[picoCTF] Flag in Flame Writeup

Thông tin chung

• Platform: picoCTF
• Category: Forensics
• Difficulty: Easy
• Description: The SOC team discovered a suspiciously large log file after a recent breach. When they opened it, they found an enormous block of encoded text instead of typical logs. Could there be something hidden within? Your mission is to inspect the resulting file and reveal the real purpose of it. The team is relying on your skills to uncover any concealed information within this unusual log. Download the encoded data here: Logs Data. Be prepared—the file is large, and examining it thoroughly is crucial .
• Hints:
  • Use base64 to decode the data and generate the image file.

Công cụ sử dụng

• base64

• CodeBeautify
• CyberChef

Walkthrough

Upload file logs.txt lên CodeBeautify

Kết quả:

Để lấy văn bản ra khỏi ảnh, có thể dùng snipping tool

7069636F4354467B666F72656E736963735F616E616C797369735F69735F616D617A696E675F65633139383466637D

Giải mã bằng CyberChef, nhấn cái đũa phép này:

Kết quả:

Flag: picoCTF{forensics_analysis_is_amazing_ec1984fc}