cl4r0ty
2nd place
6616 points
Awards
Vulnerability Disclosure Champion
Thank you for reporting vulnerabilities! CTF <3
25
Solves
| Challenge | Category | Value | Time |
| Where is the smoke coming from? | ICS Center: Hospital Smoke Signals | 10 | |
| DND: Do Not Defib! | Awareness Center : Vulnerability Management | 10 | |
| MyCOVID 3 - Hidden String | COVID Tracker | 10 | |
| MyCOVID 2 - Suspicious Activity | COVID Tracker | 10 | |
| MyCOVID 1 - Manifest Activity | COVID Tracker | 50 | |
| Primary Activity | Exam Room: Mobile Challenges | 10 | |
| Identify the Executable | Exam Room: Mobile Challenges | 10 | |
| Executive Order | Awareness Center: It Is an Order, Executive One! | 5 | |
| HDO Representative | Awareness Center : Vulnerability Management | 5 | |
| Android apps: Language | Exam Room: Mobile Challenges | 10 | |
| Access Granted... | Exam Room: Mobile Challenges | 10 | |
| 11 0-Days | Awareness Center : Vulnerability Management | 5 | |
| You are Fired! | Awareness Center: Malicious PPE Insider | 10 | |
| Primary Activity pt. 2 | Exam Room: Mobile Challenges | 5 | |
| Content Provider | Exam Room: Mobile Challenges | 5 | |
| Codename: Android pt 2 | Exam Room: Mobile Challenges | 5 | |
| Codename: Android | Exam Room: Mobile Challenges | 5 | |
| Packet by packet, I'll find you! | Crematorium: Watch your BACnet | 50 | |
| Filter out the Heat | Crematorium: Watch your BACnet | 50 | |
| Are you up to date? | Exam Room: Mobile Challenges | 5 | |
| RTPCR Host Manufacturer's Coordinated Vulnerability Disclosure | COVID-19 Test Lab | 10 | |
| RTPCR Host Manufacturer | COVID-19 Test Lab | 10 | |
| Analog leading the dialog | Crematorium: Watch your BACnet | 50 | |
| RTPCR Host OS | COVID-19 Test Lab | 10 | |
| Android Permissions - 2 | Exam Room: Mobile Challenges | 5 | |
| Android Permissions - 1 | Exam Room: Mobile Challenges | 5 | |
| What Brand Was It? | COVID-19 Test Lab | 15 | |
| SDK Target Version | Exam Room: Mobile Challenges | 25 | |
| Who-Is in the Crematorium? | Crematorium: Watch your BACnet | 50 | |
| FDA Myths 'n' Facts | Awareness Center : Vulnerability Management | 20 | |
| Data privacy | Certification Center: HCISPP Day1 | 10 | |
| Vaccines for sale | Dark(net) Times | 30 | |
| Fines and penalties | Certification Center: HCISPP Day1 | 12 | |
| Are our PGHD protected? | Privacy Center: Hello Halo, Apple Watch and Fitbit! | 10 | |
| Who Fights in our Corner? | Privacy Center: Hello Halo, Apple Watch and Fitbit! | 10 | |
| En-AI-Abled Devices | Digital Twin AI Center | 20 | |
| Fundamental Rights! | What applies? | 10 | |
| Oui Oui! | What applies? | 10 | |
| Happy Birthday! | What applies? | 5 | |
| A Long Way from Home | What applies? | 10 | |
| Send our Health Data Out! | Privacy Center: Hello Halo, Apple Watch and Fitbit! | 10 | |
| New code | Certification Center: HCISPP Day3 | 12 | |
| Encryption | Certification Center: HCISPP Day3 | 12 | |
| Patient changes | Certification Center: HCISPP Day3 | 11 | |
| Performance implementation | Certification Center: HCISPP Day3 | 11 | |
| SLA | Certification Center: HCISPP Day3 | 11 | |
| Patient appointment list | Certification Center: HCISPP Day3 | 11 | |
| Notice of privacy | Certification Center: HCISPP Day3 | 11 | |
| HSM | Certification Center: HCISPP Day3 | 11 | |
| Government board | Certification Center: HCISPP Day3 | 11 | |
