Imagine a world where you can cyber stalk someone you barely know and not seem like a weirdo. Well, in today's CTF writeup you can! The OhSINT CTF on Try Hack Me allows you to put your stalking skills to use, and it all starts with a picture. 📸
First things first. Open-source intelligence (OSINT) (or oh shi-) refers to the collection and analysis of data gathered from open sources such as sources found over the internet to produce actionable intelligence on a subject.
Okay, gone with you boring information. Let's start hunting!
Task 1: OhSINT
Before we begin with answering the questions, let's download the task files which contains our image. Once you've loaded up your image, right click and open up its properties. When we go into the details, we can identfify the author of the image: OWoodflint
.
Let's see what we can find about our new friend OWoodflint by Googling them. We can see that OWoodflint has three profiles: Twitter, GitHub, and a personal blog.
OWoodflint's Twitter
OWoodflint's GitHub
OWoodflint's Blog
Now that our basic hunting is over, let's start answering questions!
What is this users avatar of?
Let's have a look at their Twitter. It's obviously a racoon. 🦝
What city is this person in?
If we go over to their GitHub, we can see that they stated in their README.md that they are from London.
Whats the SSID of the WAP he connected to?
When we go over to their Twitter we can see that they made a tweet about their "free wifi". We can use this BSSID to find the SSID of the WAP they connected to.
To do this, we need to go over to Wigle.net. Register for an account, and once you've done that head over into view > advanced search. Paste in the BSSID they tweeted and let the good times roll. 😎
What is his personal email address?
Back to their GitHub profile and all will be revealed.
What site did you find his email address on?
What site did you find his email address on?
When we head over to their blog, we can see that they recently went on holiday to New York.
What is this persons password?
For this we need to view the page source of their website. You will find the answer to this in a hidden
tag underneath their intro paragraph.
Conclusion
Congratulations! You are now a certified stalker(this is a joke, OSINT is very useful and unlike stalking, legal). I made you a certificate because you deserve it:
See you next time. Happy hacking! 😊
Visit my GitHub for more.