Google CTF 2016: No Big Deal

John Hammond · Intermediate ·📰 AI News & Updates ·10y ago

Key Takeaways

Solves No Big Deal challenge in Google CTF 2016 using Wireshark and NBD protocol analysis

Full Transcript

hey what's going on everybody my name is John Hammond welcome to another uh Google capture the flag video WR up uh this one I want to show off is the no big deal challenge uh another simple one 50 points a lot of people solved it because again it's not that hard it just took a lot of wheelpower to actually like look through all that stuff prompt is sometimes the answer is immediately obvious sometimes it's obscured and find the answer in here which is just a PAB file so I have that downloaded we'll open it up right now once I navigate Unity Google uh what am I doing no big deal fire this up in wire shark because it's just a giant peap file once you extract it so I this this is a big file like I tried to run strings on it to see if there was anything like it would poke out and find but it took a long time for strings to actually finish because there's like so much stuff in here so I ended up just like poking through in wi shark trying to peruse through the packet see if I found anything interesting I try to export like information I try to export objects and data TCP looked like it had some stuff first couple of first couple of packets had like this Hint it looks like in the data where it says NBD magic again I'm assuming the whole no big deal thing I have opt I don't know what that is and I thought I saw export somewhere yeah export down here again I don't know if you can see this I'm sorry but um more stuff that I found was uh this NBD protocol which I thought earlier okay NBD no big deal that same hint NBD magic I felt like that might have been pretty interesting so I actually sorted through that in wi shark and BD and I found while I was looking through here again I was just perusing looking at the data because it looked like some of these had some pretty hefty packet like they had length and they had data that came with it so added that as a column if you don't know how to do that in wi shark what you can do you can right click on the on the columns you can go to column preferences and you can like add or remove anything you want in here you can set up a name for it determine what type it is and select like a source Port Source address other information you want to specify if it's not like in this giant list you can rightclick any part of like an actual uh frame or disassembled piece of information that wire Shar found later on like if you want to add data you could rightclick it and select apply as column and then it'll it'll get added up here so anyway some of the interesting things I found were in actually this packet right here packet 76 and uh I was honestly just perusing through the data section I was like scrolling down through a lot of these just trying to find out what it had and in this one I just I might have got lucky I don't know but this string like this q1r G blah blah blah that looked very out of place cuz you know you get a certain eye for like base 64 encoded stuff and this just looked like a base 64 encoded string to me so I actually just stole it I like copied it out let's see if I can manage to copy it out this time I had some struggle I literally had some trouble trying to find like copy this okay copy value cool and now I'll get in Sublime Text okay that's not what I wanted let's copy the hex and hasky dump as principal Text Okay cool so yeah now we have the Bas 64 string just kind of chilling out what I can do is we can take that and try and base 6040 code it decode and there it is that was the flag there's a just hunting around this giant peap finding that Bas 64 string and then decoding it the flag was better FS better better files I don't know better better than yours whatever I don't care we got our flag but that was just painful to be like hunting through this and to have so little reward but whatever it was it was a simple thing it was just a matter of like looking through you know 96,000 97,000 packets you didn't have to do that and that's why like I said I picked out out that NBD protocol and I think that narrowed the search down to what 61 that's that's not a big deal and again I just found mine on like packet 76 so just a matter of hunting I guess and I don't know being willing to keep looking for stuff and just having an eye for the base 64 encoded strings that's pretty much it though that's your flag uh I'm not going to try and put together a script as to scrape that out because I couldn't particularly scrape out any of the data out of that P cap regardless but thanks for watching guys hope you enjoyed this again no big deal only 50 points whatever see you later

Original Description

If you would like to support me, please like, comment & subscribe, and check me out on Patreon: https://patreon.com/johnhammond010 E-mail: johnhammond010@gmail.com PayPal: http://paypal.me/johnhammond010 GitHub: https://github.com/JohnHammond Site: http://www.johnhammond.org Twitter: https://twitter.com/_johnhammond
Watch on YouTube ↗ (saves to browser)
Sign in to unlock AI tutor explanation · ⚡30

