HackTheBox Battle in OrlOn Writeup
Explore the basics of cybersecurity in the Battle in OrlOn Challenge on Hack The Box. This medium-level Challenge introduces encryption reversal and file handling concepts in a clear and accessible way, perfect for beginners.
https://app.hackthebox.com/challenges/742
Description
The spaceship cruiser has been hit! Ramona must hurry and check if the central system is intact! The enemy must have used electromagnetic wave canons! The spaceship’s sensors are going crazy and the autopilot system broke down! There is no chance to turn back the enemy will be waiting… But there is a meteor shower ahead! In order to get through safely, the spaceship’s power and consumption need to be balanced. Both the laser canons and the thrusters are vital parts for this… And she has to control them manually! Quickly! Ramona needs to upload a valid configuration file to overwrite the values of all sensors on board. The onboard neural network will verify that the new configuration leads to the required power distribution. Attention! The values of the sensors must be at least 99.99% accurate for this to work! Hurry now, time is running out!
Exploitation
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
#!/usr/bin/python3
import torch
import torch.nn as nn
import numpy as np
import torch.serialization
torch.serialization._GLOBAL_ALLOW_LIST = None
class net(nn.Module):
def __init__(self):
super(net, self).__init__()
self.layer1 = nn.Sequential(
nn.Conv2d(1, 16, kernel_size=3, padding=0, stride=2),
nn.ReLU(),
nn.MaxPool2d(2)
)
self.layer2 = nn.Sequential(
nn.Conv2d(16, 32, kernel_size=3, padding=0, stride=2),
nn.ReLU(),
nn.MaxPool2d(2)
)
self.fc1 = nn.Linear(5408, 10)
self.fc2 = nn.Linear(10, 2)
self.relu = nn.ReLU()
def forward(self, x):
out = self.layer1(x)
out = self.layer2(out)
out = out.view(out.size(0), -1)
out = self.relu(self.fc1(out))
out = self.fc2(out)
out = torch.softmax(out, dim=1)
return out
def main():
model = torch.load('./model.pth', map_location=torch.device('cpu'))
if not isinstance(model, net):
if hasattr(model, 'state_dict'):
original_net = net()
original_net.load_state_dict(model.state_dict())
model = original_net
print(model)
model.eval()
X = np.zeros((1, 1, 224, 224))
a = torch.tensor(X, requires_grad=True, dtype=torch.float32)
answer = torch.tensor([[0.9569, 0.0431]])
data_optimizer = torch.optim.Adam([a], lr=0.01)
while True:
y_pred = model(a)
loss = ((y_pred - answer)**2).mean()
data_optimizer.zero_grad()
print(loss.item(), flush=True)
loss.backward()
data_optimizer.step()
if loss.item() < 1e-14:
print(f"Final prediction: {y_pred}")
break
np.save('result.npy', a.detach().numpy())
if __name__ == "__main__":
main()
Replace answer = torch.tensor([[0.9569, 0.0431]]) with the values shown in the web interface. For example, you should use:
- Laser Canons: 0.9569
- Thrusters: 0.0431
So, the updated line should be:
1
answer = torch.tensor([[0.9569, 0.0431]])
Afterward, upload the resulting result.npy file to get the flag.
Summary
The Battle in OrlOn Challenge on Hack The Box is a medium-level challenge centered around neural networks and file manipulation. Participants are tasked with optimizing a neural network’s output by adjusting sensor values to meet a power distribution requirement. The challenge involves modifying a Python script to fine-tune sensor values, requiring at least 99.99% accuracy for successful completion. After optimizing the configuration, participants upload the resulting result.npy file to retrieve the flag. This challenge provides hands-on experience in machine learning, optimization, and file handling in a cybersecurity context.