huntress2023

Writeups for Huntress CTF 2023

View on GitHub

✅ MALWARE - Opendir

Writeup by: @goproslowyo

Tags

Files:

Description

Author: @JohnHammond

A threat actor exposed an open directory on the public internet! We could explore their tools for some further intelligence. Can you find a flag they might be hiding? NOTE: This showcases genuine malware samples found a real opendir. For domain reputation purposes, this is behind Basic Authentication with credentials: opendir:opendir Press the Start button on the top-right to begin this challenge.

Writeup

We’re given a webserver with directory browsing enabled. Downloaded the entire site with wget and then grep‘ed for the flag:

$ wget --user opendir --password opendir --recursive --no-parent http://chal.ctf.games:31556
[...]
$ rg 'flag' *
[...]
chal.ctf.games:31556/sir/64_bit_new/oui.txt
86327:flag{9eb4ebf423b4e5b2a88aa92b0578cbd9}

flag{9eb4ebf423b4e5b2a88aa92b0578cbd9}