more vishwa writeups

Author: Slavetomints

_posts/2025-05-29-vishwactf-2025-flames.md

@@ -0,0 +1,32 @@
+---
+title: Flames
+date: 2025-05-29
+categories: [Capture The Flags, VishwaCTF 2025]
+tags: [ctf, vishwactf, web, writeups]
+description: VishwaCTF 2025 Flames Challenge
+---
+
+> Challenge description:
+>  
+>  Find Your True Love <3
+{: .prompt-info }
+
+Alrighty, so we have a web application to poke at, let's see what we have.
+
+![home page](/assets/img/vishwactf-2025/flames/image0.png)
+
+Looks like a love calculator that takes in two names and "determines" how compatible the two are. Let's see how it holds up against SQL injection.
+
+![the payload](/assets/img/vishwactf-2025/flames/image1.png)
+
+With this payload, all I am attempting to do is establish the version of SQL that is being used. Not trying to exfiltrate any user data at this point.
+
+![the response](/assets/img/vishwactf-2025/flames/image2.png)
+
+Hm, it looks like it might not have worked. Either that or the names of our two lovebirds just got thrown into the database, so let's check out the `Famous Love Stories` to see if anything happened there.
+
+![the flag??](/assets/img/vishwactf-2025/flames/image3.png)
+
+Huh, they probably just used a regex for SQL-like statements? This is a confusing challenge, albiet an easy one. 
+
+FLAG: `VishwaCTF{SQL_1nj3ct10n_C4n_Qu3ry_Your_He4rt}`

_posts/2025-06-01-vishwactf-2025-echoes-of-the-unknown.md

@@ -0,0 +1,21 @@
+---
+title: Echoes of the Unknown
+date: 2025-05-31
+categories: [Capture The Flags, VishwaCTF 2025]
+tags: [ctf, vishwactf 2025, steganography, writeups]
+description: VishwaCTF 2025 Echoes of the Unknown Challenge
+---
+
+
+> Challenge description:
+> 
+> Not everything is heard—some things must be seen.
+{: .prompt-info }
+
+FLAG: `VishwaCTF{CR4CK3D_7H3_C0D3}`
+
+Okay, so for this challenge we we're given a `wav` file, full of just some beeps. Whenever I'm doing a challenge and I get a audio file full off just beeps, I like to assume that it's probably morse code. Thankfully, there are online tools that can take in audio files with morse code and play them back to you. I like to use [this tool](https://morsecode.world/international/decoder/audio-decoder-adaptive.html) for decoding audio files with morse code. However, the file that we are given is much to slow, so you can use your software of choice to speed the audio up. Once we get that done, all that's left is to plug it into the site again and let it to its thing.
+
+![the morse decoded](/assets/img/vishwactf-2025/echoes/image0.png)
+
+FLAG: `VishwaCTF{CR4CK3D_7H3_C0D3}`

_posts/2025-06-03-vishwactf-2025-quadrant.md

@@ -0,0 +1,30 @@
+--- 
+title: QuadRant 
+date: 2025-06-03 
+categories: [Capture The Flags, VishwaCTF 2025] 
+tags: [ctf, vishwactf 2025, steganography, writeups] 
+description: VishwaCTF 2025 QuadRant Challenge
+---
+
+> Challenge description:
+> 
+> Four pieces of a forgotten code lie before you. Each fragment holds a part of a greater whole, but the puzzle is incomplete. Your task: find the pattern, align the pieces, and unlock the final code. Once the pieces fall into place, scan what you’ve created to uncover the secret within.
+>
+> Let the search begin. {: .prompt-info }
+
+For this challenge we were given 4 different images, each one is part of a QR code. I'm assuming that the QR code is either the flag or a clue to look at the next step of the flag. The flags are as follows:
+
+![quadrant 1](/assets/img/vishwactf-2025/quadrant/flag1.png) 
+![quadrant 2](/assets/img/vishwactf-2025/quadrant/flag2.png)
+![quadrant 3](/assets/img/vishwactf-2025/quadrant/flag3.png)
+![quadrant 4](/assets/img/vishwactf-2025/quadrant/flag4.png)
+
+Let's use GIMP to piece the images together into a single QR code.
+
+![The reconstructed QR code](/assets/img/vishwactf-2025/quadrant/image0.png)
+
+So an interesting thing about QR codes is that you do not need the entire code to be able to get the data that is on it. They do have some redundancy built into them, and while the math behind that is too high level for this writeup, [the Wikipedia article on QR code's](https://en.wikipedia.org/wiki/QR_code#Error_correction) has an interesting section on the error correction capabilities of them.
+
+Anyway, if we scan with a QR code reader, it gives us the flag!
+
+FLAG: `VishwaCTF{aG9lMTIzNDU2c3Bhc3NhZ2U=}`