Matrioshka

I’m stuck in matrioshka3.zip Millions of zips and lots of txt but no idea how to continue… Can anybody give me some hint to continue with it, please?

EDIT:

Forget it I have matrioshka4

SOLVED!

GPG symmetrically encrypted data (AES cipher)

I don’t know how to proceed now? I’ve tried recovering the pass with john but no luck.

Any hints??

Thanks!!

EDIT:

Forgot to remember the simple things. Thanks phneutro for the hint!

SOLVED!

So super newbie, got to Matrioshka3, but can’t go any further. Been on this for dayyyyyyyyyyyys now. Can anyone pm me the answer for this stage please?? Thanks :blush:

Stuck on matrioshka4. Brute forcing the supposedly gpg encrypted data seems a dead end after having tried various word lists. Any advice?

@Dethread said:
Stuck on matrioshka4. Brute forcing the supposedly gpg encrypted data seems a dead end after having tried various word lists. Any advice?

As far as i remember, (almost) all passwords are hidden or at least hinted at in the files. Always try to squeeze everything out of every (unique) file you come across.

Got it. All the right things in front of your eyes, remember this.
PM me if you stuck.

I got matrioshka4 but i don’t know what to do after

Awesome challenge!

@PaoloM DM me for a hint if needed

Hi guys, i got so far the fake flag and some hexadecimals, i tried some conversions but i cant figure it out… can you give me some hints about that? Here or in DM if you prefer

@psycoshadw what could you do to find out what the hex represents? Feel free to DM for further hints.

I’m struck after matrioshka4 . I have the gpg encrypted file but how to get the password to decrypt it.

I got the fake flag, any tips on how to proceed with gpg encrypted.

I’m stuck in layer 4, I already got all strings from that file, but I dont know that to do, I tried to convert it to ASCII and more, but nothing. Any hint?

.

I spent most of my time on this challenge thinking I was missing something, but it turned out to be a hard-to-diagnose issue with gpg.

Bottom line, careful about gpg decrypt after su! For more info: Can't enter passphrase in su session.

Hope this helps pull someone else up from the rabbit hole…

Ive got the HTB{fake flag} from m4, however i am lost after this, could someone please DM me a hint, my head hurts :slight_smile:

Hey I solved the challenge but I had to extract the huge data, could anyone tell me how to do it without the extraction part? Thanks :smiley:

I am stuck at matrioshka1. I have files with Hex-values and matrioshka1. But if I binwalk the files with -dd of -e I keep getting matrioshka1. Which is 210 bytes.

@NVQXE23I said:

I am stuck at matrioshka1. I have files with Hex-values and matrioshka1. But if I binwalk the files with -dd of -e I keep getting matrioshka1. Which is 210 bytes.

…what else does binwalk report that the file contain beside the image itself?
If your tools insist on selecting the wrong thing, why not rip it out?