Attack Analysis

From Pessin randon wiki
Revision as of 10:58, 30 September 2022 by Exf (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Task + flag
Wireshark packet

Description

There was an attack against the web server. Directory and basic auth brute forcing occurred.

100pts

Question

Analyze the packet capture file to find out whitch user had a weak password that allowed the hackers to authenticate.

Password is the flag.

Solution

I only used a very lazy, but in this case effective, solution to this problem. Since I knew that the answer was likely to be in ctftech format I just manually searched for login attempts. I did a whireshark search filtered by the http.authorization parameter. I then quickly just scrolled through the packages until I found the right package.

Tools

  • Wireshark

Flag

ctftech{passwords-r-weak}

Retrieved from "https://wiki.pessinurmi.com/index.php?title=Attack_Analysis&oldid=299"