BSIDESSF CTF: easycap

Mark Koskei

February 14, 2017

Problem

Can you get the flag from the packet capture?

Solution

Open the packet capture easy.pcap in Wireshark indicating TCP traffic. Using Wireshark’s TCP Stream tool Analyze>Follow>TCP Stream reveals the flag.

FLAG:385b87afc8671dee07550290d16a8071