Hard Live

VargasIsland

80 points

22 Solves

Forensics

kcbowhunter ctflearn++ badge

Community Rating: 5.00 / 5

Headline

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur. Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

You may want to solve my MountainMan challenge before solving this.

I am providing a python script that shows the Jpeg markers and data segments within a Jpeg file to get you started solving this challenge.

Good luck!

First 10 Solvers

Rank Username
1 tenchijin
2 ebouteillon
3 Noxtal
4 Caillou
5 ahko3112
Rank Username
6 shikame
7 mamimi1773
8 evrest
9 Lia_V
10 Ntoskrnl

Comments

    • Celebrity

      Protected 0.0

      [REDACTED] This comment is only shown to users who have solved this challenge.

      • kcbowhunter ctflearn++ badge

        Protected 0.0

        [REDACTED] This comment is only shown to users who have solved this challenge.

    • Noxtal

      Protected 0.0

      [REDACTED] This comment is only shown to users who have solved this challenge.

      • kcbowhunter ctflearn++ badge

        0.0

        The encrypted payload is not one of the comments, it is hidden somewhere else in the jpeg file. Run the Jpeg1.py script I provided, not the offset to the 0XFFD9 end of image marker and compare that to the size of the file. You may also want to solve my MountainMan challenge first which has some similarity to this problem.

        • Noxtal

          Protected 0.0

          [REDACTED] This comment is only shown to users who have solved this challenge.

    • ebouteillon

      Protected 0.0

      [REDACTED] This comment is only shown to users who have solved this challenge.

      • kcbowhunter ctflearn++ badge

        0.0

        I'm not seeing any messages on Twitter to my @kcbowhunter account. I wonder if you have to send me a friend request first to send a message? But ebouteillon what you mention is not the encrypted flag... what you found is a decoy. Compare the location of the oxFFD9 EOI image marker with the size of the file. You can use the jpeg file I provided to see the location of the EIO (end of image) marker.

      • kcbowhunter ctflearn++ badge

        0.0

        I can now receive Twitter messages from anyone.

      • kcbowhunter ctflearn++ badge

        0.0

        I meant to say you can use the Jpeg1.py python script I provided to easily see the location of the 0xffd9 marker (end of image marker) in the jpeg. Compare the offset to the EOI marker with the file size. Thanks for working on my challenge!