Shiba Insider

What is the response message obtained from the PCAP file? (1 points)

We will Follow -> TCP Stream

use your own password

What is the password of the ZIP file? (1 points)

Looking at it we will see a Base 64 encoded string

Use CyberChef to decode

If you don’t know what the string is encoded from, you can use Magic from the Operations tab

redforever

Will more passwords be required? (1 points)

Before answering this question, try unzipping the file

It’s just that there’s no need for more .-.

No

What is the name of a widely-used tool that can be used to obtain file information? (1 points)

Definitely Exiftool

What is the name and value of the interesting information obtained from the image file metadata? (1 points)

Isn’t that interesting lol @~@

It took me a while

Technique:Steganography

Based on the answer from the previous question, what tool needs to be used to retrieve the information hidden in the file? (1 points)

Yes, it’s already available

Steghide

Enter the ID retrieved. (1 points)

As said there is no need to add a password

steghide extract -sf ssdog1.jpeg

0726ba878ea47de571777a

What is the profile name of the attacker? (3 points)

oh, the question doesn’t mention ‘user’ or ‘btlo’, I tried searching and it led to someone else’s answer :)))

I didn’t expect it

https://blueteamlabs.online/home/user/0726ba878ea47de571777a

bluetiger

goodbye, thank you for reading until now //~//