- 29 Şub 2020
- 538
- 575
Contest Details:
An open source intelligence (OSINT) study in mining and analysis of public data to generate meaningful insights while investigating external threats.
Challenge questions:
1# Who is the Registrar for jameskainth.com?
To solve this question, we go to whois.domaintools.com and search for the domain name asked in the question and get the information.
Answer: NameCheap
2# You get a phone call from this number: 855-707-7328, they were previously known by another name?
I start by google searching the phone number given in the question. In the search at the top, we find the text “This phone number to call if I have questions about my bills on my Spectrum/Time Warner bill: (855-707-7328)”.
This indicates that this is a support hotline number for Spectrum/Time Warner. This also says that Spectrum/Time Warner is the same company as the names are used interchangeably. Focusing on the second part of the question, we need to figure out what "was known".
By searching the name of the company on google, we examine the company information in wikipedia and learn the old name of the company.
Answer: timewarnercable
3# What is the Zoom meeting id of the British Prime Ministers Cabinet Meeting?
While researching keywords on Google, we learned of an incident where the UK Prime Minister accidentally disclosed her Zoom ID while holding her first digital cabinet meeting.
We can use Google dorks to find the actual Twitter post about the first digital cabinet meeting on Boris Johnson's official account, as we know that famous personalities often post actively on Twitter.
This takes us to the Twitter post about this digital cabinet meeting, in the top left we can see the ID of the zoom meeting.
Answer: 539544323
4# What Percentage of full-time degree-seeking freshmen from the fall of 2018 re-enrolled to Champlain in the fall of 2019?
Comprehensive website for student registrations with just a quick google search for words in the question.
After reviewing the initial search result, we successfully found a retention rate of 82% for 2019, but we need a more accurate answer to the decimal point according to our question format.
We can use the Wayback Machine for this task, it is a digital archive of the internet containing historical snapshots of various websites. This can help us see a snapshot of old data released for Fall 2019.
Let's try to find a version of the sheet with the data for Fall 2019, starting with a snapshot in 2019.
The sheet contains 2018 data, so we need to look at newer sheets until we find 2019 data.
When we go down, we find the area we are looking for and our flag is 82.5%.
Answer: 82.5%
5# Champlain College Has A Public Excel Sheet Listing Addresses Of Campus Locations Available on The Internet, what’s the SHA256 hash of the excel file?
First, we will find the official website of Champlain College via Google.
Now we can use Google dorks to search all excel files found in champlain.edu using the following.
We found an open excel physical_addresses.xls file containing the addresses of various campus locations. To get our flag we need to provide the SHA256 hash of this file.
SHA256(fiziksel_adresler.xls)= c96ee03c4043c366c6f573bb1d194dec8f4c0c81150c60d310bc59d9e17a6906
The sheet contains 2018 data, so we need to look at newer sheets until we find 2019 data.
When we go down, we find the area we are looking for and our flag is 82.5%.
Answer: 82.5%
5# Champlain College Has A Public Excel Sheet Listing Addresses Of Campus Locations Available on The Internet, what’s the SHA256 hash of the excel file?
First, we will find the official website of Champlain College via Google.
Now we can use Google dorks to search all excel files found in champlain.edu using the following.
We found an open excel physical_addresses.xls file containing the addresses of various campus locations. To get our flag we need to provide the SHA256 hash of this file.
Kod:
openssl dgst -sha256 physical_addresses.xlsSHA256(fiziksel_adresler.xls)= c96ee03c4043c366c6f573bb1d194dec8f4c0c81150c60d310bc59d9e17a6906
Answer: c96ee03c4043c366c6f573bb1d194dec8f4c0c81150c60d310bc59d9e17a6906
6# In 1998 specifically on February 12th, Champlain was planning on adding an exciting new building to its campus. Back then, it was called “The Information Commons”. Can you find a picture of what the inside would look like? Upload the sha256 hash here.
Since it gives a specific date in the question, we can deduce that a new building was mentioned on the college's main website in 1998, as we did in the previous question. First, let's check if we have a snapshot of the Champlain website from then on.
We can see that even for the exact date mentioned in our question we have snapshots dating back to 1998
To get our flag, we just need to download the image representing the interior design of this building and get the SHA256 hash.
SHA256(inside1.jpeg)= f4952b314eb15acf0eec79c954f83881c17d50d2b5922ee37e8fc5e5cd1aeac2
Answer: f4952b314eb15acf0eec79c954f83881c17d50d2b5922ee37e8fc5e5cd1aeac2
7# One of Champlain College's Cyber Security Faculty got a bachelor's degree in arts from this Ohioan university. Who was the other faculty member who studied there?
Going through the faculty list, we first need to quickly scan each person's education department and find someone with a bachelor's degree in arts from a university in Ohio.
We can see that Joe Eastman received a Bachelor of Arts degree from the University of Toledo in Ohio.
Now we need to scan the rest of the faculty to find out who else is studying at the University of Toledo. We can use a Google dork here to make our search more effective.
Now we need to scan the rest of the faculty to find out who else is studying at the University of Toledo. We can use a Google dork here to make our search more effective.
We found Todd Schroeder from our Google search results and perusing her biography, we can see that she is indeed part of the Cyber Security faculty.
Answer: todd schroeder
8# In 2019 UVM’s Ichthyology Class Had to Name their fish for class. Can you find out what the last person on the public roster named their fish?
A Google search for the Ichthyology class at UVM takes us to the university's page:
On the ichthyology class information page there is a quick links section where we can see a link for Student fish names. The link downloads an xls file titled Studentfishnames2019.xls. If we go to the end of the list, we can see that the last student on the folk list named their fish Saccopharyngiformes, which is our flag for this question.
Answer: todd schroeder
8# In 2019 UVM’s Ichthyology Class Had to Name their fish for class. Can you find out what the last person on the public roster named their fish?
A Google search for the Ichthyology class at UVM takes us to the university's page:
On the ichthyology class information page there is a quick links section where we can see a link for Student fish names. The link downloads an xls file titled Studentfishnames2019.xls. If we go to the end of the list, we can see that the last student on the folk list named their fish Saccopharyngiformes, which is our flag for this question.
Answer: Saccopharyngiformes
9# Can You Figure Out Which State This Picture Has Been Taken From? See attached photo
Below is the attached photo referenced in the question:
9# Can You Figure Out Which State This Picture Has Been Taken From? See attached photo
Below is the attached photo referenced in the question:
Let's do a reverse image search using this image. Google does not give us any concrete information about the image. Bing, Yandex, etc. It's always a good idea to search across multiple search engines.
The first result is the full image and points to a Youtube channel with this image as their profile picture. The About section and video content doesn't give much information other than a hint that some of the videos were shot in Nepal according to the video titles. Trying several states from Nepal will not lead to the right answer.
This image looks like our challenge image taken from a different angle and leads us to Dinosaur Land, a theme park in Virginia, according to Google.
Answer: Virginia
Have a nice day!
Translator: @GhostWins
Subject Author: @'B4TU
Subject: https://www.turkhackteam.org/konular/intel101-cyberdefenders-lab.2015968/
Answer: Virginia
Have a nice day!
Translator: @GhostWins
Subject Author: @'B4TU
Subject: https://www.turkhackteam.org/konular/intel101-cyberdefenders-lab.2015968/
