Editing AND!XOR DC28 (section)

==Decode/Decrypt==
<div class="toccolours mw-collapsible mw-collapsed">Challenge 14 (E)<div class="mw-collapsible-content">
<pre>
U find a locked Q10 w tiny ENGRAVING.
itz asking 4 a PW.
A BIRB flies overhead, you l%k ^ & 2 d L.

and!xor:~$ look at BIRB
Itz not real, birbs R guvment survlnce drone dat wraprownd
d globe ch1rpin 'key key'

and!xor:~$ hack ENGRAVING wit AMSCOPE
O damn, we hav a l337 haxor Ovr hEr. d louder U R d less U hEr.
tAk a L%k @ yor pwned target.

and!xor:~$ look at ENGRAVING
on d bak d following iz inscribed: tzizcz
</pre> 
Looking at a Q10 keyboard, which hey, that's what the badge has! Along with the info from looking at the birb, we toy around with the ciphertext and keyboard shifting while wrapping around.
<pre>
and!xor:~$ hack flag wit canada
Ans Submitted.
L%k 2 C flag.

and!xor:~$ look
ChaLenG Complete!
aegis glows weeds guide floes otter porch seize lived
</pre>
* Correct flag +100pt
</div>
</div>

<div class="toccolours mw-collapsible mw-collapsed">Challenge 15 (F)<div class="mw-collapsible-content">
<pre>
Wut? Itz MrBill. Hes trying 2 coLec OSINT on Hs net of hard hat SD haXor fam.
StA classy & giv him wot he wants.

and!xor:~$ hack OSINT wit MALTEGO
O damn, we hav a l337 haxor Ovr hEr. d louder U R d less U hEr.
tAk a L%k @ yor pwned target.

and!xor:~$ look at OSINT
he pEpn SSN off W3s

and!xor:~$ look at SSN
k not boomer, dat iz social security #
</pre> 
Looking around MrBill's twitter for SSNs I found: [https://twitter.com/SecureThisNow/status/1237073467771514881 420-69-1337]
<pre>
hack flag wit 420-69-1337
</pre>
* hubby match nodal twice mrbil roped kilns sayer smash
** Correct +100pt
</div>
</div>

<div class="toccolours mw-collapsible mw-collapsed">Challenge 19 (J)<div class="mw-collapsible-content">
<pre>
and!xor:~$ look
Theres a robotic HED on d ground, bt it iz lacking d milliamps.
FAC & reminds of U of pure annoyance.
and!xor:~$ look at FAC
Blu grEn red yeLo w two eyes som brows & wot d fuk iz dat a nose o mouth?!
and!xor:~$ hack HED wit BATTERY
and!xor:~$ look at HED
U cn ask me simpl questions bout how Slack works,
o jst typ a few keywords lIk "m355@g3" bt TLK 2
yorself so others lIk guvment dun knO
</pre> 
Slack myself on AND!XOR channel:
<pre>
Slack myself on AND!XOR channel:
m355@g3

Slackbot  10:36 PM
wlcm 2 Slack! U uncovered d 1st clue: "grY Fynpxobg: Ebg13NyyGurGuvatm"</pre>
* rot13 to: teL Slackbot: Rot13AllTheThingz
<pre>
Yawg:hypnotoad:  10:37 PM
Rot13AllTheThingz

Slackbot  10:37 PM
nIs wrk. d NXT clue iz: "53 6c 61 63 6b 62 6f 74 20 77 69 4c 20 72 65 77 61 72 64 20 55 20 34 20 73 61 79 69 6e 67 2c 20 22 48 33 78 52 6f 78 22"
</pre>
* Hex to: "Slackbot wiL reward U 4 saying, "H3xRox""
<pre>
Yawg:hypnotoad:  10:37 PM
H3xRox

Slackbot  10:37 PM
U R almost ther. "C@n%20y0%7C_%7C%20s/%5Cy%20T%7C-%7C3s3%20w0rdz?%20%22%7C-%7CE%7C_%7C_O%20%5C/%5C/OR%7C_D!%22"
</pre>
* URL Decode to: "C@n y0|_| s/\y T|-|3s3 w0rdz? "|-|E|_|_O \/\/OR|_D!""
<pre>
Yawg:hypnotoad:  10:38 PM
|-|E|_|_O \/\/OR|_D!