Playlist

Uploads from John Hammond · John Hammond · 31 of 60

1 Code Commentaries? PHP to JavaScript in Bash and PHP!
Code Commentaries? PHP to JavaScript in Bash and PHP!
John Hammond
2 Tutorials? MySQL connection with PHP and Bash!
Tutorials? MySQL connection with PHP and Bash!
John Hammond
3 Variable Naming in Python! Happy Birthday, Linux! Nokia N900!
Variable Naming in Python! Happy Birthday, Linux! Nokia N900!
John Hammond
4 JavaScript Splits The URL!
JavaScript Splits The URL!
John Hammond
5 HTML Tables in Python!
HTML Tables in Python!
John Hammond
6 HTML, Net Shares, GML!
HTML, Net Shares, GML!
John Hammond
7 Python 08 Programming Style and Comments
Python 08 Programming Style and Comments
John Hammond
8 Python 26 Object Oriented Programming
Python 26 Object Oriented Programming
John Hammond
9 75 Python Tutorials, Out Now!
75 Python Tutorials, Out Now!
John Hammond
10 Batch 14 Mathematical Expressions
Batch 14 Mathematical Expressions
John Hammond
11 Batch 85 Array Append
Batch 85 Array Append
John Hammond
12 Batch 86 Array Count
Batch 86 Array Count
John Hammond
13 Batch 87 Array Index
Batch 87 Array Index
John Hammond
14 Batch 88 Array Insert
Batch 88 Array Insert
John Hammond
15 Batch 89 Array Remove
Batch 89 Array Remove
John Hammond
16 Batch 90 Array Reverse
Batch 90 Array Reverse
John Hammond
17 Python [colorama] 00 Installing on Linux
Python [colorama] 00 Installing on Linux
John Hammond
18 Python [colorama] 09 Cursor Position
Python [colorama] 09 Cursor Position
John Hammond
19 Python [hashlib] 02 Algorithms
Python [hashlib] 02 Algorithms
John Hammond
20 Python 00 Installing IDLE on Linux
Python 00 Installing IDLE on Linux
John Hammond
21 Python [pygame] 11 Rectangular Collision Detection
Python [pygame] 11 Rectangular Collision Detection
John Hammond
22 Python [pygame] 12 Platforming Rectangular Collision Resolution
Python [pygame] 12 Platforming Rectangular Collision Resolution
John Hammond
23 Python [XML-RPC] 01 Research
Python [XML-RPC] 01 Research
John Hammond
24 Python [pyenchant] 03 Personal Word Lists
Python [pyenchant] 03 Personal Word Lists
John Hammond
25 FancyURLopener Authentication and User-Agent [urllib] 03
FancyURLopener Authentication and User-Agent [urllib] 03
John Hammond
26 Python 04: PEP8 Coding
Python 04: PEP8 Coding
John Hammond
27 Python Challenge! 17 COOKIES
Python Challenge! 17 COOKIES
John Hammond
28 Google CTF 2016: Ernst Echidna
Google CTF 2016: Ernst Echidna
John Hammond
29 Google CTF 2016: Spotted Quoll
Google CTF 2016: Spotted Quoll
John Hammond
30 Google CTF 2016: Can you Repo It?
Google CTF 2016: Can you Repo It?
John Hammond
Google CTF 2016: No Big Deal
Google CTF 2016: No Big Deal
John Hammond
32 Google CTF 2016: In Recorded Conversation
Google CTF 2016: In Recorded Conversation
John Hammond
33 Homemade CTF Challenge: 01 "Orchestra"
Homemade CTF Challenge: 01 "Orchestra"
John Hammond
34 Homemade CTF Challenge: 02 "Bae's Base"
Homemade CTF Challenge: 02 "Bae's Base"
John Hammond
35 Homemade CTF Challenge: 03 "Web Hunt"
Homemade CTF Challenge: 03 "Web Hunt"
John Hammond
36 Homemade CTF Challenge: 04 "UPX"
Homemade CTF Challenge: 04 "UPX"
John Hammond
37 Homemade CTF Challenge: 05 "The Assumption Song"
