SpaceStation
50 points Medium

The SpaceStation.jpg contains the encrypted flag in the file flag.enc. The flag is encrypted using openssl and the AES algorithm. The iv and key used for the openssl encryption command are opcodes in an executable named Bangalore that is also hidden in SpaceStation.jpg.

You will need to know just a little bit about crypto, executable file formats and assembler to solve this challenge... objdump is your friend :-)

Needed info is provided in the embedded readme file.

SpaceStation.jpg
Flag
Forensics ยท kcbowhunter
172 solves
Rating 4.52
5
4
3
2
1
Must solve to rate

Discussion

avatar
ntdptit

6 hours ago

Reply Share

AI can solve this challenge!!!!

0
avatar
gdragon

2 weeks ago

Reply Share
Protected
0
avatar
tonmam288

3 weeks ago

Reply Share

thanks for showing me how useful objdump is. Hint use objdump and its functions to read Bangalore. Learn how to use more functions of objdump to read sections in Readme file. That is really key and iv. tks for this challenge

0
avatar
tonmam288

3 weeks ago

Reply Share
Protected
0
avatar
mostafatiger

7 months ago

Reply Share

For future solvers: You need to learn more about AES 256 and do some exercises to solve this challenge. It's very nice challenge :)

0
avatar
kcbowhunter

6 months ago

Reply Share

Thanks!

0
avatar
AbdulrahmanGamil66

9 months ago

Reply Share

easiest -d -j .data Bangalore

0
avatar
fly1n

9 months ago

Reply Share
Protected
0
avatar
Smiley9471

1 year ago

Reply Share

i can't i've tried everything

0
avatar
Mujtab4x01

1 year ago

Reply Share

i cant find the .data !!!!! i found the key but the iv is still cant find it, any help ?

edited:

after a day, i found the .data and the .text

tried to openssl it and still bad decrypt

0
avatar
AbdulrahmanGamil66

9 months ago

Reply Share

objdump -d -j .data may help

0