Slackbot  10:38 PM
⠎⠥⠍⠞⠊⠍⠵⠀⠥⠀⠉⠀⠍⠕⠀⠃⠽⠀⠝⠕⠞⠀⠉⠝⠀⠁⠎⠅⠀⠎⠇⠁⠉⠅⠃⠕⠞⠀⠐⠁⠗⠑⠺⠑⠞⠓⠑⠗⠑⠽⠑⠞⠐
</pre>
* Braille to: "SUMTIMZ U C MO BY NOT CN ASK SLACKBOT "AREWETHEREYET""
<pre>
Yawg:hypnotoad:  10:38 PM
AREWETHEREYET

Slackbot  10:38 PM
.. --.. / / -.. .. ... / / -.. / / . -. -.. --..-- / / --- / / .-. / / --- ..- .-./.-..-. .... ----- .--. ...-- ... -.. .--.-. ... .... . -.. .-..-. ..--..
</pre>
* Morse Code to: "IZ DIS D END, O R OUR "H0P3SD@SHED"?"
<pre>
Yawg:hypnotoad:  10:44 PM
H0P3SD@SHED

Slackbot  10:49 PM
k k. Enuf alredi. U R l%kin 4 a flag dat wen decrypted wiL L%k lIk "flag{REDACTED}". d encryptd msg iz bElO. U wiL hav 2 decode it first, thN U wiL hav 2 figur out d XOR key & actually decrypt it. wen U hav it, go bak 2 d badge & "hack flag wit REDACTED" n saEm plAc u found dis chlng: BwIFCQMGMQAALA8CKhwCHB0eDCZCD1EZ
</pre>
* This one took some running around that was long and unnecessary. My gut instinct was that this was Base64 from which I would need to XOR to get "flag...." but using CyberChef I was struggling with understanding the output and using XOR Brute Force after B64 was crashing out after a key length of 3. 
* After getting a hint from a friend, we discussed how XOR ciphering worked a bit more indepth and that the first step was indeed B64, it's just that encrypted output could still look like gibberish.
* Using CyberChef I first decoded Base64, then put up XOR decryption and changed from HEX to UTF-8 and took a stab at entering the key
* As I began typing "andnxor", each letter brought my output closer to "flag{" and finally gave me the desired output of
    flag{iCanHazEncryptI0n?}
* Back to the badge:
<pre>
hack flag wit iCanHazEncryptI0n?
Ans Submitted.
L%k 2 C flag.

and!xor:~$ look
ChaLenG Complete!
aegis glows weeds flour rents lunar flirt crabs quack
</pre>
* Correct flag +100pt
</div>
</div>

<div class="toccolours mw-collapsible mw-collapsed">Challenge 21 (L)<div class="mw-collapsible-content">
<pre>
and!xor:~$ look
D chaLenG iz locked! Xchang frend flag 4 unlock!
bit.ly/3eRTR4B
</pre> 
After some friends
<pre>
Pon d flOr ther sits a glitter covered tink pad frm TyMkrs.
Itz old, runN win 2000, & evN hz an IOMEGA_DRIVE.

hack IOMEGA_DRIVE wit ZIP_DISK

and!xor:~$ look at IOMEGA_DRIVE
W a solid clik d disk snaps in2 plAc.
Un4tuN8ly d files R credential locked by d win SAM

and!xor:~$ look at SAM
Navigating 2 d win SYS thirty two config SAM U find:
0E7FDE76B8A417953D640D5CDB0D9B72
</pre>
Welp, gotta crack the hash
<pre>
hashcat64.exe -m 1000 -a 0

0e7fde76b8a417953d640d5cdb0d9b72:m3atl0af
</pre>
back to the badge
<pre>
and!xor:~$ hack flag wit m3atl0af
Ans Submitted.
L%k 2 C flag.

and!xor:~$ look
ChaLenG Complete!
hubby match nodal false sheik sight veals thyme panic
</pre>
* +100pts
</div>
</div>