Day 03 - Evil Elf
Date: 26, May, 2021
Author: Dhilip Sanjay S
Download the pcap file.
Open it using Wireshark.
Whats the destination IP on packet number 998?
Answer: 63.32.89.195
What item is on the Christmas list?
Answer: ps4
Steps to Reproduce:
We can't find useful information in SSL encrypted packet.
So look for telnet protocol (Unencrypted)
You'll obtain 3 packets.
Open the Telnet data of Packet 2255 and you'll find:
Crack buddy's password!
Answer: rainbow
Steps to Reproduce:
Open the Telnet Data of Packet 2908
You'll find the contents of /etc/shadow file.
Copy and save the hash of buddy. (It is sha512 hash)
Use john or hashcat to crack the hash
Last updated