Skip to content

Snowboard (CTF Learn)

Forensics

Challengeā€Šā€”ā€ŠSnowboardā€Šā€”ā€ŠCTFlearnā€Šā€”ā€ŠCTF Practiceā€Šā€”ā€ŠCTF Problemsā€Šā€”ā€ŠCTF Challenges

Find the flag in the jpeg file. Good Luck!

Snowboard.jpg

Don’t forget we always work inside VMsĀ .

So we’ll upload the file there and thenĀ :

We took the download link and used wget to download theĀ :

I always change the names to something that is closest to what we do, so I changed the name of the file to the name of the task that we are doing nowĀ , Now let’s get startedĀ :

Here we define the file typeĀ , There are a lot of interesting thingsĀ :

Let’s search using stringsĀ :

The command **strings Snowboard.jpg | head -n 20** is used to extract printable characters (human-readable strings) from the binary content of the file "Snowboard.jpg" and display the first 20 lines of those strings.

Let’s break down the components of the command:

  • **strings Snowboard.jpg**: This part of the command runs the strings command on the file "Snowboard.jpg". The strings command looks for sequences of printable characters in binary files.

  • **|**: This is a pipe symbol, which is used to pass the output of the command on its left as input to the command on its right.

  • **head -n 20**: This part of the command takes the output of the strings command and displays only the first 20 lines using the head command.

The command **echo "Q1RGbGVhcm57U2tpQmFuZmZ9Cg==" | base64 --decode** decodes the base64-encoded string "Q1RGbGVhcm57U2tpQmFuZmZ9Cg==" using the **base64** command. Here's a breakdown of the components:

  • **echo "Q1RGbGVhcm57U2tpQmFuZmZ9Cg=="**: This part of the command echoes the base64-encoded string to the standard output.

  • **|**: This is a pipe symbol, which is used to pass the output of the command on its left as input to the command on its right.

  • **base64 --decode**: This part of the command uses the base64 command with the --decode option to decode the base64-encoded string.

You can also use https://cyberchef.org/ to extract theĀ flag

Here is the flag\ See you soon in other reports….!!

Abdelwahab_Shandy

AS_Cyber