By continuing to use this website you agree to follow the following rules:
- Do not share level passwords.
- Do not automate requests to the website (unless otherwise noted), security scan, dictionary attack, or bruteforce links.
- Do not share your method of solving with other users.
- Be respectful and try to be tolerant in discussion channels.
- Violators may be kicked from discussion channels, banned, or have their progress removed depending on severity.
- Discussion channel moderators do not necessarily have information about the challenges.
- The official discussion channels are on Discord (click for details). Though you can discuss within the rules anywhere.
- Do not attempt to log in, ssh, or access parts of the domain you would normally not have access to. This includes using exploits (except where indicated by level category). This is a series of puzzles, not a wargame.
- If you can download a file from a puzzle, you may bruteforce it locally on your computer (ie: not violating Rule 2), though it is generally not the preferred way to solve the puzzle.
- Always read the title. More often than not, the title is a hint about what to do.
- Collect all of the hints on and in the page, some puzzles can be obscure without them.
- If you're not sure, try Googling the things you have.
- Be sure what seems like the puzzle to you jives with the hints.
- Not everything is as it seems.
- Not everything is provided to you in an obvious location.
- Information in obscure locations is usually hinted as to where.
- Tip 7 may not apply on higher levels (over 30) as it's assumed you're accustomed to searching these places.
- Level passwords are generally written as all-lowercase without spaces unless otherwise indicated.
You may find the following tools useful in challenges. While you are not required to use any of these tools, you will need a similar tool for a few challenges.
- http://rumkin.com/tools/cipher/ (Many good web-based cipher tools)
- http://cyber.meme.tips/xlate (JXlate - multibase data translator)
- http://cyber.meme.tips/xlate/shifts.html (Shift/Xor report - see all 256 Byte shifts or 1-byte xor key outputs on one screen)
- http://cyber.meme.tips/jpdump (See JPEG header information, file abnormalities)
- http://cyber.meme.tips/xorjs/ (XorJS - in-browser equivalent of XorJ)
- https://github.com/crashdemons/XorJ (XorJ - Java GUI app for XORing two or more files together at given offsets)
- http://www.w1hkj.com/ (fldigi - Digital modem program with many different audio encodings for the radio enthusiast)
- http://dialabc.com/sound/detect/ (DTMF decoder)
- http://www.teworks.com/dtmf.htm (DTMF decoder)
- https://www.djsoft.net/smf/index.php?topic=3512.0 (DTMF decoder)
- http://exif.regex.info/exif.cgi (Image EXIF+metadata viewer)
- http://fotoforensics.com/ (Image analysis and ELA [Error Level Analysis])
- https://addons.mozilla.org/en-GB/firefox/addon/referer-modifier/ (An HTTP Referer extension - multiple exist but note these have not been vetted)
- http://mh-nexus.de/en/hxd/ (Hex-Editor / binary file viewer)
- Adobe Photoshop or GIMP
- Please do check out GameDetectives Academy which gives a good primer and guidance to many basic CS and ARG concepts.
2023-10-28 Host Changes
Due to the age of the server, ae27ff and meme.tips have been migrated to a new server for security and maintenance reasons. Only the toolbox at cyber.meme.tips are not migrated at this time. This upgrade also improves the behavior of forgot-password emails.
2023-09-22 DNS Changes
Due to our DNS provider selling their customers to a third party, we will be switching our DNS in the next few days; you may encounter temporary issues connecting to the website during this time. We apologize for any problems this causes
2021-09-12 Email Troubles
It has come to our attention that a couple people have received spoofed emails appearing to come from an ae27ff.com address. These emails are coming from an 'open relay mail server' (which lets you set the FROM address as anything)* and not from ae27ff. Normally, modern email providers will filter these spoof attempts, but some older ones may not. I wish to remind you to be very suspicious of any unprompted email, and to not click any links or enter information on sites that are unprompted or that don't appear to be correct. If you receive a seemingly legitimate password reset email which you did not request, I would recommend updating your password through the website instead of the link provided - or to ignore the email. (* in one example, the mail server was claro.co instead of ae27ff's IP - this is on DNSBL, Mail BLs, and fails SPF - so it should be blocked normally.) --- In other news, Outlook (msn, hotmail, live) users may not receive password reset emails since Outlook seems to have blocked a wide range of our hosting provider's IPs. This is not very surprising considering the nature of DO but it may mean that Outlook users will need to send the owner a message on Discord or personal email in order to reset their password. Note: We will never ask for your password in a contact message or emailed password reset page - do not believe anyone asking for it.
2020-10-22 Host Maintenance
Our provider has informed us that on October 27th and 29th, ae27ff and meme.tips may encounter temporary networking disruptions due to maintenance. This is expected to only occur for a couple hours around 14:00 UTC. We apologize for any inconvenience this may cause.
2020-03-24 DNS Maintenance
Beginning March 20th, ae27ff has made some changes to its domain and HTTPS configuration. This was partly done to consolidate existing domains onto the same certificate, but also to make some new inclusions. In addition, HTTPS has been made default for ae27ff domains. These changes should not affect your use of the website normally, but if you encounter issues then you may want to consider clearing your browser cache or flushing your dns cache. If you still have issues, please email [email protected]
2020-03-24 Welcome to ae27ff news
Hello all, we have included this news section to keep you informed about developments with ae27ff. As such, it will be used to post official updates and notices about the website.
- Passwords are stored with salted hashes - we do not record your password and we cannot retrieve it for you even if we wanted to.
- Your email address is used only for the Forgot Password form and for optionally linking to your WeChall account, we will not spam you or distribute your email address. You may be emailed additionally for major account problems, security concerns, or as a reply when you contact us for help.
- If you have any other concerns about your account, want to request account deletion, or want to inquire about the site or its content, please contact [email protected].
If you want to contact ae27ff for some reason, please email the webmaster at [email protected]