Sharing writeups of CTF challenges and Machines
Download and unzip the attached file. The pcap file will be extracted from the zip file. Open the wireshark and go through packets.. I filtered packets with HTTP protocol. Then I found suspicious command injections. It seems it’s executing bash shell on 192.168.1.180. So, I filtered packets with the IP address 192.168.1.180. Then I checked … Read More “Hack the box: Wrong Spooky Season write up” »
Download the zip file and unzip it. You will get the email with encoded contents. The first encoded block is like below. It’s saying it is base64 encoded. Let’s decode it from cyberchef. Then you will get the message from the leader of resistance. Now let’s check the second encoded block. When decode it, the … Read More “Hack the box – Urgent write up” »
I share the solution of “an unusual sighting” challenge from hack the box. Connect to the host machine using netcat. Then it will ask us questions. All the answers can be found in the log files. IP Address and Port of the SSH Server 100.107.36.130:2221 What time is the first successful Login 2024-02-13 11:29:50 What … Read More “Hack the box – An unusual sighting” »
Challenge description Can you decrypt the message and get the flag? Solution Download the zip file and unzip it. We have two files flag.enc and key.pub We are asked to decrypt the flag file using the given public key. There is a convenient tool for this kind of challenge. RsaCtfTool! Let’s first install the tool … Read More “Hack the box challenge – Weak RSA write-up” »
Challenge Description Find the password (say PASS) and enter the flag in the form HTB{PASS} Solution This challenge is reverse engineering and we are asked to find a correct password. Let’s check the file type. Now, for analysis let’s use a debugging tool. I used ida. When opening the file, choose 32-bit and Intel 80386 … Read More “Hack the box – Find The Easy Pass write-up” »
