Lost at Sea — Hacktoria Contract Walkthrough (Understanding OSINT)
In this article we are going to solve a new contract from Hacktoria called as “Lost at Sea”.
The description of the contract is below, read it carefully and as always, note the points that is important.
Greetings Special Agent K. Yesterday at exactly 22:34 EET we lost contact with our surveillance ship “Narwhal”. A distress signal was sent out, right after this all communication was lost. The Narwhal was operating in the Black Sea, keeping an eye on Russian submarine and aerial activity.
Although she looks like a regular fishing trawler, the Narwhal, built in 2018, was outfitted with state of the art equipment. Housing a crew of 10, including a 4 PAX intervention unit of our best and brightest from the H.M.I.U (Hacktoria Maritime Intervention Unit).
Our allies in the British Royal Navy were kind enough to respond immediately. They were able to retrieve the Narwhals’ distress beacon. This is a device that automatically logs the last ten event, using the many sensors on board. This quick log entry is written to the SD card inside a waterproof tube, outfitted with a flotation device and GPS beacon. After the data is written, the beacon ejects and keeps afloat on the surface.
This prevents any signal delay from external antennas not being fast enough. Now, there’s a catch with this beacon. The log-file is written to an encrypted archive. The password for this log-file is set by the captain and communicated over encrypted channels, changing daily to prevent enemy forces capturing the correct code.
Somehow, the signal was lost right before the captain was able to relay the new password. This is human error, the password would normally be communicated right before being changed. This leaves us with our current situation. We don’t know the password, you’ll have to find a way to unlock the log-file.
This will give us insight into how the Narwhal sunk and allow us to begin the recovery. Given the hostile situation, it’s imperative we find the exact location of the Narwhal.From the description, we can conclude that the name of the ship is “Narwhal” and it was built in “2018". I googled about the default passwords of ship log books, but it resulted in nothing. We can also try to brute-force the zip file, but again this is a OSINT challenge so, it’s password will be related to the description given. After a lot of trial and miss. I cracked the log file. This challenge was more related to aptitude and intelligence based on observation and conclusion rather than using technology.
⭐⭐⭐ Here is the password of the linkfile:
Narwhal2018Use the password to unlock the zip file and claim your contract card.
Be safe and be secure, and like always happy hacking :)