| Header Address | Radiology: Polyglot PE / DICOM Files | 21 | |
| H-ISAC | Certification Center: HCISPP Day3 | 11 | |
| Third party responsibilities | Certification Center: HCISPP Day3 | 10 | |
| Private insurance | Certification Center: HCISPP Day3 | 10 | |
| Digital Twin System Alert | Medical Records Under Attack | 30 | |
| Malware delivery | Certification Center: HCISPP Day3 | 9 | |
| Helthcare system | Certification Center: HCISPP Day3 | 10 | |
| Segregation of duties | Certification Center: HCISPP Day3 | 12 | |
| Cloud type | Certification Center: HCISPP Day3 | 10 | |
| Action plan | Certification Center: HCISPP Day3 | 10 | |
| Information risk assessment | Certification Center: HCISPP Day3 | 9 | |
| Data breach recovery | Certification Center: HCISPP Day3 | 9 | |
| Child abuse | Certification Center: HCISPP Day3 | 9 | |
| Adversarial threat | Certification Center: HCISPP Day3 | 10 | |
| Up in Arms | IT Office : Arm Twisters | 100 | |
| Scan Type | Radiology: Polyglot PE / DICOM Files | 18 | |
| DICOM Tag | Radiology: Polyglot PE / DICOM Files | 18 | |
| St. Elvis and St. Elvis Digital Twin Out of the Woods | St. Elvis Digital Twin | 200 | |
| Wait a minute, can we really decrypt this thing? | Ransomware | 400 | |
| FDA Safety Communication - 2 | Awareness Center : Vulnerability Management | 12 | |
| South of the Border | Awareness Center : Vulnerability Management | 5 | |
| Ultrasound Authentication Bypass Vulnerability | Awareness Center : Vulnerability Management | 5 | |
| ICS-CERT Advisory IDs | Awareness Center : Vulnerability Management | 5 | |
| PE Header Size | Radiology: Polyglot PE / DICOM Files | 3 | |
| Jane Doe's CPAP Machine DOD | Emergency Room : CPAP Machine Forensics | 50 | |
| Jane Doe's CPAP Machine Serial Number | Emergency Room : CPAP Machine Forensics | 50 | |
| Part 2 - United States Patent Office - 01/12/2009 - Network Share Users | Patent Office: Incident Response, Memory Forensics, Network Forensics | 100 | |
| Shame! Shame! Shame! | Breaches | 5 | |
| We're All Individuals! | Breaches | 5 | |
| CVE | Awareness Center : Vulnerability Management | 5 | |
| FDA Safety Communication | Awareness Center : Vulnerability Management | 20 | |
| Cyberattack | Certification Center: HCISPP Day2 | 10 | |
| First healthcare regulation | Certification Center: HCISPP Day2 | 10 | |
| HSM | Certification Center: HCISPP Day2 | 10 | |
| Third-party agency | Certification Center: HCISPP Day2 | 10 | |
| US agency | Certification Center: HCISPP Day2 | 10 | |
| Confidentiality | Certification Center: HCISPP Day2 | 10 | |
| Third-party risk assessment | Certification Center: HCISPP Day2 | 9 | |
| Security controls | Certification Center: HCISPP Day2 | 9 | |
| Common-access card | Certification Center: HCISPP Day2 | 9 | |
| Data breach notification | Certification Center: HCISPP Day2 | 11 | |
| Disaster recovery | Certification Center: HCISPP Day2 | 11 | |
| DSP toolkit | Certification Center: HCISPP Day2 | 11 | |
| Framing | Certification Center: HCISPP Day2 | 11 | |
| GAPP | Certification Center: HCISPP Day2 | 11 | |
| Healthcare dataset | Certification Center: HCISPP Day2 | 11 | |
| Information policy | Certification Center: HCISPP Day2 | 11 | |
| Intended purposes | Certification Center: HCISPP Day2 | 11 | |
| Internal threat | Certification Center: HCISPP Day2 | 11 | |
| Medical devices integration | Certification Center: HCISPP Day2 | 11 | |
