Bandit CTF Level 16

Level 15 –> 16

bandit15@bandit:~$ echo "BfMYroe26WYalil77FoDi9qh59eK5xNr" | openssl s_client -connect localhost:30001 -ign_eof

CONNECTED(00000003)
depth=0 CN = localhost
verify error:num=18:self signed certificate
verify return:1
depth=0 CN = localhost
verify return:1
---
Certificate chain
 0 s:/CN=localhost
   i:/CN=localhost
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=/CN=localhost
issuer=/CN=localhost
---
No client certificate CA names sent
Peer signing digest: SHA512
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 1019 bytes and written 269 bytes
Verification error: self signed certificate
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 1024 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.2
    Cipher    : ECDHE-RSA-AES256-GCM-SHA384
    Session-ID: B6DD1FD1B633A9BC7713BA50EFBFAED6F38E7122E6694E81AE0D0A990E1E6417
    Session-ID-ctx:
    Master-Key: 4C20C8DCE97FB2F792426690DC98B6F6A5B5AC336E5A96D9A31E0C2D0F2FE9FF54A1EA7E8E64E9303E62F6EC42B27ED6
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    TLS session ticket lifetime hint: 7200 (seconds)
    TLS session ticket:
    0000 - aa 02 e6 3a 2e 0b c8 5d-6f 54 4a 1b 5a e0 2c 0e   ...:...]oTJ.Z.,.
    0010 - 79 fb 08 80 42 5e 78 f5-65 36 e3 72 4c ac 2a e1   y...B^x.e6.rL.*.
    0020 - ca fd 36 ce d3 ef 7e 0d-64 0e fb 43 42 ac 74 c2   ..6...~.d..CB.t.
    0030 - e4 93 4f 56 9b be 84 3c-9e cd 37 70 95 84 af eb   ..OV...<..7p....
    0040 - e3 da 2a 65 73 1a 8e 60-c3 83 31 c3 dd ae 10 3c   ..*es..`..1....<
    0050 - 64 7f f3 d4 0e b3 d5 f9-4e 8a c7 8b 07 81 32 0c   d.......N.....2.
    0060 - ad 95 7f 5a 19 0b c1 e6-85 46 59 71 de 8e 17 02   ...Z.....FYq....
    0070 - c8 fe 11 2a e7 36 2c ac-90 67 71 31 35 56 56 6b   ...*.6,..gq15VVk
    0080 - b0 8e dd 03 bb 6e bc b0-52 a6 71 95 9a 17 a9 58   .....n..R.q....X
    0090 - 34 f2 74 31 69 7c bf 18-25 08 ec a6 ea 11 40 d7   4.t1i|..%.....@.

    Start Time: 1603526791
    Timeout   : 7200 (sec)
    Verify return code: 18 (self signed certificate)
    Extended master secret: yes
---
Correct!
cluFXXXXXXXXXXXXXXXXXXXXXXXXXXXX

closed
bandit15@bandit:~$

password = cluFXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Deja una respuesta

Tu dirección de correo electrónico no será publicada. Los campos obligatorios están marcados con *