Safe-U
Safe-U
##Challenge Name: Safe-U
Category: OSINT/Misc
Points: 306
Solves: 118
###Challenge Description
This year, Safe-U presents a new CTF designed to challenge the most agile minds in cybersecurity.
Get ready for an adventure full of hidden tracks, mysterious passwords, and intriguing archives.
It begins in the account of X, where Hernan_Eko20 has left a trail of enigmas waiting to be solved.
Hope the best!
###Approach
Step 1: Analyze Hernan_Eko20’s Account
- >
The account contains 4 posts:
Post 1:
"First post" (no useful information).
Post 2:
"I just realized that it's been 201 days since my last birthday... only 165 days until I turn 30. Let's enjoy the rest of my 29! 🥳🥳🥳"
- >Posted on October 10, 2024 (IST).
- >Calculations:
- >201 days prior to October 10, 2024, is March 21, 2024 (29th birthday).
- >Birth year: 1995 (turns 30 in 2025).
- >Potential password: 22031995 (DDMMYYYY format).
Post 3:
Mentions a weak password that can be cracked in 2ms.
Post 4:
Indicates a file uploaded using
tosftp
.admin@200.58.100.246Screenshot of Account Posts:
Posts Screenshot
Posts Screenshot Continued
Step 2: Crack the Password
- >Used rockyou.txt to confirm the password:
22031995.
Step 3: Access the Server
- >
Logged in to the server using:
bashsftp admin@200.58.100.246 - >
Ran
and found als -la
file..privado - >
Downloaded the directory using:
bashget -r .privadoScreenshot of Server Login and Directory Listing:
Server Screenshot
Step 4: Extract the Encrypted ZIP File
- >
Navigated into the
directory..privado - >
Found a
file.flag.zip - >
Used
to generate a hash for the ZIP file.zip2johnScreenshot of ZIP Extraction:
ZIP Hash Extraction
Step 5: Crack the ZIP File Password
- >Cracked the hash using
with thejohn
wordlist.rockyou.txt - >Found the passphrase:
november.
Step 6: Extract the Flag
- >
Extracted the ZIP file using:
bash7z x flag.zip - >
Revealed the flag.
Screenshot of Flag Extraction:
Flag Extraction Screenshot
###Flag
EKO{SAFE-U}