| Safe Harbor and HIPAA | Certification Center: HCISPP Day2 | 11 | |
| Medical Record numbers | Certification Center: HCISPP Day2 | 12 | |
| NIST guidance | Certification Center: HCISPP Day2 | 12 | |
| The physician's office | Certification Center: HCISPP Day2 | 12 | |
| Raspberry in Secret Test Lab | Hospital Building Automation System: BACNet | 100 | |
| Vaccine Storage Freezer Issues | Hospital Building Automation System: BACNet | 100 | |
| Data Leak Through Lights | Hospital Building Automation System: BACNet | 100 | |
| Foreign Devices | Hospital Building Automation System: BACNet | 100 | |
| Lights in ICU | Hospital Building Automation System: BACNet | 100 | |
| DICOM Prefix | Radiology: Polyglot PE / DICOM Files | 21 | |
| Single-sign-on authentication | Certification Center: HCISPP Day2 | 9 | |
| Digital Twin is Back Up and Running Again! | St. Elvis Digital Twin | 200 | |
| Becoming a true reverse engineer | Ransomware | 200 | |
| For your convenience | Ransomware | 50 | |
| Stage 5 | Ransomware | 50 | |
| Stage 4 | Ransomware | 70 | |
| Into the Breach | Ransomware | 50 | |
| Malicious proxy | Ransomware | 30 | |
| Need better isolation | Ransomware | 30 | |
| Stage 3 | Ransomware | 50 | |
| Rubric Data | Awareness Center: Risk "Management" | 5 | |
| Rubric | Awareness Center: Risk "Management" | 3 | |
| The responsible | Certification Center: HCISPP Day1 | 12 | |
| A Tulip by any other Name | Awareness Center : Vulnerability Research | 5 | |
| JSP Co-Chair | Awareness Center: Risk "Management" | 3 | |
| Observe and Report | Awareness Center : Vulnerability Research | 5 | |
| Stage 2 | Ransomware | 50 | |
| CIA | Awareness Center: Risk "Management" | 3 | |
| Overexposed | Awareness Center: Risk "Management" | 3 | |
| IoB | Awareness Center : Risk "Management" | 10 | |
| Series of Tubes | Awareness Center : Vulnerability Research | 5 | |
| ISO Need To Tell You About Your Ugly Baby | Awareness Center : Vulnerability Research | 5 | |
| RSS-MD - Functional Impact | Awareness Center: Risk "Management" | 5 | |
| White Hats and Lab Coats - 2 | Awareness Center : Security Research | 5 | |
| White Hats and Lab Coats | Awareness Center : Security Research | 5 | |
| Knowledge Sharing | Awareness Center : Security Research | 5 | |
| Part 2 - United States Patent Office - 01/12/2009 - SID | Patent Office: Incident Response, Memory Forensics, Network Forensics | 100 | |
| Part 2 - United States Patent Office - 01/12/2009 - Printer | Patent Office: Incident Response, Memory Forensics, Network Forensics | 100 | |
| but y tho part ii | Awareness Center : Security Research | 5 | |
| but y tho | Awareness Center : Security Research | 5 | |
| Safety > Cyber | Awareness Center : Security Research | 3 | |
| Dual Hats | Awareness Center : Security Research | 5 | |
| Part 2 - United States Patent Office - 01/12/2009 - Network Address | Patent Office: Incident Response, Memory Forensics, Network Forensics | 100 | |
| Flight Risk | Awareness Center : Security Research | 3 | |
| Dynamic Duo | Awareness Center : Security Research | 6 | |
| Dangerous Precedents | Awareness Center : Security Research | 10 | |
| Defensive Examination | Awareness Center : Security Research | 10 | |
| Part 2 - United States Patent Office - 01/12/2009 | Patent Office: Incident Response, Memory Forensics, Network Forensics | 100 | |
