🏅 Top traders

/XComhghall/challenge-will-someone-claim-the-ma

Last market - Will discuss the solution with anyone interested if this puzzle is not solved.

Times up. Resolves no. I still want the solution!

selling a bit to incentivize others to solve, as i've put in some work but it's unclear how much more time i'll have

working on this now, been putting it off, was hoping someone else would do it for me :)

@brubsby

byte frequency from combinations of rgb LSB seems a little too uniform to be the method, ISO-8859-1 decoding seems like mostly mojibake, and no magic number filetype strings found so far.

@brubsby error level analysis of the image, nothing seems to jump out too much

@brubsby As my car broke down I had some time to work on it this morning and made no progress. I haven't done crypto as a hobby in 20 years so I am out of date; maybe you can point me to some more comprehensive references afterwards. This type of bet is counterproductive at this point to make it a team effort as we've already bet on opposite sides.

As brubsby has claimed he has not solved it with 6 hours left I am increasing my NO bet. I am conditionalising on my guess that brubsby hasn't solved it and won't solve it with 6 hours left.

@brubsby https://gist.github.com/brubsby/1602e38740889fc7cdb79d99c5f4a41f dump of zsteg -a, which i believe identifies filetype magic strings in certain bitmasks of the data, lots of noise but moderately confident a clue is in here

zsteg -a eURv9wV-HV.png

zsteg -a eURv9wV-HV.png. GitHub Gist: instantly share code, notes, and snippets.

@brubsby Yeah I read about (some of) the current tools. Too much noise to signal from that output (already seen it when I did it a couple days ago)

@brubsby A lot of my funds are all tied up in today's F1 markets at the moment ... I'll check back later when the race is over.

https://manifold.markets/KevinBurke/who-will-come-in-second-place-at-th-81770d62bc19

Who will come in second place at the 2023 Formula 1 Canadian Grand Prix?

The race will take place on June 18, 2023.

@parhizj my biggest ledes from zsteg seem to be:

imagedata .. file: SVR2 pure executable (USS/370) - version 117308934

and

b7,rgb,lsb,YX .. zlib: data="wJ7\xA9\xA6\x03\xCBKlA\x9E\xDEt\xBE", offset=238, size=14

which seems to be describing 1. a kind of arcane unix executable when the imagedata itself is run, could very well be noise though, and 2. a zlib archive with the payload "wJ7\xA9\xA6\x03\xCBKlA\x9E\xDEt\xBE", although there was header issues when attempting to decompress it via python zlib, giving this theory a little less credence as well.

not sure what might be implied by not seeing much showing up in the zsteg output, aside from maybe the initial stego being simple and then some unknown (to zsteg) scheme enciphering the bitstream, although I would think if it was a compression algorithm zsteg would find it, and if it was a more difficult scheme it would probably be too hard for this market.

perhaps it's using a key from the link2 market's word list, but i'm not sure how one would begin trying to apply it, as most key based stego tools are only for jpegs. (and funny enough this image has lots of jpeg compression, but is a png, perhaps this is pertinent, but i could not think of a useful manner in which to apply this tidbit)

@brubsby The clue I interpreted was the password might be related to getting around the Chinese firewall so the password would be one of the Chinese banned keywords. This didn't pan out with the only tool I could find that could handle png stego passwords

@parhizj No more time for me with the time left, only got a phone now

@parhizj This market, the image, and the encoded information have nothing to do with the market at link 2, except that the image was posted there. To my knowledge, the decoding process should not involve any word list, keywords, or anything specifically related to China.

@parhizj and @brubsby Do you have Discord, or something else I may contact you at?

@XComhghall same username on discord! no numbers now, i believe

@XComhghall JRP#6424 on discord

As I don't have time to solve this stego (I spent an hour trying various common techniques and tools, including using a word list I created from the list of (290+) sensitive words from China (which I thought might be a clue) yet came up empty). If it's a novel technique I don't have the time to discover it, and as no one has posted a proposed solution, I will bet conservatively NO given the market's high percentage.

@parhizj Let me contact you after close on Discord. If no one solves it, I might as well give the M100 to you.

I am confused, the second link goes to another market, shouldn't it be an image?

And by cryptic image do you mean the first is an example of visual cryptography? Or are they both the wrong images?

@parhizj Both are the same image. Link 2 links to the comment containing the same image. I have tested it by downloading and decoding the image from both pages. The result is the same.