Слив флагов (Flag Leak)

bug-makers

Task: a WIM archive with 1000 decoy base64 flag files, one real flag hidden. Solution: spotted an NTFS Alternate Data Stream in the 7z summary, used wimlib-imagex to locate the named 'hidden' stream on flag_404.txt, carved its 47 bytes with dd, and base64-decoded the flag.

base64 forensics wim file_format_analysis ads ntfs_alternate_data_stream decoy_files

base64_decodingwim_analysisads_extractionwimlib_imagexdd_carving

$ ls tags/ techniques/

base64 forensics wim file_format_analysis ads ntfs_alternate_data_stream decoy_files

base64_decodingwim_analysisads_extractionwimlib_imagexdd_carving

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

Permission denied (requires tier.pro)

Sign in to access full writeups

$sign in

$ grep --similar

Similar writeups

[forensics][Pro]Скрытый след (Hidden Trail)— hackerlab
[stego][Pro]Мозаика внутри PNG (Mosaic inside PNG)— bug-makers
[reverse][Pro]Весёлый EXE (Funny EXE)— hackerlab
[forensics][Pro]Тот сайт с GitHub (That site from GitHub)— hackerlab
[stego][Pro]Just a Text— spbctf