| Part 1 - United States Patent Office - 16/11/2009 - Command Prompt | Patent Office: Incident Response, Memory Forensics, Network Forensics | 100 | |
| Power Trace Side Channel Attack | Embedded Device | 200 | |
| Let's Share Some Keys | Technical Training Center: T-ATP | 30 | |
| AI Inner Eye | Digital Twin AI Center | 20 | |
| INCLUDES NO DIRT | Awareness Center: Healthcare! Acronyms! | 6 | |
| Part 1 - United States Patent Office - 16/11/2009 | Patent Office: Incident Response, Memory Forensics, Network Forensics | 100 | |
| AI Dual Use in Drug Discovery | Digital Twin AI Center | 20 | |
| Medical record | Certification Center: HCISPP Day1 | 7 | |
| Protection | Certification Center: HCISPP Day1 | 8 | |
| EHR | Certification Center: HCISPP Day1 | 9 | |
| Privacy situation | Certification Center: HCISPP Day1 | 6 | |
| RSS-MD Difference | Awareness Center: Risk "Management" | 5 | |
| Jack of All Rippers | Technical Training Center: T-ATP | 20 | |
| Shady Place | Awareness Center : Security 101 | 5 | |
| MDM | Awareness Center: Acronyms! Acronyms! Acronyms! | 3 | |
| BSIMM | Awareness Center : Acronyms! Acronyms! Acronyms! | 5 | |
| Database | Certification Center: HCISPP Day1 | 10 | |
| Veni, vidi, vici | The Device Lab | 500 | |
| Management council | Certification Center: HCISPP Day1 | 8 | |
| ISO/IEC | Awareness Center: Acronyms! Acronyms! Acronyms! | 3 | |
| Chain of trust | Certification Center: HCISPP Day1 | 8 | |
| Data breach investigation | Certification Center: HCISPP Day1 | 9 | |
| Object Diving | Technical Training Center: T-ATP | 100 | |
| Risk assessment | Certification Center: HCISPP Day1 | 8 | |
| Medical Overflow | Technical Training Center: T-ATP | 100 | |
| Authority role | Certification Center: HCISPP Day1 | 9 | |
| External auditors | Certification Center: HCISPP Day1 | 10 | |
| Level of security | Certification Center: HCISPP Day1 | 10 | |
| Chief Privacy Officer | Certification Center: HCISPP Day1 | 11 | |
| NIST | Certification Center: HCISPP Day1 | 11 | |
| Vulnerability scan | Certification Center: HCISPP Day1 | 11 | |
| Security and privacy | Certification Center: HCISPP Day1 | 12 | |
| HIPAA | Certification Center: HCISPP Day1 | 14 | |
| A New Vinaigrette Recipe | Technical Training Center: T-ATP | 20 | |
| Electronic health | Certification Center: HCISPP Day1 | 13 | |
| Access and correction | Certification Center: HCISPP Day1 | 8 | |
| Coding system | Certification Center: HCISPP Day1 | 10 | |
| BYOD | Certification Center: HCISPP Day1 | 10 | |
| Blank Space | Technical Training Center: T-ATP | 20 | |
| Email Deception | Awareness Center : Security 101 | 5 | |
| Format String Symphony | Technical Training Center: T-ATP | 100 | |
| A Whole Lotta Strings | Technical Training Center: T-ATP | 50 | |
| Tampered Data | Technical Training Center: T-ATP | 10 | |
| All The Jars | Technical Training Center: T-ATP | 10 | |
| Unsafe Items | Training Center: T-ATP | 15 | |
| Metadata Everywhere! | Technical Training Center: T-ATP | 30 | |
| Traffic At The Hospital: Pt. 3 | Technical Training Center: T-ATP | 25 | |
| Traffic At The Hospital: Pt. 2 | Technical Training Center: T-ATP | 25 | |
| Traffic At The Hospital: Pt. 1 | Technical Training Center: T-ATP | 25 | |
| Purging data | Certification Center: HCISPP Day1 | 9 | |
| ISAC | Certification Center: HCISPP Day1 | 9 | |
| Stage 1 | Ransomware | 30 | |
