Wednesday, April 5, 2023

HTB - Illumination

Initial Investigation & Solution

We can actually find the problem upon unzipping the challenge.


We see immediately that there is a .git folder along with what looks to be the log file!


Using git to read the log.

A token was removed as a security precaution, dig a little deeper and view the change.

 

There is the token! Looks to be base64 so simply decode and we have our flag!



 


-
Labels: ,

THM - Windows Forensics 1

Scenario One of the Desktops in the research lab at Organization X is  suspected to have been accessed by someone unauthorized. Although the...

  • THM - Opacity
    THM - Opacity Enumeration Starting Nmap 7.93 ( https://nmap.org ) at 2023-04-25 11:11 BST Nmap scan report for 10.10.87.188 Host is up (0.0...
  • THM - Windows Forensics 1
    Scenario One of the Desktops in the research lab at Organization X is  suspected to have been accessed by someone unauthorized. Although the...
  • HTB - Behind The Scenes
    Initial Investigation Upon running the application it asks us for ./challenge <password>    Let's run strings and see what we find...