Last week, my team and I took part in DeconstruCT.F, a 24-hour Capture The Flag event organized by the Google Developers Student Club at Vellore Institute of Technology. It was an exciting competition, and after 24 hours of no sleep, we emerged as winners. Among the challenges I solved in different categories including Cryptography, Web, Forensics, the one that really intrigued me and motivated me to write about was a Cryptography challenge called “Doe, A Deer”. The challenge was worth 500 points, involved studying about music theory, then manually deciphering a music sheet cipher, and at the end of the competition, only three teams managed to solve it. So, with out further ado, let’s get started.

Challenge Description

Mark, a very gifted musician, is suddenly missing after his music class. He is said to have been upset after turning in his assignment. He had worked very hard on it, it was his first original. Here, you can see his work. I’m sure you can find him, he wouldn’t have gone far.

Files Attached

• Doe a deer.pdf
• tune_700.mp3

Solution

Lets begin by analyzing the files we’ve been given. A quick look at the pdf file reveals that it is a .Music Sheet Cipher

Let’s see whether there’s a deciphering tool available online. A quick google search for Music Sheet cipher decoding tool takes us to dcode.fr. I tried decoding it, but the tool gave me gibberish.

If that’s not going to work, then let’s get back to our old pal Google and search for Music Sheet Ciphers. The second search from the top leads to this website, which is a online encoding tool. Let’s try encoding something and check whether the result matches the ciphertext we’ve been given.Solfa Cipher

Hmm. It does in a way. Let’s play about with it a little and see if we can come up with a ciphertext that’s similar to the pdf one. I couldn’t do it. However, we’re certain it’s now. Let’s find an online decoder and get the flag. Child’s play right? But guess what?Solfa Cipher

There’s no online decoding tool for it. We will have to decipher it manually.

Back to google, I found this writeup from 2017 which states:

Each note is linked to the seven pitches of the solfege, i.e. Do (D), Re (R), Mi (M), Fa (F), Sol (S), La (L) and Si(T).

The columns represent the pitch, while the rows represent the time units for each note . It’s mentioned in the writeup that the key is defined using a , a , a and a .(1, 2, 3 or 4)cleftonicmoderythmic unit

These elements when combined, generate a key which can be used for both encryption and decryption. We know that the first line of the pdf is the key used for encryption which means we can figure out the settings of the 4 elements. I tried multiple settings on this website to see if I could get the same key as we have. Luckily, with as the , as the , as the , and as the I was able to get the original key back.4TrebleClefCtonicMajorModeEightrythmic unit

The given key specifies a rhythm, as such an Eighth note will be worth , a Quarter note will be worth and the half note will be worth .1-time unit2-time units4-time units

After studying a little bit of music theory I was able to figure out that a with a music note meant time units. At this point, I had a good understanding of how the worked, but I wasn’t sure what the looking note signified, so I asked the admin about it, and he answered that it’s a buffer character worth a ..n+1Solfa Cipherz-like2-time unit

Using the Key, we can write out the correct scale with its associated solfege syllables and divide up the rhythms into counts of four notes. The first downbeat is always .(Do, Re, Mi, Fa, So, La, Ti)8th1

Let’s start mapping the counts onto the pdf. I have tried to explain the mapping process in the following diagram.

We’re done with the hard part, now we just need to know the alphabet equivalents of all solfege syllables. We can easily find the solfege syllables’ alphabets equivalent on google.

We have got all we need to decrypt the ciphertext. Let’s begin the process.

After applying the above process on all of the ciphertext, you’ll end up with:

R,1 M,1 F,3 F,1 T,1 D,3 D,3 R,4 F,3 T,1 F,3 R,1 M,3 M,1 T,4 S,1 M,4 T,1 D,1 D,1 T,1 M,4 T,1 L,3 R,1 T,4 S,1 F,3 R,4 F,3 T,3 F,1 R,1 R,3

Using the table in , we decode it to following plaintext:Figure 1

iamsorrymomihavegottogolivemymusic

We have the plaintext but no idea what to do with it. Let’s have a look at the file. Running command on it yields a Google Drive link that yields another pdf.tune_700.mp3strings

It’s a password-protected PDF document. Perhaps the plaintext we obtained is the pdf’s passcode?

Let us give it a go.

And, voila! We have got the flag.

Originally published at https://vonderchild.github.io/posts/DeconstruCT.F-Doe-A-Deer/.