Easy Live

Forensics 101

30 points

12363 Solves

Forensics

Easy

intelagent moderator badge ctflearn++ badge

Community Rating: 4.38 / 5

Think the flag is somewhere in there. Would you help me find it? https://mega.nz/#!OHohCbTa!wbg60PARf4u6E6juuvK9-aDRe_bgEL937VO01EImM7c

First 10 Solvers


      • Nayan

        yea thats what i did too

  • gabrielcampos

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • pizzamonkey00

    Comments saying you need linux simply aren't true. There's plenty of open source software that does Hex Dumps (I don't think that should be a spoiler since that should be the first thing you do anyway)

  • thang_ngn

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • Theriphunters

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • bong_chek

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

    • intelagent moderator badge ctflearn++ badge

      Did u already solve it? If the challenge is green and it says “solved” then u are done.

  • roylt84

    agreed this one was easy, no special operating system needed.

  • thepoppycat

    more straightforward than I thought. Still awesome tho

  • thepoppycat

    more straightforward than I thought. Still awesome tho

  • alwill375

    Is this link supposed to show a big m in a cloud ..... is that it i am a noob so , a bit help would do

    • qwoptropica

      The link takes you to an image sharing site, download the image to start finding the flag.

  • sharkmagic07

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • mang_0x01

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • n0x8

    mega.nz link not working in my country ( india )

  • sumanth

    If you are using OS X catalina you cannot find the output. The file get's converted as soon as it get's downloaded. Try linux or Windows.

  • sumanth

    Sorry for the above comment. It only happens when you donwload via chrome on OSX

  • erictflearn

    Doesn't work with Chrome on Windows 10. Suggest FireFox.

  • pjrox

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • lalattyak

    I used cyberchef because I was on a mac

  • pnghai

    I found that the guide here is very helpful for beginners

    • pnghai

      https://trailofbits.github.io/ctf/forensics/

  • Fl4Gg3R

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • PrankSinatra

    easy if you know about strings for searching text in binaries

  • chetak01

    only strings needed in executable file

  • ZizuPM

    Buena practica para el uso de Strings

  • cardynlsyn ctflearn++ badge

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • skill347

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • panbulwa

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • panbulwa

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • eyesan

    As a first challenge, ngl, its pretty easy

  • judith

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • RedFox0x20

    Very simple challenge, multiple ways to find the flag. [Don't read comments, someone spoiled it.]

  • Wojtek

    ciekawe że w wordpad.exe nie widać a w winword wiadć(chyba że szukałem nie flag a ctf) -ale ok fajne :)

  • hurek

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • Flower

    I love this kind of stuff <3

  • M7B4

    Hint: open in notepad or terminal ;)

  • dgcarti

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • T0x1c-

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • sgt787

    If you know linux you will be okay

  • d3stroy3r ctflearn++ badge

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • cdblish3

    easy, for a noob, feeling good about myself.

  • _Z3R0_

    Took me a while but I eventually got it.

  • adam45

    i completed it in just 2 minutes

  • __Senku__

    it was a easy one actually took a lot time to solve for me

  • Killersprout

    Binary Ninja has a free trial version that last 25 mins per session. Used it to find the flag.

  • jannzz

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • Eris1976

    con que empiezo?? soy nueva y no tengo ni idea de que hacer :(

  • ashish_pondit

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • pspice2000

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.