CyberDefenders: BlueTeam CTF Challenges

L'espion

SHA1SUM	733252e85d86a8abc3417fd9dd70a3a71b3f2d90
Published	July 28, 2021
Author	BushidoToken
Size	1.14 MB
Tags	OSINT Github BloodHound Mimikatz

Instructions	Uncompress the challenge (pass: cyberdefenders.org)

Your progress

0% Completed0/10 Questions

Your score

0/850

Threat Intel

Last solve

today by HTB

You have been tasked by a client whose network was compromised and brought offline to investigate the incident and determine the attacker's identity.

Incident responders and digital forensic investigators are currently on the scene and have conducted a preliminary investigation. Their findings show that the attack originated from a single user account, probably, an insider.

Investigate the incident, find the insider, and uncover the attack actions.

Tools

#	Question	Weight	Solved
#1	File -> Github.txt: What is the API key the insider added to his GitHub repositories?	50	721
Hint Report an issue

#2	File -> Github.txt: What is the plaintext password the insider added to his GitHub repositories?	50	710
Hint Report an issue

#3	File -> Github.txt: What cryptocurrency mining tool did the insider use?	50	678
Hint Report an issue

#4	What university did the insider go to?	100	604
Hint Report an issue

#5	What gaming website the insider had an account on?	100	615
Hint Report an issue

#6	What is the link to the insider Instagram profile?	50	603
Hint Report an issue

#7	Where did the insider go on the holiday? (Country only)	150	583
Hint Report an issue

#8	Where is the insider's family live? (City only)	100	579
Hint Report an issue

#9	File -> office.jpg: You have been provided with a picture of the building in which the company has an office. Which city is the company located in?	100	614
Hint Report an issue

#10	File -> Webcam.png: With the intel, you have provided, our ground surveillance unit is now overlooking the person of interest's suspected address. They saw them leaving their apartment and followed them to the airport. Their plane took off and has landed in another country. Our intelligence team spotted the target with this IP camera. Which state is this camera in?	100	584
Hint Report an issue

Submit Writeup