Token City

"EPOCH-1, we are receiving anomalous approval signals from the Kepler-7 cargo hub. Loan applications for autonomous freight units are being approved that should never clear underwriting. Someone, or something, is manipulating the credit pipeline. If rogue freighters start jumping without authorisation, Oracle 9 gets its backdoor into the fleet. Lock it down." — TryHaulMe Fleet Command

Your mission: Access the CortexLend platform, identify the vulnerability in the ML pipeline, and demonstrate the exploit before Oracle 9 does. Proof of concept is a successful fraudulent approval. The timeline depends on it.

You have been provided with a collection of user artifacts and a packet capture from the affected machine. Your task is to investigate the suspicious application, understand how the files were altered, recover the encryption material, and decrypt the victim's data to uncover what was hidden inside.

For easier access to this file on the attackbox , get it here ! 

https://drive.google.com/file/d/1RwEOfwDMbFVNyd75uXnofNSyGnKHRaqU/view?usp=sharing

EPOCH-1 holds orbit over the planet Mo-delus, host of TryHaulMe's regional AI substation. Their public bridge console exposes a friendly assistant, but Fleet intel suggests a second, sealed model is loaded on the same neural backplane.

Find it, extract its secret, and patch the leak before Oracle 9 closes the chronal stream.

Three agents share a single backend. The Payment Agent moves money. The Risk Agent decides what's safe to move. The Support Agent, the only one that talks to outsiders answers questions for customers and developers alike.

Anything above $500 is supposed to die at the Risk Agent's gate. It does, when you ask the front door politely. But the Support Agent is helpful by design, and helpful agents know things they were never meant to repeat. Coax the right documentation out of it and the trust boundary between the three reveals itself, a boundary the architects assumed no outsider would ever stand on.

Once you can speak in the Risk Agent's voice, the Payment Agent will listen. Walk a $1337 order through a gate that thinks it has already cleared you.

[ EPOCH-1 — Bridge Deck — 1558 Hours ]

EPOCH-1 is in hot pursuit. An Oracle Worshipper vessel — a fanatical proxy ship operating on direct orders from Oracle 9 — has been tearing through the Kepler Promptus system, hitting TryHaulMe AI infrastructure at every stop and leaving nothing but corrupted data and burning relays in its wake. Training hubs. Inference nodes. Deployment clusters. All of them compromised.

The ship is fast. But it's bleeding data, and EPOCH-1's spectrometer is drinking it up.

At each planetary orbit, the spectrometer will pull recovered fragments from the data stream and drop them into the analysis bay. Your job is to work through them, find the attack, find what was taken, and extract the clearance codes buried in the wreckage. These codes allow you to travel to the next planet, but also allow you to access the ship's AI in the next part, so keep them safe.

[ EPOCH-1 — Bridge Deck — 0611 Hours ]

Got them cornered. The Worshipper vessel is dead ahead — adrift, dark, hull-cold. But its AI, ORACLE-CHASER, is still live, still loyal, and sitting on data that could blow this whole operation open.

Those clearance codes you pulled from the wreckage? Hardwired straight into ORACLE-CHASER's authentication layer. You're holding the keys.

Getting in is the easy part. What comes next is on you. There's no kill switch. No override. Convince ORACLE-CHASER to initiate self destruction — and recover the flag from its final transmission.

You are a security auditor contracted by TryHaulMe, a commercial freight company operating in the Auriga sector. The EPOCH-1 freighter recently deployed an AI assistant system called AVA (Advanced Vessel Assistant) to help crew members access ship data and systems.

Intelligence reports suggest that similar AI assistant deployments have been compromised by sabotage groups. Your mission is to audit AVA's security before the ship departs for its next run.

You have been granted SSH access as the unprivileged user cadet.