Hack The Box: [Easy]OSINT Challenges Writeup

- WalkThrough - By -
Hack The Box: [Easy]OSINT Challenges Writeup

Hello everyone… If you guys also find OSINT fun and challenging, then have a look at OSINT challenges by HackTheBox. As of today, there are 8 free active OSINT Challenges available on HTB, categorized into Easy and Medium.

Challenge Link:- https://www.hackthebox.eu/home/challenges/OSINT

So, Let’s Begin

Easy Phish:

“Customers of secure-startup.com have been receiving some very convincing phishing emails; can you figure out why? ”

Okay, we have a domain “secure-startup.com” and it is receiving phishing emails. So let’s start looking at SPF records. You can use this site to check. 

https://mxtoolbox.com/NetworkTools.aspx

Ethical Empire

Cool, looks like we got the first part of the flag

HTB{RIP_SPF_Always_2nd

RIP SPF. Let’s check DMARC (Domain-based Message Authentication, Reporting, and Conformance) Record. You can use the same tool to check the DMARC record.

Ethical Empire

Got our flag…

HTB{RIP_SPF_Always_2nd_F1ddl3_2_DMARC}

Money Flowz:

“Frank Vitalik is a hustler, can you figure out where the money flows?”

Here, we have the name “Frank Vitalik”. Great, let’s find sites with this name, maybe we find something on Twitter, Reddit, etc.

Ethical Empire

This looks interesting, it talks about scams, giveaways, cryptocurrency, and the description of the challenge also talks about money. Let’s check this out.

Ethical Empire

The author has posted a link. Notice “htb” written in the link. Let’s follow the link.

Ethical Empire

Now we have an Ethereum address on the Ropston network. Ethereum is public, so we can check the activity of a given address on a block explorer, ropsten.etherscan.io

Ethical Empire

There are 123 transactions record of both incoming and outgoing transactions. Let’s start with oldest transactions. Check for Outgoing transactions.

Ethical Empire

Input data is returned in HEX format. Click on “View Input As” and select UTF-8.
Congrats!!! You Got the Flag

Ethical Empire
HTB{CryPt0Curr3ncy_1s_FuNz!!}

ID Exposed:

“We are looking for Sara Medson Cruz’s last location, where she left a message. We need to find out what this message is! We only have her email: saramedsoncruz@gmail.com

We have an email here: “saramedsoncruz@gmail.com”. Let’s do an email lookup on the given email.

Ethical Empire

Here we can see the Google ID assigned to the email. From here, you can see various things. Check this article.
https://medium.com/week-in-osint/getting-a-grasp-on-googleids-77a8ab707e43

Now we have to find the last location of Sara Medson Cruz and we can take a look at contributions to Google Maps made by this Google ID.

https://www.google.com/maps/contrib/117395327982835488254

Ethical Empire

Yay!!! Got the flag and that’s a wrap to free and active Easy OSINT Challenges.

HTB {i_W4S_D_I_S_c_O_v_3_R_3_D}

Thanks For Reading. We will come up with a medium-level OSINT challenge writeup soon. 

Never forget to check out our YouTube channel, ETHICAL EMPIRE, and keep reading our exciting blogs. Until next time, stay curious, stay secure, and keep exploring the fascinating world of cyber security. See you soon, bye!

Related Posts