Kalmarunionen is a Capture The Flag (CTF) team within cybersecurity. We hack stuff and this is our website. Occasionally we also post writeups and tutorials on how we solved different cybersecurity challenges. You can always check our world ranking here.

Read More

Skrevet af: Oliver Nordestgaard og Kim Schulz Er dit CPR nummer på internettet? I forbindelse med at der i disse dage skrives mange artikler om den nye sundhedskort app, skal der bruges billeder til artiklerne. Næsten alle journalister har et sundhedskort i lommen, og derfor kan det virke meget nærliggende lige at hive …

Read More

Writeup by: ChrRaz Kuuuurveen We are given the following challenge description. A client and a server have been communicating the flag over an encrypted channel. Der er en Kuuuuuuuuuuuuuuurveeeeeee, er den ikke smuk? En client og en server kommunikere over en krypteret kommunikationskanal. Se om du ved hjælp af source …

Read More

Writeup by: ChrRaz 80s Commitments When opening http://80s-commitments.hkn we are greeted with the following page: We are given a public key and a “commitment”. If we enter this commitment into the “reveal” box we get redirected to the following page which shows an embedded youtube video. …

Read More

Challenge Description (967 points) Play to win and log ‘em all! Once you’ve seen all 151 Asciimon, talk to Professor Jack for the flag. We’ve included some data for the first couple rooms, you’ll have to figure out the rest yourself! nc -v logemall-a2db138b.challenges.bsidessf.net 666 (author: …

Read More

Cr0wnAir Step 1: Getting two RS256 signatures To get a signature we need to bypass a filter validated by jpv (“JSON Pattern Validator”). TL;DR - this package has a lot of bypasses and should probably not be used for security sensitive stuff. We went with the following bypass: { "firstName": …

Read More

Writeup by: Zanderdk Introduction On the 2021-01-26 qualy released this article describing a “new” (actually 10 year old) bug in sudo that allows an attacker to do privilege escalation though a heap buffer overflow. Unfortunately they did not release exploit/POC so I decided to build one myself and failed. …

Read More

The Vault The challenge is a simple HTML file with a keypad that allows you to input 4 digit pin. The file loads main.js and calls Module.ccall('validate') to check the pin. Upon beautifying the JS we see that it calls run() which in turns runs: preRun(); initRuntime(); // => __wasm_call_ctors => …

Read More

Every year since 2017 the Danish National Cyber Crime Center (NC3) arranges a christmas CTF. 2020 was the first year where Kalmarunionen particpated and what a year! The challenges were released on November 27th and by the evening November 28th we managed to be the first team to solve all of them. It did not go down …

Read More

As a relatively new team based in Denmark, we are currently limiting our recruitment focus to experienced players either based in Denmark, or who otherwise have strong ties to Scandinavia, as well as those who are invited by current team members. If you are interested in playing with Kalmarunionen, simply write us an …

Read More