysis here.

The Revenge of Shor

Mon, 13 Apr 2026 00:00:00 +0000

Hackropole version of the challenge, compliant with the intended solution.

This is fine

Mon, 13 Apr 2026 00:00:00 +0000

Times Square

Mon, 13 Apr 2026 00:00:00 +0000

You are given access to a remote access terminal. Quickly find its flag before the system locks up.

ssh -o StrictHostKeyChecking=no -p 4000 localhost

todo

Mon, 13 Apr 2026 00:00:00 +0000

I created a program to keep track of tasks I shouldn’t forget, but I still feel like my memory is playing tricks on me…

Tortoise Say

Mon, 13 Apr 2026 00:00:00 +0000

After Shrimp Say, here comes Tortoise Say!

Tortoise Say is a revolutionary embedded system based on e-Ink technology. A drawn turtle eagerly displays a secret for you.

We provide you with a capture made using a logic analyzer of the communication with the screen while the turtle was displaying the flag. The screen used is a Waveshare 2.9inch e-paper V2.

The pins measured on the logic analyzer are:

D0: DIN
D1: CLK
D2: CS
D3: DC
D4: RST
D5: BUSY

Will you be able to recover the turtle’s secret?

Transport me

Mon, 13 Apr 2026 00:00:00 +0000

You just got a transport card, but there are only two travels left on it. You may interact directly with the card. To get the flag, you must be able to travel five times.

To interact with the card, connect to the remote service.

Transport me too

Mon, 13 Apr 2026 00:00:00 +0000

You just got a transport card based on a chip ST25TB512AC from STMicroElectronics. Apparently, this card initially contained 10 tickets, but cannot be reloaded. The person who gave you this card already used 5 tickets.

Can you travel 1000 times ?

Note: When sending a raw command to the card, consider that it is alreadt selected by the reader.

Tunnel Routier 1/2

Mon, 13 Apr 2026 00:00:00 +0000

The 5-kilometre-long Grenelle Tunnel is due to be officially opened today, and local officials have travelled to the site to attend its inaugural opening. The tunnel’s control system is managed by a programmable logic controller (PLC) that communicates with the SCADA system via an industrial protocol on TCP/4502. This system regulates process parameters to ensure a safe journey through the tunnel for users. The process parameters regulated by this PLC are as follows:

Tunnel Routier 2/2

Mon, 13 Apr 2026 00:00:00 +0000

Veggie Dino

Mon, 13 Apr 2026 00:00:00 +0000

You find a game on an old TI-83+ calculator in the attic. It was said to be impossible to finish. Can you succeed where your parents failed ?

Note: the expected flag is a URL starting by https://fcsc.fr/.

Web Logs

Mon, 13 Apr 2026 00:00:00 +0000

You have access to the logs of a web server exposed to the Internet. Due to its public exposure, various attack attempts are present in the logs.

Find the CWE ID of the successful attack in this web server’s logs (e.g., CWE-79). Give the date the attack was successful (format: MM/DD). Give the requested routes for which the attack was successful. The requests must be in chronological order, separated by hyphens ‘-’ (e.g., /var/log/access.log-/index?params=value).

Wiretrace

Mon, 13 Apr 2026 00:00:00 +0000

We pulled off a masterstroke, namely distributing secure phones to a large criminal organization, while having introduced a backdoor into them.

The vulnerability lies in the hardware accelerator responsible for modular computations. It produces a log of the computations performed, stored in dedicated memory and retrievable locally via a wireless exchange. The hardware-level modification ensures the backdoor remains even if the software is changed.

We provide the documentation for the hardware accelerator.

wsd

Mon, 13 Apr 2026 00:00:00 +0000

You loved the HTTP trilogy, so let me introduce wsd: it’s almost the same, but different.

Retrieve the flag from /app/flag.txt.