Root Me : Bluetooth - Unknown file | CTF
Category : {Network}
Bluetooth — Unknown file
hint : Google is your friend
Statement
Your friend working at NSA recovered an unreadable file from a hacker’s computer. The only thing he knows is that it comes from a communication between a computer and a phone.
The answer is the sha-1 hash of the concatenation of the MAC address (uppercase) and the name of the phone.
Example:
AB:CD:EF:12:34:56myPhone -> 023cc433c380c2618ed961000a681f1d4c44f8f1
Step 1 : Go to the Network Challanges
Step 2 : Select the Bluetooth - Unknown file
tep 3 : Download the bin file.
In This Challenge We Have Given Two Resource For Reference
2 related ressource(s)
- Bluetooth (en.wikipedia.org)
- fte.com — BT Snoop File Format
firt we learn what is BTSnoop File Format
The BTSnoop file format is suitable for storing Bluetooth® HCI traffic. It
closely resembles the snoop format, as documented in RFC 1761.
File Format
The snoop packet capture file is an array of octets structured as follows:
The File Header is a fixed-length field containing general information about the packet file and the format of the packet records it contains. One or more variable-length Packet Record fields follow the File Header field. Each Packet Record field holds the data of one captured packet.
step 4 : now open the bin file in the wireshark.
now open the file through wireshark we will click on Wireless -> Bluetooth Devices
Then we will able to find the name of the device and the MAC address
now we are combine the name and the Mac add to the SHA1 hash encryption.
as we see the result of SHA1 encryption.
flag : c1d0349c153ed96fe2fadf44e880aef9e69c122b
Got it!!!!!
