Obscure Challenge

I managed to decode the commands and obtain an interesting file, but I'm not sure how to proceed. A nudge from any of the solvers out there would be appreciated.

Thanks

Tagged:
«1

Comments

  • Type your comment> @n3m0 said:

    I managed to decode the commands and obtain an interesting file, but I'm not sure how to proceed. A nudge from any of the solvers out there would be appreciated.

    Thanks

    I'm in the same spot. I could obtain the file and its h**h. I think we have to use bruteforce. Someone who can confirm that this is the right path?

  • You should have obtained a sensitive file. To view its contents, you should supply a credential. Since you don't have credentials, you have to obtain them somehow. Our old friend john may help.

  • Just analyze the facts, and reverse it to obtain that file. Thanks to @Angel235 .
    pm me if you need help. however it is great challenge and everything is obvious just follow the flow from pcap file.

    Arrexel

  • Thank you @davidlightman....that was great hint!

  • Fun little challenge. It took me some time too get the data decoded, but once I had that setup correctly using CyberChef, getting the flag was easy...

  • Someone help with PHP Warning: gzuncompress(): data error when trying to decode with the script...

  • This was a bit of a mind bender. You just have to believe in yourself to get through it. And keep passing the hash.

  • What a challenge! Props to the creator as it was very well done!

    If anyone needs a guiding light through the obscurity, I am glad to lend a hand.

    Silv3rDawg23

  • Thanks for the positive feedback -- glad you guys enjoyed this one. In case you want to read my write-up on it, then see the following PDF document (password protected with the HTB flag): https://github.com/artikrh/HackTheBox/blob/master/Obscure_Forensics_Write-up.pdf

    artikrh

  • Really awesome challenge. I struggled a bit after getting the file, which I figured wouldn't be protected at all, but after that everything went fine. LOVED IT!

  • I keep getting a corrupted file. Any hints?

  • ONe of the best challenges I have ever solve. Wasn't that easy but I learnt a lot!

    Deleite

  • Fun one and not crazy hard. Really enjoyed it. Happy to give hints via DM for anyone struggling.

  • Type your comment> @artikrh said:

    Thanks for the positive feedback -- glad you guys enjoyed this one. In case you want to read my write-up on it, then see the following PDF document (password protected with the HTB flag): https://github.com/artikrh/HackTheBox/blob/master/Obscure_Forensics_Write-up.pdf

    Very nice one!

  • This was a really well-crafted challenge. Each part followed on from the last nicely as you work through it, and it all made sense. Kudos!

  • Real fun challenge thus far. I think I'm close to getting the flag but could use a hint. I don't want to spoil it for others here, is there someone I could PM for some feedback?

  • Type your comment> @sageos said:

    Real fun challenge thus far. I think I'm close to getting the flag but could use a hint. I don't want to spoil it for others here, is there someone I could PM for some feedback?

    Nvm, I found the flag. Thanks for a great challenge @artikrh I learned a lot.

  • Took the flag. Best task ever. I wish i could give @artikrh more then 1 respect :)

  • An interesting machine. The foothold is the hardest part. After you get the shell is just code understanding.

    zaBogdan

    If you need help with the boxes, pm me on Discord, zaBogdan#3458, I always forget to respond on form

  • @zaBogdan said:

    An interesting machine. The foothold is the hardest part. After you get the shell is just code understanding.

    This is the thread for Obscure, not Obscurity ;)

    clubby789

    • GCIH
      If you need help with something, PM me how far you've got already, what you've tried etc (I won't respond to profile comments, or on box release night). And remember to +respect me if I helped you ; )
  • Great challenge. easy to follow, fun to decode, and learned to use about five tools if not more. No gotcha steps, a couple red herrings, fun to think about and execute.

  • Type your comment> @zaBogdan said:

    The foothold is the hardest part.

    Absolutely! Directory fuzzing doesn't give any clue. Am I missing something?

  • Do I have to de-obfuscate the s****t.php file? Or must I use the PCAP?

    MurkMurker

  • @artikrh thank you very much for the challenge liked a lot

  • Type your comment> @NVQXE23I said:

    Do I have to de-obfuscate the s****t.php file? Or must I use the PCAP?

    You have to use both to solve, read the challenge intro again

    Bang0123

  • @artikrh Great challenge that one was fun =).

    Hack The Box

  • @artikrh i almost had no prior knowledge to php ¯_(ツ)_/¯ but the challenge helped me learn a lot . The description is well written and clear with no random guessing. So a big thank you

  • Thanks for this challenge, by far the funnest one I've done yet

  • Hey guys. I managed to decode the commands but unable to extract k**x file. Can anyone please give me nudge? Thanks in advance

  • @artikrh amazing challenge... man, I had a blast going through this, getting stuck, then realizing something and getting unstuck... Very nice! Well done!

    As a general tip, if you manage to decode the attacker's commands, try to research a bit the file type and see how you can 'open' it :) ... there's no need to 'extract' it somehow, you'll just see it there if you managed to get to that point.

    Hack The Box

    it ain't much but it's honest work

Sign In to comment.