Attack Analysis: Difference between revisions

From Pessin randon wiki
Newer edit →
VisualWikitext
Created page with "===Description=== There was an attack against the web server. Directory and basic auth brute forcing occurred. 100pts ===Question=== Analyze the packet capture file to find out whitch user had a weak password that allowed the hackers to authenticate. Password is the flag. ===Solution=== I only used a very lazy, but in this case effective, solution to this problem. Since I knew that the answer was likely to be in ctftech format I just manually searched for login attempt..."
(No difference)

Revision as of 10:57, 30 September 2022

Description

There was an attack against the web server. Directory and basic auth brute forcing occurred.

100pts

Question

Analyze the packet capture file to find out whitch user had a weak password that allowed the hackers to authenticate.

Password is the flag.

Solution

I only used a very lazy, but in this case effective, solution to this problem. Since I knew that the answer was likely to be in ctftech format I just manually searched for login attempts. I did a whireshark search filtered by the http.authorization parameter. I then quickly just scrolled through the packages until I found the right package.

Tools

  • Wireshark

Flag

ctftech{passwords-r-weak}

Retrieved from "https://wiki.pessinurmi.com/index.php?title=Attack_Analysis&oldid=296"