Stego: Da vinci writeup: Challenge

Da vinci stego write up

Tools:

1. binwalk

2. fcrackzip
3. steghide
4. strings
5. base64 decoder

Steps:

1. Download the zip file
2. extract the zip file with password "hackthebox"

3. extract moalisa.jpg with binwalk. Use command "binwalk -e monalisa.jpg".
4. unzip famous.zip with fcrackzip. use rockyou.txt for password list. You will get the password "leonardo". Use command "fcrackzip -u -D -p rockyou.txt famous.zip". Extracted file is Mona.jpg.
5. use strings on Plans.jpg and you will find a youtube video https://www.youtube.com/watch?v=jc1Nfx4c5LQ. Command used "strings Plans.jpg | awk 'length($0) > 10'".
6. Extract Mona.jpg with steghide and the password is from youtube link on Plans.jpg. The term in the Video is Picasso's Guernica. Command used "steghide extract -sf Mona.jpg -p Guernica". You will get key file.
7. Decode the base64 inside key file "VTBaU1EyVXdNSGRpYTBKbVZFUkdObEZHT0doak1UbEZUVEJDUldaUlBUMD0="
8. Decode it two more times to get the flag HTB{M0n@_L1z@_!s_D3@D}.

Commands:

1. binwalk -e monalisa.jpg
2. fcrackzip -u -D -p rockyou.txt famous.zip
3. strings Plans.jpg | awk 'length($0) > 10'
4. steghide extract -sf Mona.jpg -p Guernica
5. cat key | base64 --decode | base64 --decode | base64 --decode

Flag:

HTB{M0n@_L1z@_!s_D3@D}

Reference:

1. https://forum.hackthebox.eu/discussion/487/da-vinci
2. https://forum.hackthebox.eu/discussion/178/nudge-for-da-vinci

Video: