QUT Whitehats CTF Misc Challenges

Misc Challenges

This blog page is for the Misc challenges on the CTF page and is likely to be updated as the new challenges are added to the CTF.

WARNING: Like all my CTF notes, this contains spoilers.

Chuck Norris - 30pts

It’s Chuck Norris

flag syntax: flag{insertflaghere}

  • Downloaded the chuck.pcap file from https://ctf.qutwhitehats.club/files/06159f05f2fec53ca602559bf422cd30/chuck.pcap?token=eyJ1c2VyX2lkIjoxMCwidGVhbV9pZCI6bnVsbCwiZmlsZV9pZCI6Mn0.XosP0g.C-a6_prdNYuWZMKwJ_KZHrF7UE4
  • Opened the file in wireshark
  • Manually reviewed the conversations, Statistics -> Conversations
  • Noticed single conversation with internal host 10.0.85.10, all other conversations were to external hosts, i.e. not the reversed ranged
  • Applied as filter ip.addr==10.0.75.102 && ip.addr==10.0.85.10
  • Manually reviewed the HTTP response data
  • Found: Hey this is a flag FLAG-GehFMsqCeNvof5szVpB2Dmjx
  • Submitted: flag{FLAG-GehFMsqCeNvof5szVpB2Dmjx}

Mr_Elliot - 100pts

Bonsoir Elliot

[Read More]