Posts Brixel CTF - OSINT
Post
Cancel

Brixel CTF - OSINT

Jan 4 2021-01-04T00:00:00+05:30 by Amrita Nair
Updated Jan 5 2021-01-05T01:06:19+05:30 3 min

My team Area{51} and I participated in a 8 day CTF organised by hackerspace brixel. There were some really good challenges, I loved the OSINT category as they were the most intriguing ones. :P

Following are the solutions for the OSINT challenges I was able to solve.

A quick search

Description

Here’s an easy one to start off the OSINT challenges.

I took this photo but forgot the name of this tower.

Can you give me the name?

I remember it started with an E.

Resources

The following image was provided.

Solution

On a quick google search, I found that it is the Eben-Ezer Tower.

Flag

brixelCTF{Eben-Ezer}

Manhunt #1

Description

My dad is pissed off! He was told by my mother NOT to buy ice cream but he did anyway when she wasn’t looking.

Someone posted this picture on the internet and my mother saw it, man, he is in so much trouble!

I want to know WHO posted this picture, let’s hunt this guy down!

Resources

Solution

The first thing I did (and normally do) was do exiftool on the image.

We can see that the owner is Johnny Dorfmeister, which gives us the flag.

Flag

brixelCTF{Johnny_Dorfmeister}

Manhunt #2

Description

Ah, now you know his name, good. Can you tell me the name of his last employer?

Solution

From the previous challenge, we know that his name is Johnny Dorfmeister. On googling his name, we found that he has a LinkedIn profile.

From where we can find his last employer - pishapasha.

Flag

brixelCTF{pishapasha}

Manhunt #3

Description

Ah, now you know his name, good. Can you tell me his favorite food?

Solution

We looked if he had any other social media, and found he has a Twitter and an Instagram.

Going through his Instagram, the first post had a caption, from which we could tell his favorite food is macaroni.

Flag

brixelCTF{macaroni}

Manhunt #5

Description

What is he talking about with that deleted page on his twitter account? can you retrieve it somehow?

Solution

From his tweets we can tell that he has a blog and we need to look for the deleted page. I looked into the Wayback Machine for any snapshots, and we could find one from 15th January 2019.

Flag

brixelCTF{w@yb@ack!}

Manhunt #6

Description

So he’s a webdesigner huh? I wonder what his customers have to say about his work. In english please!

Solution

From his website http://www.howitshould.be/, we can find some customer reviews, on translating them, we find that one of them has the flag

Flag

brixelCTF{poetry}

Manhunt #7

Description

Can you tell me where he lives? Then I can drop some kind words in his mailbox!

Solution

In his website, we couldn’t find any of his personal information except for a form in the contact page. On filling and submitting the form, we get the address.

Flag

brixelCTF{melkvoetstraat_48_3500_hasselt}

Manhunt #8

Description

so now you know where he lives, can you tell me what was written on his wall in 2013?

Solution

On searching for the location in Google Maps, we found the street view for the address. It showed that it had one street view from 2013.

On opening it and looking at the wall, we get the flag.

Flag

brixelCTF{just_married}

Looking at the problems now, they seem very easy, but trust me, during the CTF they were not. 😂

ctf
This post is licensed under CC BY 4.0 by the author.
Recent Update
Trending Tags
ctf java other
Contents

VulnCon CTF 2020

-

Comments powered by Disqus.

Trending Tags

ctf java other