Think the flag is somewhere in there. Would you help me find it? hint-" Steghide Might be Helpfull"
https://ctflearn.com/challenge/download/894
-
The prompt hinted to use
steghide, so I tried extracting an embedded file using the following command, but I was asked for a passphrase.\steghide -sf Minions1.jpeg -
I tried looking in the file's metadata using
exiftool, nothing seemed very obvious, but then I noticed a keyword field with the string 'myadmin'
-
I tried using it as the passphrase to use
steghide, and it worked! -
The contents of the extracted file revealed an alphanumeric string that seemed like a base64 encoded string.
-
Finally, I used a base64 decoder(https://www.base64decode.org/) to obtain the flag.
-
Flag obtained :
CTFlearn{this_is_fun}
