Go to the lower-right corner of Wireshark and select packet 83. Instead of following the TCP stream this time, you can also look for the flag in the packet list directly.
Scroll down through the contents of the TCP stream, and you'll find the flag hidden among the data. To find the flag, we'll filter for all initial SYN packets using the following display filter: = 1 and = 0Īfter applying the filter, right-click on the fourth packet (packet 35) in the list and select "Follow->TCP". To start, let's open see-through.pcapng on PacketSafari and begin our analysis. In this article, we'll analyze see-through.pcapng, a CTF challenge pcap file, and show you how to find the flag using PacketSafari and Wireshark. One common challenge involves analyzing pcap (packet capture) files to find hidden flags. Capture-the-flag (CTF) challenges are popular in the cybersecurity world, as they test participants' skills in various security-related tasks.
0 kommentar(er)