| MDS2 | Awareness Center: Healthcare! Acronyms! | 5 | |
| Indicator of compromise | Ransomware | 20 | |
| What is WHO? | Awareness Center : Healthcare! Acronyms! | 5 | |
| EHR | Awareness Center : Healthcare! Acronyms! | 5 | |
| Tracing the malicious actor | Ransomware | 30 | |
| DFIR | Awareness Center : Security 101 | 5 | |
| Compromised PACS / DICOM Server - Question 6 | DICOM | 45 | |
| Ciphers Galore | Technical Training Center: T-ATP | 20 | |
| RSS-MD 2-Factor | Awareness Center: Risk "Management" | 5 | |
| PHI | Awareness Center : Healthcare! Acronyms! | 5 | |
| Compromised PACS / DICOM Server - Question 5 | Radiology: DICOM | 40 | |
| IMDRF | Awareness Center : Healthcare! Acronyms! | 5 | |
| FHIR | Awareness Center: Healthcare! Acronyms! | 3 | |
| FMEA | Awareness Center: Healthcare! Acronyms! | 3 | |
| JSP | Awareness Center: Acronyms! Acronyms! Acronyms! | 3 | |
| STRIDE | Awareness Center: Acronyms! Acronyms! Acronyms! | 3 | |
| SicGRL | Awareness Center: Cyber! Acronyms! | 3 | |
| RSS-MD | Awareness Center: Cyber! Acronyms! | 3 | |
| Compromised PACS / DICOM Server - Question 4 | Radiology: DICOM | 30 | |
| GDPR | Awareness Center: Cyber! Acronyms! | 3 | |
| SBOM | Awareness Center: Cyber! Acronyms! | 3 | |
| HL7 | Awareness Center: Healthcare! Acronyms! | 3 | |
| HDO | Awareness Center: Healthcare! Acronyms! | 3 | |
| HIPAA | Awareness Center: Healthcare! Acronyms! | 3 | |
| CVSS | Awareness Center: Cyber! Acronyms! | 3 | |
| Compromised PACS / DICOM Server - Question 3 | Radiology: DICOM | 30 | |
| NFC | Awareness Center: Acronyms! Acronyms! Acronyms! | 3 | |
| Compromised PACS / DICOM Server - Question 2 | Radiology: DICOM | 20 | |
| DiME | Awareness Center: Healthcare! Acronyms! | 3 | |
| HIMSS | Awareness Center: Healthcare! Acronyms! | 3 | |
| DICOM | Awareness Center: Healthcare! Acronyms! | 3 | |
| ICS-CERT | Awareness Center: Acronyms! Acronyms! Acronyms! | 3 | |
| HHS | Awareness Center: Acronyms! Acronyms! Acronyms! | 3 | |
| H-ISAC | Awareness Center: Acronyms! Acronyms! Acronyms! | 3 | |
| FDA | Awareness Center: Acronyms! Acronyms! Acronyms! | 3 | |
| CGM | Awareness Center: Healthcare! Acronyms! | 3 | |
| CDRH | Awareness Center: Healthcare! Acronyms! | 3 | |
| Adverserial Attacks | Digital Twin AI Center | 20 | |
| BLE | Awareness Center: Acronyms! Acronyms! Acronyms! | 3 | |
| PACS | Awareness Center: Healthcare! Acronyms! | 3 | |
| Compromised PACS / DICOM Server - Question 1 | Radiology: DICOM | 30 | |
| Target on your back | Ransomware | 20 | |
| Ransom note part II | Ransomware | 20 | |
| Ransom note | Ransomware | 15 | |
| Which agreement? | Certification Center: HCISPP Day1 | 10 | |
| WANTED | Biohacking Village Wants YOU! | 0 | |
| AAMI | Awareness Center: Acronyms! Acronyms! Acronyms! | 3 | |
| The future is here! | St. Elvis Digital Twin | 200 | |
| Primanoculation | Host Access | 40 | |
| WireGuard Filetype | Host Access | 10 | |
| WireGuard Endpoint | Host Access | 10 | |
| Verify me | Orientation | 5 | |
| Discord Communications | Orientation | 20 | |
| Simple Service Access - port 80 | Orientation | 20 | |
| Simple Service Access - port 40 | Orientation | 20 | |
| Email Communications | Orientation | 10 | |
| CTFd - Profile | Orientation | 5 | |
| CTFd - Scoreboard | Orientation | 5 | |
| CTFd - Teams | Orientation | 5 | |
| CTFd - File Download | Orientation | 5 | |
| CTFd - First! | Orientation | 5 |