CTF-BR! – f50 – SSL Sniff 1

f50 – SSL Sniff 1

Posted 9 de dezembro de 2015

> Hack Dat Kiwi > Hack Dat Kiwi 2015 > f50 - SSL Sniff 1

We received a network capture file of an HTTPS request that was MITMd. Try to find the culprit.

Solução

Esse foi muito easy, não precisou nem analisar no Wireshark.

root@kali:~/Downloads# strings dump.pcap 
	localhost
Key-Is-dUs1mKl4
Ashburn1
Kiwi1
	Kiwi Lord1
	localhost1
info@localhost0
150902181829Z
151002181829Z0
Key-Is-dUs1mKl4
Ashburn1
Kiwi1
	Kiwi Lord1
	localhost1
info@localhost0
U(hu
{"vv
GasR\0%8iM<
0FTa
B)7-
Pk9/
8ZB%
(J=TG
/P3>
p	4E#Z]
Jvr?
bM 5
9SEx
N'of
IH#E
9L	i
<DVh
O8a:
|LE3S
16_+
; kW
N56>%GZ
L53!
Zn$6&j
>|.D
d,4`2&8?7
klxQ
N56>&
k0/$
N56>'

root@kali:~/Downloads# strings dump.pcap

localhost

Key-Is-dUs1mKl4

Ashburn1

Kiwi1

Kiwi Lord1

localhost1

info@localhost0

150902181829Z

151002181829Z0

Key-Is-dUs1mKl4

Ashburn1

Kiwi1

Kiwi Lord1

localhost1

info@localhost0

U(hu

{"vv

GasR\0%8iM<

0FTa

B)7-

Pk9/

8ZB%

(J=TG

/P3>

p 4E#Z]

Jvr?

bM 5

9SEx

N'of

IH#E

9L i

<DVh

O8a:

|LE3S

16_+

; kW

N56>%GZ

L53!

Zn$6&j

>|.D

d,4`2&8?7

klxQ

N56>&

k0/$

N56>'

Flag

Key-Is-dUs1mKl4

Criado por

RTFM