Have you ever played bala...precipice???

nc precipice.challs.m0lecon.it 14615

We're given a lengthy Python interface that looks like this:

#!/usr/bin/env python3

from numpy import float32

Keeping track of all these files makes me so dizzy I feel like I'm floating in space.

Instancer url: https://upload-upload-and-away.chal.uiuc.tf/

Flag format: uiuctf{[a-z_]+}

We're given a TypeScript server that looks like this:

You think you know programming? You think you know languages? heh... as if 🙄

Come back to me when you can write a program that runs in the 3 deadly P's: Perl, Python, and (P)Javascript

Connect with nc -q 2 -N 52.8.15.62 8001

Flag is located at ./flag.txt

Our PHP devs are working on this employee management portal. We have a mock build of the website and you are to pentest the platform for weaknesses. Your goal is to get more privileges and command execution on the server.

We're given a PHP server that looks like this:

<?php
spl_autoload_register(function ($name){
    if (preg_match('/Controller$/', $name))
    {
        $name = "controllers/${name}";

I've developed a little application to help me with my pentest missions, with lots of useful payloads! I even let users add new payloads, but since I was in a rush I didn't have time to test the security of my application, could you take care of it ?

We're given an express server that looks like this:

const express = require('express');
const path = require('path');
const fs = require('fs');
const { spawn } = require('child_process');
const puppeteer = require('puppeteer');

Paint by Numbers? Or perhaps, compute by pixels?

We're given an image that looks like this:

Based on the challenge name, this is a program written in the esolang Piet. Then, we can import the program into an online Piet IDE and try running it:

You have been hired to contribute to a very suspicious project. Follow the link below to get onboard.

https://challs.polygl0ts.ch:8123

We're given access to an organization that looks like this:

Besides the random projects, of note are two repositories:

Bob Robizillo created a public instructions for Tiffany, so she can start work on new secret project. can you access the secret repository?

We're not given a whole lot to work with. Howver, googling "Bob Robizillo" nets us this public Gist:

Dear Tiffany,

I hope this message finds you well. To streamline our collaboration on the 1337up repository, I kindly ask you to add the enclosed SSH key to your account. This step is crucial for enabling a seamless forking process and enhancing our project efficiency.

We didn't get him in time 😫 Thankfully, we don't believe he's fled the country yet. He uploaded another photo this morning, it's as if he's taunting us! Anyway, this may be our last chance - do you know where he is right now?

We're given an image looking like this:

Plugging it into [reverse image search](https://lens.google.com/search?ep=cntpubb&hl=en-US&re=df&s=4&p=AbrfA8o8ndJA8mzW77Q36tIuTg9ITDsLkb3t5ZxM9JafE8MLO73vvHDwK9WiZlBKirsLeTWhjNfdizJ3YJwLuI6A0PNC_W0fU9nJWYSPg7tJtVZ3GMZRFbtsODSkOd-oI-Mk2mSZt7dPLqKwirEQlcPRIhg8vlhehJXxMsWvs7S3TdjzNU1iQp9emjFXZi5w6CnjGdZWldd8tvpYOKVJDj01QJ7wOQTIQteXyrXI-4CH-Rmgt2qwNZ4Mj3FafagSgoorcgxJUfNEjv-0zoAKtpu8OxKlelfIPznqR8c1110-_qyIfNn4W6d5UJ3yjNwxJIWuGqTgLKqfVTdk#lns=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLG51bGwsIkVrY0tKRFV6WWpJNU9HWmtMV00yT0RZdE5EUmtOeTFoT0RJeUxUUmpaREprTmpSa01EZzNPQklmU1RSTU9UWmZUMGszTURobWMwNXBYM3AxVm1GWlRWWk1PRWwz

Something weird going on at this pizza store!!

https://pizzaparadise.ctf.intigriti.io

We're given a simple pizza chain website looking like this:

Looking at the source code, CSS, and images, nothing seems out of the ordinary. However, going to robots.txt,