An AI-generated dream


A lot of information was lost, so history isn't completely clear on which events led us to arrive at this point. Some say there was a large pandemic. Others believe that the ever-growing demand for computing power to mine cryptocurrencies led to disaster. Nobody really knows anymore, but one thing is for sure: Earth doesn't look like it looked before. Climate change has taken its toll. The poles started melting, and the earth became more and more desolate.

Many moved to Austria to escape the rising sea levels. With the big cities gone, small communities started to appear. Relying on trade and exchange of goods, those factions coexisted peacefully. Communication networks were re-established and with the help of motivated hackers, civilization slowly found its way back into the lives of people. However, as global economy had faltered, those communities relied on scavenging whatever technology they could get their hands on to keep the systems up and running. Every little bit of computing power was utilized to keep society alive and also bring back some of the previous comforts.

Sadly, this status quo could not be maintained for a long time and factions started to distrust each other, attacking essential systems that prevented communities from falling back into chaos...




  • Flag format ECSC_[A-Za-z0-9\+/]{32}
  • Flag validity 5 rounds
  • Round length 3 minutes
  • 2 flag stores per service
  • Usually multiple vulnerabilities per flag store


  • Scoreboard
  • Flag IDs teams.json
  • Team Dashboard http://10.10.{TEAM_ID}.3/
  • Production VM 10.10.{TEAM_ID}.1
  • Staging VM 10.10.{TEAM_ID}.2
  • Targets 10.10.{2..34}.1
  • NOP Team
  • Flag Submission Service nc 31337
  • Volume Explorer
    ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no \
    user@10.10.{TEAM_ID}.1 -p 2222



As shocking as it may sound, walking barefoot on grass was common in the past. Looking around now, all we can see are mountains made of junk. Former generations romanticized rainy days and the smell of wet ground in the air after a storm. Those generations also made it impossible for us to live the same experiences. Rain is acid, and the land is buried under tens of meters of rubbish.

We could not stand this new norm anymore. We hated being in constant danger because of hazardous materials lying around. And we hated being unable to produce medical equipment to cure our beloved ones due to the lack of natural resources on the Planet. But hatred alone brings further destruction, turning people blind and preventing them from realizing the obvious. Indeed, the solution coincided with the problem. All the electronic junk assembled over the centuries is an open-pit mine that we can recycle for good.

Welcome to DEWASTE.



Welcome to the Cantina, friend! Enter the best place around, when your budget is low, and your standards are lower! You will never find a more wretched hive of scum and villainy. But we are all a big family here, so no worries. And on the bright side, nobody has to leave hungry, as long as they are willing to put in a little bit of work. But then, if they aren't, they won't leave hungry as well, if you know what I mean. But I'm sure you will be fine. Just don't tamper with anything. Resources are scarce, and as usual, most of them are already scavenged by the big conglomerates like DEWASTE, and Techbay. But we are doing our best to keep things running for the masses. Our underground network reaches quite far. No passport required for you to stay and work here. After everything collapsed, it's not like borders mean anything anymore anyway, right?

We even have a Jukebox! I'm sure you haven't even seen one before! I mean, we made some slight modifications to adapt it to our needs. But it's all for the community. And the Music. Aah! Just delightful, I can tell you that. It's all wired up to the rest of our services, and we even have some limited broadcasting services. But of course, everything is wire based: wireless networks can't really be trusted. Not robust enough for critical things. And don't even get me started on those AI whisperers... If a system is too smart, it can't be trusted. Better to use simpler technologies is what I always say. But now come in, I'm sure you are starving already.


We discovered this hydroelectric power station in the Austrian Alps around 10 years ago. Vegetation took over the buildings, and most systems were unusable due to corrosion. But the massive dam was built to last, not showing cracks or other signs of structural breakdown. We needed clean power, so we started looting other power plants and abandoned factories to repair the damaged equipment.

Even if most systems are old and faulty, now the power station represents our only permanent power source that relies entirely on renewable sources. The amount of energy produced is so large that we can even accumulate the surplus for non-essential activities. We also discovered that we could perform cold starts to recover from blackouts by manually forcing the system to open its central valve.



Who'd have known that balcony gardening would become the most valuable skill in the new world? Long gone are the times of supermarkets and industrial food processing. Now small greenhouses ornate every building, pulsating with the lights of the machines that control them - optimizing every precious drop of water, and every ray of the pale sun that filters through the pollution. Skilled gardeners are the new rockstars, touring across the communes to tend on their vegetable patches, communing with the AIs that forecast the ever-worsening weather. Be sure to be the first to book them.


Communities lost touch with each other. You could walk days before seeing other survivors, and even then making contact was always risky. Until one day, a treasure trove of brand new communication devices was found. Legend has it that it was a failed product on a tech giant of the old days buried deep into the mountains to avoid a new round of bad press.

Blinkygram is a messaging app with a focus on speed and security. It's super-fast, simple, and free. You can use Blinkygram on all your devices simultaneously — but don't expect it to work correctly. Blinkygram has over 300 monthly active users and is one of the 10 messaging apps still operational worldwide.

With Blinkygram, you can send messages, text, and more text. You can find people by their usernames. As a result, Blinkygram is like SMS, if you still remember what those are — and can take care of all your business and survival messaging needs. In addition, Blinkygram supports verified payments, meme currencies, as well as secure backups.

Winds of the Past

Winds of the Past

Technology left from the unconcerned past heavily relied on electricity to work. However, in a desperate attempt to stop climate change, most conventional power plants were abandoned and are not functional anymore. While this might have helped to prevent even more dramatic effects on our climate, electricity is now a scarce property.

Wind turbines are one of the primary sources of electrical energy left by previous generations. But to work correctly, they require constant maintenance and a reliable electrical network to distribute and store the energy produced. Unfortunately, recent fights among local communities disrupted previous attempts to improve the existing turbine management system, and we are still stuck with an outdated piece of software.


As the old world collapsed, also the knowledge of how to use technological devices vanished. Only recently, there has been a rise in interest in tech junk from the past. Some people are interested because such devices look great on the walls; others want to understand how they work to give them a new life; for some, they are precious spare parts to fix various equipment.

Techbay is a platform to support the bartering of technological goods from the past. Everyone with a valid passport can offer and find items.


0x04 Credits


  • Johannes Haring / exocortex#6163
  • Georg Merzdovnik / gmerz#5706,
  • Leonardo Nodari / TheNodi#3868
  • Patrick Pirker / Patralos#0540
  • Michael Pucher / cluosh#1337,
  • Marcel Schnideritsch / BlackHornet#4931
  • Marco Squarcina / lavish#6824,
  • Lorenzo Veronese / wert310#5057,


  • Andrea Biondo / abiondo#3482,
  • Matteo Chen / chq.matteo#8840
  • Patric Gruber / TheGuy2112#7377
  • Daniele Lain / daniele#0034,
  • Maximilian Lehrbaum / lehrbaumm#5432
  • Daniel Marth / nufan#3746
  • Georg Merzdovnik / gmerz#5706,
  • Leonardo Nodari / TheNodi#3868
  • Patrick Pirker / Patralos#0540
  • Michael Pucher / cluosh#1337,
  • Martin Schwarzl / Martin Schwarzl#5433
  • Marco Squarcina / lavish#6824,
  • Roland Wallner / coil#4267


Hall of Fame

  • Mario del Gaudio & Michele Lizzit
    (Team Italy)
    For reporting a vulnerability in the file viewer