Attack Analysis

From Pessin randon wiki
Revision as of 10:57, 30 September 2022 by Exf (talk | contribs) (Created page with "===Description=== There was an attack against the web server. Directory and basic auth brute forcing occurred. 100pts ===Question=== Analyze the packet capture file to find out whitch user had a weak password that allowed the hackers to authenticate. Password is the flag. ===Solution=== I only used a very lazy, but in this case effective, solution to this problem. Since I knew that the answer was likely to be in ctftech format I just manually searched for login attempt...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Description

There was an attack against the web server. Directory and basic auth brute forcing occurred.

100pts

Question

Analyze the packet capture file to find out whitch user had a weak password that allowed the hackers to authenticate.

Password is the flag.

Solution

I only used a very lazy, but in this case effective, solution to this problem. Since I knew that the answer was likely to be in ctftech format I just manually searched for login attempts. I did a whireshark search filtered by the http.authorization parameter. I then quickly just scrolled through the packages until I found the right package.

Tools

  • Wireshark

Flag

ctftech{passwords-r-weak}

Retrieved from "https://wiki.pessinurmi.com/index.php?title=Attack_Analysis&oldid=296"