|Team hashcat has won CMIYC 2015!||
Back to Top
Once you have cracked some passwords or encrypted files, submit them to us in a PGP signed & encrypted email.
Encode in UTF-8
(Actually, our submission handler attempts to fix up non-encoded "latin1" non-printable-ascii by converting to UTF8 on the fly - but that can be an ambiguous and lossy process, so you should not depend on that, you should figure out how to convert properly before uploading.)
But not broken UTF-8
We have seen that some teams' submissions include control characters: ^C, tab, bell, etc, in either ASCII or their UTF-8 equivalents.
There are ZERO control characters in our plaintexts. So if your encoded plaintexts include them, most likely your conversion process is doing something wrong - and it might be silently mangling others of your plaintexts, too.
If you think your cracks are being under-counted by the scoreboards, check to see if you have:
grep -P "[\x0-\x09\x0b\x0c\x0e\x0f\x7f]" grep -P "\xC2[\x80-\x9F]"If you get any hits, something is wrong, and your submissions probably will not get as many cracks as you think.
Try not to go too long between submitting updates. One every two hours or so is preferred. We want the stats pages to accurately reflect the progress of the different teams. Besides, a big jump in cracks/points after a long silence could mean that a team has stolen cracks from another team. Of course if you sleep a few hours and miss a couple checkins we will forgive you. But if you go more than 12 hours without an update, we will assume you gave up or died of alchohol poisoning.
But not too often
Do not flood us with submissions. We will assume you are trying to DoS us. We will ignore submissions from a team sent faster than once per five minutes. Sending us more than one per minute may disqualify your team.
$ cat cracked plaintext1 plaintext2 plaintext3 $ gpg -a -o submission-email.pgp.asc -r email@example.com \ -se cracked $ mail -s "cracked" firstname.lastname@example.org \ < submission-email.pgp.ascOr attach the file keysub-email.pgp.asc to an empty email to email@example.com, such as if you are using Gmail.
Don't forget to use --default-key 0xDEADBEEF if you created a dedicated PGP key just for this event.
|Please contact us if you would like more information about our services, tools, or careers with us.|