Medium Live

A CAPture of a Flag

50 points

1729 Solves

Forensics

Medium

hazzy

Community Rating: 4.38 / 5

This isn't what I had in mind, when I asked someone to capture a flag... can you help? You should check out WireShark. https://mega.nz/#!3WhAWKwR!1T9cw2srN2CeOQWeuCm0ZVXgwk-E2v-TrPsZ4HUQ_f4

First 10 Solvers

Rank Username
1 vidar
2 kronos
3 qbert513
4 santy
5 thekidofarcrania moderator badge
Rank Username
6 zaknafein
7 pedro
8 bockrockman
9 CatPawn
10 redcode

  • FelixGB

    Was my first time opening WireShark. Then had to use the web to figure out the last part :(

  • sharkmagic07

    took me a little time but good to get start with wire shark.

  • QuintusJoyal

    You don't actually need Wireshark, just open as text.

  • R4GN4R

    Any hint? I have searched all http requests,but not found the flag...

  • c0conut

    Track the stream to find useful message

  • ideliamn

    i dont think it belong to easy category

  • Binder

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • ghostblade

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • ghostblade

    i opened .cap file from wireshrk and i dont get anything

  • cardynlsyn ctflearn++ badge

    Really challenging. Had to call in help from CTF friends.

  • Jumpah94

    Quite hard, but doable (but not easy, at least medium IMO) Hint1: TG9hZCB0aGUgZG93bmxvYWRlZCBmaWxlIGluIHdpcmVzaGFyaw== Hint2: TG9vayBmb3IgR0VUIHBhY2thZ2VzIChwYXkgYXR0ZW50aW9uIHRvIHRoZSBtZXNzYWdlcykg Hint 3: VGhlIG1lc3NhZ2UgaXMgQmFzZTY0IGVuY29kZWQ=

  • keram

    Really hard for beginners

  • panbulwa

    Wasted too much time on this, tried to many things and tools... What an ungrateful task :p

  • Xelpip

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • sgt787

    God manner of learning either linux command or wire shark

  • ak99

    How did you think of seraching at the msg field ?

  • ak99

    How did you think of seraching at the msg field ?

  • Panics

    to many request packet .... actually i'dk where's flag , i just opening this file on notepad and find word like a hash (base64 / sha / other)