Obscure Challenge

I managed to decode the commands and obtain an interesting file, but I'm not sure how to proceed. A nudge from any of the solvers out there would be appreciated.

Thanks

Tagged:
«1

Comments

  • Type your comment> @n3m0 said:

    I managed to decode the commands and obtain an interesting file, but I'm not sure how to proceed. A nudge from any of the solvers out there would be appreciated.

    Thanks

    I'm in the same spot. I could obtain the file and its h**h. I think we have to use bruteforce. Someone who can confirm that this is the right path?

  • You should have obtained a sensitive file. To view its contents, you should supply a credential. Since you don't have credentials, you have to obtain them somehow. Our old friend john may help.

  • Just analyze the facts, and reverse it to obtain that file. Thanks to @Angel235 .
    pm me if you need help. however it is great challenge and everything is obvious just follow the flow from pcap file.

    Arrexel

  • Thank you @davidlightman....that was great hint!

  • Fun little challenge. It took me some time too get the data decoded, but once I had that setup correctly using CyberChef, getting the flag was easy...

  • Someone help with PHP Warning: gzuncompress(): data error when trying to decode with the script...

  • This was a bit of a mind bender. You just have to believe in yourself to get through it. And keep passing the hash.

  • What a challenge! Props to the creator as it was very well done!

    If anyone needs a guiding light through the obscurity, I am glad to lend a hand.

    Silv3rDawg23

  • Thanks for the positive feedback -- glad you guys enjoyed this one. In case you want to read my write-up on it, then see the following PDF document (password protected with the HTB flag): https://github.com/artikrh/HackTheBox/blob/master/Obscure_Forensics_Write-up.pdf

    artikrh

  • Really awesome challenge. I struggled a bit after getting the file, which I figured wouldn't be protected at all, but after that everything went fine. LOVED IT!

  • I keep getting a corrupted file. Any hints?

  • ONe of the best challenges I have ever solve. Wasn't that easy but I learnt a lot!

    Deleite

  • Fun one and not crazy hard. Really enjoyed it. Happy to give hints via DM for anyone struggling.

  • Type your comment> @artikrh said:

    Thanks for the positive feedback -- glad you guys enjoyed this one. In case you want to read my write-up on it, then see the following PDF document (password protected with the HTB flag): https://github.com/artikrh/HackTheBox/blob/master/Obscure_Forensics_Write-up.pdf

    Very nice one!

  • This was a really well-crafted challenge. Each part followed on from the last nicely as you work through it, and it all made sense. Kudos!

  • Real fun challenge thus far. I think I'm close to getting the flag but could use a hint. I don't want to spoil it for others here, is there someone I could PM for some feedback?

  • Type your comment> @sageos said:

    Real fun challenge thus far. I think I'm close to getting the flag but could use a hint. I don't want to spoil it for others here, is there someone I could PM for some feedback?

    Nvm, I found the flag. Thanks for a great challenge @artikrh I learned a lot.

  • Took the flag. Best task ever. I wish i could give @artikrh more then 1 respect :)

  • An interesting machine. The foothold is the hardest part. After you get the shell is just code understanding.

    zaBogdan

    If you need help with the boxes, pm me on Discord, zaBogdan#3458, I always forget to respond on form

  • @zaBogdan said:

    An interesting machine. The foothold is the hardest part. After you get the shell is just code understanding.

    This is the thread for Obscure, not Obscurity ;)

    clubby789

    • GCIH
      If you need help with something, PM me how far you've got already, what you've tried etc (I won't respond to profile comments). And remember to +respect me if I helped you ; )
  • Great challenge. easy to follow, fun to decode, and learned to use about five tools if not more. No gotcha steps, a couple red herrings, fun to think about and execute.

  • Type your comment> @zaBogdan said:

    The foothold is the hardest part.

    Absolutely! Directory fuzzing doesn't give any clue. Am I missing something?

  • Do I have to de-obfuscate the s****t.php file? Or must I use the PCAP?

    MurkMurker

  • @artikrh thank you very much for the challenge liked a lot

  • Type your comment> @NVQXE23I said:

    Do I have to de-obfuscate the s****t.php file? Or must I use the PCAP?

    You have to use both to solve, read the challenge intro again

    Bang0123

  • @artikrh Great challenge that one was fun =).

    Hack The Box

  • @artikrh i almost had no prior knowledge to php ¯_(ツ)_/¯ but the challenge helped me learn a lot . The description is well written and clear with no random guessing. So a big thank you

  • Thanks for this challenge, by far the funnest one I've done yet

  • Hey guys. I managed to decode the commands but unable to extract k**x file. Can anyone please give me nudge? Thanks in advance

  • @artikrh amazing challenge... man, I had a blast going through this, getting stuck, then realizing something and getting unstuck... Very nice! Well done!

    As a general tip, if you manage to decode the attacker's commands, try to research a bit the file type and see how you can 'open' it :) ... there's no need to 'extract' it somehow, you'll just see it there if you managed to get to that point.

Sign In to comment.