PicoCTF Writeup – What Lies Within - MRegra & SoBatista on Cyber

# Information:

CTF Name: PicoCTF

CTF Challenge: What Lies Within

Challenge Category: Forensics

Challenge Points: 150

PicoCTF 2019.

# Challenge Description:

There’s something in the building. Can you retrieve the flag?

Click on the word building to download the original image.

# Writeup

Once we read the description of the challenge we know that the flag should be found in the word building. This word has a link to an image. After downloading the image I opened it:

By looking at the image nothing seems relevant to help us get the flag.

Considering that the challenge category is Forensics I thought that maybe the information was inside the image, hidden in some way and that by doing a forensic analysis of the image I could retrieve the message (flag). After searching a little bit online, I was able to find out that there is a technique known as Steganography in which a message is hidden inside an image or video without compromising the quality.

It does not hurt to try this idea out! So I searched a little bit more for a tool that would decode messages from images. Meaning that this tool reveals the messages hidden using Steganography either in images or videos.

I was able to find this tool:

Special thanks to stylesuxx for this amazing tool.

After finding this tool I inserted the image and press decode, this was the result:

And the flag is

Show flag

picoCTF{h1d1ng_1n_th3_b1t5}

The image source can be found here.

Thank you very much for reading!

Cheers,

MRegra

Author Profile

MRegra Silva

3 Replies to “PicoCTF Writeup – What Lies Within”

Thanks for the good writeup. It in reality was a amusement account it.
Look advanced to more brought agreeable from you!
By the way, how could we keep up a correspondence?

MRegra Silva says:
August 24, 2021 at 12:46 pm
Hello, you can contact me via my contact page at: https://mregraoncyber.com/contact/
And I am trying to setup a Subscriber button and a mailing list.
Thanks for reading, have a nice day.
Cheers,
MRegra
Reply

Please let me know if you’re looking for a article writer for your blog.

You have some really great articles and I think I would
be a good asset. If you ever want to take some of the load off, I’d really
like to write some articles for your blog in exchange for a link back
to mine. Please blast me an e-mail if interested.
Many thanks!

Tiffiny says:
August 24, 2021 at 12:16 pm
Thanks for the good writeup. It in reality was a amusement account it.
Look advanced to more brought agreeable from you!
By the way, how could we keep up a correspondence?
1. MRegra Silva says:
  August 24, 2021 at 12:46 pm
  Hello, you can contact me via my contact page at: https://mregraoncyber.com/contact/
  And I am trying to setup a Subscriber button and a mailing list.
  Thanks for reading, have a nice day.
  Cheers,
  MRegra
Lin says:
August 25, 2021 at 12:33 am
Please let me know if you’re looking for a article writer for your blog.
You have some really great articles and I think I would
be a good asset. If you ever want to take some of the load off, I’d really
like to write some articles for your blog in exchange for a link back
to mine. Please blast me an e-mail if interested.
Many thanks!

PicoCTF Writeup – What Lies Within

MRegra Silva

Like this:

Published by MRegra Silva

3 Replies to “PicoCTF Writeup – What Lies Within”

Leave a Reply Cancel reply

MRegra Silva

Share this:

Like this:

Published by MRegra Silva

3 Replies to “PicoCTF Writeup – What Lies Within”

Leave a Reply Cancel reply