Forensics Challenge: Keep it Secret, Keep it Safe
This is a write up for the "Keep it Secret, Keep it Safe" forensics challenge rated as moderate difficulty. We're presented with the following description and a zip file:
Time for another ascii.io session.
We end up extracting a PNG file from the virtual machine saved state file as instructed using a tool called binwalk. Let's take a look at this file with vital information on it.
At first we tried SGFja2VycyBSdWx1cyEhIQ== as the flag, and then face palmed as it's base64 encoded. We can use a variety of tools to decode base64. The flag ended up being "Hackers Rulus!!!" after decoding the string.