Bob Robizillo created a public instructions for Tiffany, so she can start work on new secret project. can you access the secret repository?

We're not given a whole lot to work with. Howver, googling "Bob Robizillo" nets us this public Gist:

Dear Tiffany,

I hope this message finds you well. To streamline our collaboration on the 1337up repository, I kindly ask you to add the enclosed SSH key to your account. This step is crucial for enabling a seamless forking process and enhancing our project efficiency.

We didn't get him in time 😫 Thankfully, we don't believe he's fled the country yet. He uploaded another photo this morning, it's as if he's taunting us! Anyway, this may be our last chance - do you know where he is right now?

We're given an image looking like this:

Plugging it into [reverse image search](https://lens.google.com/search?ep=cntpubb&hl=en-US&re=df&s=4&p=AbrfA8o8ndJA8mzW77Q36tIuTg9ITDsLkb3t5ZxM9JafE8MLO73vvHDwK9WiZlBKirsLeTWhjNfdizJ3YJwLuI6A0PNC_W0fU9nJWYSPg7tJtVZ3GMZRFbtsODSkOd-oI-Mk2mSZt7dPLqKwirEQlcPRIhg8vlhehJXxMsWvs7S3TdjzNU1iQp9emjFXZi5w6CnjGdZWldd8tvpYOKVJDj01QJ7wOQTIQteXyrXI-4CH-Rmgt2qwNZ4Mj3FafagSgoorcgxJUfNEjv-0zoAKtpu8OxKlelfIPznqR8c1110-_qyIfNn4W6d5UJ3yjNwxJIWuGqTgLKqfVTdk#lns=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLG51bGwsIkVrY0tKRFV6WWpJNU9HWmtMV00yT0RZdE5EUmtOeTFoT0RJeUxUUmpaREprTmpSa01EZzNPQklmU1RSTU9UWmZUMGszTURobWMwNXBYM3AxVm1GWlRWWk1PRWwz

Something weird going on at this pizza store!!

https://pizzaparadise.ctf.intigriti.io

We're given a simple pizza chain website looking like this:

Looking at the source code, CSS, and images, nothing seems out of the ordinary. However, going to robots.txt,

There's a fugitive on the loose and we need to track him down! He posted this to social media recently, do you know where the photograph was taken from? If you can provide the precise building, we can move in immediately 🚔

We're given an image that looks like this:

Should be simple, right? In the middle of the image, we find a reference to the "Trang Tien Plaza" bringing us to middle of Hanoi, Vietnam here:

Deadface is running a server where they have a list of targets they are planning on using in an upcoming attack. See if you can find any targets they are trying to hide.

http://targetlist.deadface.io:3001

We're given a simple website that looks like this:

On each "page", we can find records that begin with "A", "B", and "C":

The dojo stores many riches. Can you make it through the gauntlet?

dojo.challs.pwnoh.io

We're given a Go server looking like this:

package server

import (

Hey, I have made a terminal that only uses echo, can you find the flag?

nc chal.competitivecyber.club 3333

We're given a Python server that looks like this:

#!/usr/bin/python3

import os,pwd,re

blob says: blob

http://chal.competitivecyber.club:3000

We're given an express server that looks like this:

require("express")()
  .set("view engine", "ejs")
  .use((req, res) => res.render("index", { blob: "blob", ...req.query }))

Not much of a backstory here... there is an embedded flag in here somewhere, your job is to find it.

We're given a "QR code mosaic" looking like this:

Plugging it into Aperi'Solve, we can extract a patriotCTF.bmp resembling the logo on their website:

how can one golf with jelly if it just explodes when you hit it with a large metal golf club?

nc challs1.pyjail.club 5999

We're given a Python server that looks like this:

#!/usr/local/bin/python3
# https://github.com/DennisMitchell/jellylanguage/tree/70c9fd93ab009c05dc396f8cc091f72b212fb188
from jellylanguage.jelly.interpreter import jelly_eval