Challenge 10 of the 2018 Flare-On competition involved an image file and a deeply obfuscated sequence. Below is the general methodology for tackling such a challenge:
: x64dbg for stepping through the code to see how it manipulates the input.
: In the case of IAN18-related challenges, the name often hints at a specific algorithm or a name (e.g., a "magic string" or "IAN"). The solution usually involves: Identifying a custom encryption or XOR loop. IAN18.rar
The file is likely associated with the Flare-On CTF 2018 (specifically Challenge 10) or a similar forensic/reverse engineering challenge. In the context of CTFs (Capture The Flag), a "write-up" is a guide explaining how a challenge was solved. Write-up Summary for Challenge 10 (IAN18)
: Perform a file command or use tools like Binwalk to inspect the .rar structure. Often, these archives are password-protected, requiring you to find a "breadcrumb" in earlier stages of the competition or via string analysis. Challenge 10 of the 2018 Flare-On competition involved
: PEStudio to find suspicious strings or imports.
Extracting a hidden payload from the metadata of an image or within the RAR's comment field. Write-up Summary for Challenge 10 (IAN18) : Perform
Running a script (Python) to automate the decryption of the flag. Key Tools Used : WinRAR or 7-Zip for initial extraction.