Homemade CTF Challenge: 05 "The Assumption Song"
John Hammond
38 Homemade CTF Challenge: 06 "A Brisk Stroll"
Homemade CTF Challenge: 06 "A Brisk Stroll"
John Hammond
39 Homemade CTF Challenge: 06 "I lost my password!"
Homemade CTF Challenge: 06 "I lost my password!"
John Hammond
40 web25 :: Mr. Robot : EKOPARTY CTF 2016
web25 :: Mr. Robot : EKOPARTY CTF 2016
John Hammond
41 web50 : RFC 7230 :: EKOPARTY CTF 2016
web50 : RFC 7230 :: EKOPARTY CTF 2016
John Hammond
42 misc50 : Hidden inside EKO :: EKOPARTY CTF 2016
misc50 : Hidden inside EKO :: EKOPARTY CTF 2016
John Hammond
43 Hack The Vote 2016 CTF: Sander's Fan Club [web100]
Hack The Vote 2016 CTF: Sander's Fan Club [web100]
John Hammond
44 Hack The Vote 2016 CTF Warpspeed [forensics150]
Hack The Vote 2016 CTF Warpspeed [forensics150]
John Hammond
45 Juniors CTF 2016 :: Black Suprematic Square
Juniors CTF 2016 :: Black Suprematic Square
John Hammond
46 Juniors CTF 2016 :: Six Strange Tales
Juniors CTF 2016 :: Six Strange Tales
John Hammond
47 Juniors CTF 2016 :: Lost Code
Juniors CTF 2016 :: Lost Code
John Hammond
48 Juniors CTF 2016 :: Here Goes!
Juniors CTF 2016 :: Here Goes!
John Hammond
49 Juniors CTF 2016 :: Southern Cross
Juniors CTF 2016 :: Southern Cross
John Hammond
50 Juniors CTF 2016 :: Clone Attack
Juniors CTF 2016 :: Clone Attack
John Hammond
51 Juniors CTF 2016 :: Dirty Repo
Juniors CTF 2016 :: Dirty Repo
John Hammond
52 Juniors CTF 2016 :: Hackers Blog
Juniors CTF 2016 :: Hackers Blog
John Hammond
53 Juniors CTF 2016 :: Voting!!!
Juniors CTF 2016 :: Voting!!!
John Hammond
54 Juniors CTF 2016 :: The Good, The Bad and The Junkman
Juniors CTF 2016 :: The Good, The Bad and The Junkman
John Hammond
55 Juniors CTF 2016 :: Stop Thief!
Juniors CTF 2016 :: Stop Thief!
John Hammond
56 Juniors CTF 2016 :: ROFL
Juniors CTF 2016 :: ROFL
John Hammond
57 Juniors CTF 2016 :: Restriced Area
Juniors CTF 2016 :: Restriced Area
John Hammond
58 Juniors CTF 2016 :: Oh SSH!
Juniors CTF 2016 :: Oh SSH!
John Hammond
59 HackCon CTF 2017 TRIVIA and BONUS Challenges
HackCon CTF 2017 TRIVIA and BONUS Challenges
John Hammond
60 HackCon CTF 2017 "Bacche" Challenges
HackCon CTF 2017 "Bacche" Challenges
John Hammond

Related AI Lessons

The AI Hype Cycle: Calm Before the Next Breakthrough?
Understand the AI hype cycle to anticipate the next breakthrough and make informed decisions
Medium · Programming
AI won’t replace scientists. It will make the current model of science obsolete
AI is not replacing scientists, but rather making the current model of science obsolete, enabling new forms of discovery and collaboration
Medium · Data Science
The End of Knowledge: Why Artificial Intelligence Is Changing Not Only What We Know, but What It…
AI is changing the concept of knowledge and how we acquire it, making us question what it means to know something
Medium · AI
Japan Gave the World Robots, Bullet Trains, and PlayStation. So Why Is It Losing the AI Race?
Japan, a pioneer in technology, is struggling to keep up in the AI race, and understanding the reasons behind this can provide valuable insights for other countries and businesses
Medium · AI
Up next
Motorist saved by human chain | 9 News Australia
9 News Australia
Watch →