Blog Posts
Blog Posts

Back and Blogier than Ever!

To celebrate the 10th anniversary of PPP, and the 9th ever PlaidCTF, we’re happy to announce a new official website and blog. In addition to hosting information about the team — such as sponsors, events, and updates — we will begin migrating our published write-ups from our github repository to this blog.

Continue Reading →

Krautflare

This is a write-up for krautflare challenge, a browser pwnable challenge from 35c3ctf. You can also read from the original post.

Continue Reading →

quincy-center (uspace)

This is a write-up for quincy-center challenge, which is the first part of 3-chained pwnable challenge from Boston Key Party CTF last weekend. You can also read from the origial post.

Continue Reading →

quincy-adams (kspace)

This is a write-up for quincy-adams challenge, which is the second part of 3-chained pwnable challenge from Boston Key Party CTF last weekend. You can also read from the origial post.

Continue Reading →

braintree (tz)

This is a write-up for braintree challenge, which is the last part of 3-chained pwnable challenge from Boston Key Party CTF last weekend. You can also read this content from the origial post.

Continue Reading →

PlaidCTF 2014 — Website post-mortem

First, we would like to thank everyone for participating in PlaidCTF 2014. Thanks to all of you, this year was bigger than ever with over 850 teams partcipating and 3 sponsors (THANK YOU!) providing $14K in cash prizes and covering all of our operating costs. Congratulations go out to 0xffa, Dragon Sector, and MoreSmokedLeetChicken for finishing in 1st, 2nd, and 3rd. We hope everyone had a lot of fun with the challenges and maybe learned a thing or two, as well.

Continue Reading →

Why CTF

A recent blog post has been going around talking about the differences between competitions like CCDC (Collegiate Cyber Defense Competition) and CTFs (Capture the Flag). It’s a good read and I thought a lot of interesting points were brought up, and figured it could be beneficial to try to respond to them some place to encourage discussion (and besides, our blog needs any excuse it can get for new content). For what it’s worth, I didn’t watch Chris Eagle’s presentations, though I imagine I don’t agree with everything he said. Likewise, I don’t disagree with everything from Matt Weeks’ blog post. This post is mostly motivated by the fact that while a discussion on security competitions is going, it makes sense to talk about some related things I have been thinking about.

Continue Reading →

membership

This is a write-up for 800 point pwnable challenge called “membership” from Codegate CTF 2014 Pre-qual round. PPP was the only solver for this challenge during the competition, so I have decided to do a write-up for the challenge. Enjoy.  (awesie and ricky solved it during the competition.)

Continue Reading →

gitsmsg

Gitzino

Gitzino was the 400-point crypto problem for Ghost in the Shellcode 2014. It looked like a standard “predict-the-RNG” problem: there’s a PRNG, a card game, and hopefully the output it gives you provides enough data about the internal state of the PRNG to predict the future and win the game repeatedly.

Continue Reading →