Follow me on Instagram
Never got bored of this Never got bored of this

Never got bored of this ...

18 2
Now that we can't go into Malaysia, I'm really cra Now that we can't go into Malaysia, I'm really craving this...

Now that we can't go into Malaysia, I'm really craving this... ...

9 9
Someone reminded me that I don't need many friends Someone reminded me that I don't need many friends. I just need a few good brothers that'll go out of their comfort zone just for you.

Someone reminded me that I don't need many friends. I just need a few good brothers that'll go out of their comfort zone just for you. ...

13 11
Rediscovering my music with the Creative Outlier G Rediscovering my music with the Creative Outlier Gold w/ software Super X-FI #maya329

Rediscovering my music with the Creative Outlier Gold w/ software Super X-FI #maya329 ...

6 0
Did anyone say pins? #maya329 Did anyone say pins? #maya329

Did anyone say pins? #maya329 ...

11 4
New team? New team?

New team? ...

6 0
When you're out of games to play, you break out th When you're out of games to play, you break out the Jenga and up the stakes.

When you're out of games to play, you break out the Jenga and up the stakes. ...

15 4
We gon be back real soon. Heads up! Search for us We gon be back real soon. Heads up! Search for us on Spotify! #theprinsepcrew

We gon be back real soon. Heads up! Search for us on Spotify! #theprinsepcrew ...

18 2
There's still empty spaces... There's still empty spaces...

There's still empty spaces... ...

13 5
... ...

... ...

38 4
Reality is but illusion. Stickers now available! L Reality is but illusion. Stickers now available! Link in bio! #maya329

Reality is but illusion. Stickers now available! Link in bio! #maya329 ...

13 2
It's been awhile but I felt like I should be honin It's been awhile but I felt like I should be honing my writing skills once more. I'm starting to do writeups on CTF events. You can find them under blog > GCTF 2019 Writeups. Link in bio.

It's been awhile but I felt like I should be honing my writing skills once more. I'm starting to do writeups on CTF events. You can find them under blog > GCTF 2019 Writeups. Link in bio. ...

8 1
It's finally ready. Link in bio. It's finally ready. Link in bio.

It's finally ready. Link in bio. ...

5 0
Together, let me hear you say "Throat Fk'd"! Together, let me hear you say "Throat Fk'd"!

Together, let me hear you say "Throat Fk'd"! ...

13 1
什麼情況,現在? 什麼情況,現在?

什麼情況,現在? ...

13 2
Usually people sick receive fruit basket, suppleme Usually people sick receive fruit basket, supplements, etc. I sick, I get Sake. #我不会

Usually people sick receive fruit basket, supplements, etc. I sick, I get Sake. #我不会 ...

30 1
She had a cocktail in her hand and ribbon in her h She had a cocktail in her hand and ribbon in her hair 🍸🎉

She had a cocktail in her hand and ribbon in her hair 🍸🎉 ...

15 1
Natural habitat. I forgot how fun this was. Natural habitat. I forgot how fun this was.

Natural habitat. I forgot how fun this was. ...

18 1
Happiness is not having to set the alarm for the n Happiness is not having to set the alarm for the next morning. Happy Saturday!😄

Happiness is not having to set the alarm for the next morning. Happy Saturday!😄 ...

16 2
I finally made it all the way to Friday to find ou I finally made it all the way to Friday to find out that I have to work on Saturday!🙍

I finally made it all the way to Friday to find out that I have to work on Saturday!🙍 ...

14 3
Back to Top
Image Alt

Google CTF 2019 // #02 Satellite

Writeup Series

Google CTF 2019 // #02 Satellite

Placing your ship in range of the Osmiums, you begin to receive signals. Hoping that you are not detected, because it’s too late now, you figure that it may be worth finding out what these signals mean and what information might be “borrowed” from them. Can you hear me Captain Tim? Floating in your tin can there? Your tin can has a wire to ground control?

Find something to do that isn’t staring at the Blue Planet.

Downloading the attachment yields two files again.

  • init_sat [3.2MB]
  • README.pdf [2.7MB]

The PDF contains the follow text and image.

Following the instructions of the image, I did a quick file init_sat to identify what kind of application it is. Running a strings on the init_sat ELF file returns nothing useful. So I booted up Kali to run the file within terminal.

The application requested a satellite name, and I entered in osmium, considering it’s from the image in the PDF file and it ran successfully giving us a Google Doc link (https://docs.google.com/document/d/14eYPluD_pi3824GAFanS29tWdTcKxP_XUxx7e303-3E).

Opening the Google Doc link gives us a random string of alphanumerical text.

VXNlcm5hbWU6IHdpcmVzaGFyay1yb2NrcwpQYXNzd29yZDogc3RhcnQtc25pZmZpbmchCg==

it seemed to me like base64 so I ran a quick decode and got the following.

Username: wireshark-rocks
Password: start-sniffing!

It seemed quite clear to us that we should be running wireshark while running init_sat. And that is exactly what I did next. One specific IP seemed interesting to me, I did some reverse lookup, but I noticed later that the flag is already in one of the packets to that IP as seen below:

“Username: brewtoot password: CTF{4efcc72090af28fd33a2118985541f92e793477f} 166.00 IS-19 2019/05/09 00:00:00
Swath 640km Revisit capacity twice daily, anywhere Resolution panchromatic: 30cm multispectral: 1.2m
Daily acquisition capacity: 220,000km² Remaining config data written to: https://docs.google.com/document/d/14eYPluD_pi3824GAFanS29tWdTcKxP_XUxx7e303-3E”

And there we have it. Our second flag.

Post a Comment