Senseless Behavior -HTB{walkthrough}
The first time I saw stegno(stego) challenge i thought i will be some image file where I have to extract the zip files and all,but it was different , i got a .wav audio file.
I had never worked on audio stegnography, but I know little about it.Searched in community forums and CTF writeup, tool called steghide which was used for image stegnography similar tool was made and it was steg_brute.py
Steg_brute is the purpose of this project is to “brute force” stego passphrase , works with steghide.
StegBrute — https://github.com/Diefunction/stegbrute
- Brute force meow.wav file with rockyou.txt wordlist.And got output “meow_flag.txt”
2. Got lots of numbers which looks like hexadecimal encodings.
3. Decoded the first line and got output PNG ,also we get a text in hexadecimal, when we see the first lines of the text (hexadecimal to text) we see that it says something with PNG. This gives us a clue that can be an image.So the next move was to dump the “meow_flag.txt” to a PNG file.
4. Dump “meow_flag.txt” to PNG file.
root@hal:~/Hunt/stego/Steghide-Brute-Force-Tool-master# cat meow_flag.txt | sed '/^\s*$/d' | base64 -d | xxd -r -p > image.png
5. here we are with a meme.
6. Open Stegsolve to analyse the image.
8. After Analysing image in stegsolve we got the braile text,convert it into english word,from any online braile to english decoder.You will get the flag.
Tools used:
- Steghide — stegbrute[https://github.com/Diefunction/stegbrute]
- Stegsolve
