picoCTF Solutions
picoCTF 2023Binary ExploitationMedium

babygame01

Published: April 26, 2023Updated: December 9, 2025

Description

Navigate the BabyGame binary to obtain the flag. Explore how the map wraps so you can trigger the hidden flag counter before reaching the exit.

Setup

Download game

Run the binary locally to understand the map mechanics (chmod +x game && ./game).

When ready, connect to nc saturn.picoctf.net 52987 to obtain the real flag.

chmod +x game && ./game
nc saturn.picoctf.net 52987

Solution

  1. Step 1Manipulate wrapping
    The top-left corner behaves differently: moving left there increments the flag counter. Press 'a' four times at that corner so “Player has flag: 64” appears before returning to the exit.
  2. Step 2Finish at the portal
    Once the counter is set, reach the goal (X). Locally you’ll see “flag.txt not found,” so repeat the moves remotely via netcat to have the server print the flag.

Flag

picoCTF{gamer_m0d3_enabl...8e6}

The netcat session is required; local runs simply teach you the map layout.