This year's SANS Holiday Hack challenge is obviously themed after the 'Die Hard' movies - from Hans Gruber, to the vents, and the famous Yippee-Ki-Yay! Here are some Easter eggs found in the game: erohetfanu.com -> ROT13 = reburgsnah -> Reverse = Hans Gruber The code given by the [..]

Difficulty: 1/5 Who was the mastermind behind the whole KringleCon plan? And, in your emailed (SANSHolidayHackChallenge@counterhack.com) answers please explain that plan. Hints given:From Objective 9-4:Alabaster's vault password is: ED#ED#EED#EF#G#F#G#ABA#BA#B From: Alabaster Snowball "Really, it's Mozart. And it should be in the key of D, not E." From Objective 8: [..]

Difficulty: 5/5 Alabaster Snowball is in dire need of your help. Santa's file server has been hit with malware. Help Alabaster Snowball deal with the malware on Santa's server by completing several tasks.For hints on achieving this objective, please visit Shinny Upatree and help him with the Sleigh Bell Lottery Cranberry [..]

Difficulty: 3/5 Alabaster Snowball is in dire need of your help. Santa's file server has been hit with malware. Help Alabaster Snowball deal with the malware on Santa's server by completing several tasks.For hints on achieving this objective, please visit Shinny Upatree and help him with the Sleigh Bell Lottery Cranberry [..]

Difficulty: 5/5 Alabaster Snowball is in dire need of your help. Santa's file server has been hit with malware. Help Alabaster Snowball deal with the malware on Santa's server by completing several tasks.For hints on achieving this objective, please visit Shinny Upatree and help him with the Sleigh Bell Lottery Cranberry [..]

Difficulty: 3/5 Alabaster Snowball is in dire need of your help. Santa's file server has been hit with malware. Help Alabaster Snowball deal with the malware on Santa's server by completing several tasks.For hints on achieving this objective, please visit Shinny Upatree and help him with the Sleigh Bell Lottery Cranberry [..]

Difficulty: 4/5 Santa has introduced a web-based packet capture and analysis tool at https://packalyzer.kringlecastle.com to support the elves and their information security work. Using the system, access and decrypt HTTP/2 network activity. What is the name of the song described in the document sent from Holly Evergreen to Alabaster [..]

Difficulty: 4/5 Santa uses an Elf Resources website to look for talented information security professionals. Gain access to the website (https://careers.kringlecastle.com/) and fetch the document C:\candidate_evaluation.docx. Which terrorist organization is secretly supported by the job applicant whose name begins with "K."? For hints on achieving this objective, please visit [..]

Difficulty: 3/5 Note: This objective is found on the top floor, up the stairs from the floor one Eastern corridor. Bypass the authentication mechanism associated with the room near Pepper Minstix. A sample employee badge is available (https://www.holidayhackchallenge.com/2018/challenges/alabaster_badge.jpg). What is the access control number revealed by the door authentication [..]