ak1t0/wwy.md

Last active February 11, 2018 07:58

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/ak1t0/506ec0ce7913aa080e8198c0c904939a.js"></script>
Save ak1t0/506ec0ce7913aa080e8198c0c904939a to your computer and use it in GitHub Desktop.

Download ZIP

WE'RE WATCHING YOU! solution

Raw

wwy.md

WE'RE WATCHING YOU!

Harekaze CTF 2018

This problem is based on real world incident.

real IP address

Most frequent onion service misconfigurtion is opening server's port 80 and IPv4 whole scanner like Censys, shodan always scan all IPv4 addresses. So, search http://jbwocj4f64dkfiwv.onion on Censys. There is a readl IP address of onion services.

SSH fingerprint

Censys also save SSH key fingerprint. If admin is lazy, admin reuse these SSH key. So search fingerprint on Censys. There is admin's server on ohter hosting service. Go to the server, there is a profile and Twitter account. flag is on Twitter's account profile.

(postscript) Shodan doesn't work (by Adikso), Sorry.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment