Antisyphon Cyber Range: Easy Peasy, Mostly 😉

Hey everybody!

Given that a lot of folks are off on Spring Break right about now, and that festivities may have included excesses that have dulled your normally sharp and focused attention, we decided to take it (mostly) easy on you with this release. Three of the four challenges released this week are fairly easy, and the fourth one is a lot more difficult for those of you who are gluttons for punishment.

For screenshots and descriptions of this week’s additions, see below.

Good luck and have fun!
The Cyber Range Team

P.S. If you’re not already signed up for the BHIS Antisyphon Cyber Range, the following page has screenshots, info, and, of course, a link where you can sign up and join in the fun:

https://www.antisyphontraining.com/cyber-range/

We use passwords to safeguard data and systems. We would like to think that everyone uses secure passwords, but that's not always the case... — Time to change the combination on my luggage!

Hey there! We just got a weird message sent to our fax machine, and we'd really appreciate if you could took a look at it. We think it might be using some sort of substitution cipher? Am I overthinking it? The symbols seem kind of familiar, I feel like I might have seen them on my Windows computer before. — Klaatu barada nikto

Simple ciphers like the Caesar cipher are fun, but they aren't strong enough to properly secure communications. RSA is a common cipher used in the real world. Can you decrypt this ciphertext? — Decrypting this should be easy, right?

Our penetration testing team is just one server away from getting access to all of C3's networks! This one's proving to be very tough, as the only thing that's running is their User Application Firewall. The company claims this service is hardened against any buffer overflow and other stack-based vulnerabilities. They even give you the compiled binary, their source code and libc that they used to run this service! Can you break in? — We’ve got a firewall, so we’re safe, right?