Easy Live

Forensics 101

30 points

10095 Solves

Forensics

Easy

intelagent moderator badge ctflearn++ badge

Community Rating: 4.37 / 5

Think the flag is somewhere in there. Would you help me find it? https://mega.nz/#!OHohCbTa!wbg60PARf4u6E6juuvK9-aDRe_bgEL937VO01EImM7c

First 10 Solvers

Rank Username
1 alexkato29
2 aglickman
3 midfekar
4 ross3102
5 niclev20
Rank Username
6 emperorlepone
7 dknj11902
8 javier
9 voidmercy
10 limyunkai19

      • Nayan

        yea thats what i did too

  • gabrielcampos

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • pizzamonkey00

    Comments saying you need linux simply aren't true. There's plenty of open source software that does Hex Dumps (I don't think that should be a spoiler since that should be the first thing you do anyway)

  • thang_ngn

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • Theriphunters

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • bong_chek

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

    • intelagent moderator badge ctflearn++ badge

      Did u already solve it? If the challenge is green and it says “solved” then u are done.

  • roylt84

    agreed this one was easy, no special operating system needed.

  • thepoppycat

    more straightforward than I thought. Still awesome tho

  • thepoppycat

    more straightforward than I thought. Still awesome tho

  • alwill375

    Is this link supposed to show a big m in a cloud ..... is that it i am a noob so , a bit help would do

    • qwoptropica

      The link takes you to an image sharing site, download the image to start finding the flag.

  • sharkmagic07

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • mang_0x01

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • n0x8

    mega.nz link not working in my country ( india )

  • sumanth

    If you are using OS X catalina you cannot find the output. The file get's converted as soon as it get's downloaded. Try linux or Windows.

  • sumanth

    Sorry for the above comment. It only happens when you donwload via chrome on OSX

  • erictflearn

    Doesn't work with Chrome on Windows 10. Suggest FireFox.

  • pjrox

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • pnghai

    I found that the guide here is very helpful for beginners

    • pnghai

      https://trailofbits.github.io/ctf/forensics/

  • Fl4Gg3R

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • PrankSinatra

    easy if you know about strings for searching text in binaries

  • chetak01

    only strings needed in executable file

  • ZizuPM

    Buena practica para el uso de Strings

  • cardynlsyn ctflearn++ badge

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • skill347

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • panbulwa

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • panbulwa

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • eyesan

    As a first challenge, ngl, its pretty easy

  • Judas

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • RedFox0x20

    Very simple challenge, multiple ways to find the flag. [Don't read comments, someone spoiled it.]

  • Wojtek

    ciekawe że w wordpad.exe nie widać a w winword wiadć(chyba że szukałem nie flag a ctf) -ale ok fajne :)

  • hurek

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.