feat: add mctf

MetaCTF/ACE-T/.gitignore

@@ -0,0 +1,2 @@
+tmp/*
+!tmp/.placeholder

MetaCTF/ACE-T/all_strung_out.md

@@ -0,0 +1,10 @@
+All Strung Out
+
+```
+Find the first flag in evidence.zip.
+
+The flag hidden in this challenge is in the format: flag{value}
+```
+
+1. Unzip
+1. `grep -E "flag\{.*\}" evidence.mem`

MetaCTF/ACE-T/breaching_buckets.md

@@ -0,0 +1,9 @@
+Breaching Buckets
+
+```
+Take a look at where this image is hosted. See if you can find the flag! Does anything stand out?
+```
+
+1. `aws s3 ls prod-cdn-user-imgs --recursive`
+1. `aws s3 cp --recursive s3://prod-cdn-user-imgs .`
+1. browse all pictures for flag

MetaCTF/ACE-T/osint_time.md

@@ -0,0 +1,7 @@
+OSINT Time
+
+```
+Your co-worker Leo refused to tell anyone where he was going on vacation. You saw him post an Instagram of a super cute sloth and you REALLY want to know where it was taken. See if you can figure it out.
+```
+
+1. `exiftool $DOWNLOADS/sloth.jpg | grep -i comment`

MetaCTF/ACE-T/the_last_great_zip_file.md

@@ -0,0 +1,22 @@
+The Last Great Zip File
+
+```
+Help! I've created a zip archive that contains my favorite flag, but I forgot the password to it. Can you help me recover my flag back?
+
+You may need to use another program such as wget to download the file if your browser is blocking the download. Now to get the password hash from the zip file...
+```
+
+1. `wget https://metaproblems.com/4c8353df44a1dc0c5535ec84fa8da70e/flag.zip`
+
+1. Download [John the Ripper](https://www.openwall.com/john/)
+    *   ```
+        $ git clone https://github.com/openwall/john
+        $ cd john/src
+        $ ./configure && make
+        ```
+
+1. `./john/run/zip2john flag.zip > zip.hashes`
+
+1. `./john/run/john --wordlist=/usr/share/wordlists/rockyou.txt zip.hashes `
+
+1. `./john/run/john zip.hashes --show`