Hackerman

Table of Contents

Category: Misc
Difficulty: Easy
https://app.hackthebox.com/challenges/Hackerman

Summary
#

The challenge involves extracting hidden data from an image file, hackerman.jpg, which is protected by a password. The solution requires to crack the password and then extract the hidden data.

Steps to Solve
#

1. Extract data from the image
#

First, we try to extract data from the hackerman.jpg image using steghide.

$ steghide --extract -sf hackerman.jpg

Enter passphrase: 
steghide: could not extract any data with that passphrase!

It fails because the file is password-protected.
We overcome this limitation using stegseek, designed to crack Steghide passwords, with the rockyou.txt wordlist.

$ stegseek --crack -sf hackerman.jpg /usr/share/wordlists/rockyou.txt

StegSeek 0.6 - https://github.com/RickdeJager/StegSeek

[i] Found passphrase: "almost"
[i] Original filename: "hackerman.txt".
[i] Extracting to "hackerman.jpg.out".

2. View the Extracted Data
#

The extracted data is Base64 encoded.

$ cat hackerman.jpg.out 

SFRCezN2MWxfYzBycH0=

We decode it to reveal the flag.

$ cat hackerman.jpg.out | base64 -d

HTB{3v1l_c0rp}

Tools Used
#

Stegseek
rockyou.txt (wordlist)

Summary #

Steps to Solve #

1. Extract data from the image #

2. View the Extracted Data #

Tools Used #

Summary
#

Steps to Solve
#

1. Extract data from the image
#

2. View the Extracted Data
#

Tools Used
#