HackTheBox Foggy Intrusion Writeup
Explore the basics of cybersecurity in the Foggy Intrusion Challenge on Hack The Box. This easy-level Challenge introduces encryption reversal and file handling concepts in a clear and accessible way, perfect for beginners.
https://app.hackthebox.com/challenges/801
Description
On a fog-covered Halloween night, a secure site experienced unauthorized access under the veil of darkness. With the world outside wrapped in silence, an intruder bypassed security protocols and manipulated sensitive areas, leaving behind traceable yet perplexing clues in the logs.
Exploitation
Open with wireshark and filter results with:
tcp.stream eq 3
1
2
3
4
5
6
7
8
9
10
11
12
13
14
HTTP/1.1 302 Found
Date: Fri, 13 Sep 2024 21:12:40 GMT
Server: Apache/2.4.58 (Win64) OpenSSL/3.1.3
X-Powered-By: PHP/8.1.25
Location: http://halloweencorp.htb/dashboard/
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
131
dY9RS8MwFIX/ynUIyWDKZNkYTjdSW/DFKe3Ux0ttbligpjVtGTL2311a58bA+xIO37nnntwtynUJirSxxFkYYBLFb1HMBsDUB+vPTtHrni3lU9RBbCpyZ44XmSTvz3HoHY+rYKuHE1Q3Y1GWI+FGCoVVqHMxwY2oUA8bqy52ZxGhXMlAJu2RdBwsU6W9Ay4/v6uv3MA9WNpAJ/hf3wGc9GvFoUorDqE+yGjgv2FX86ywlrIaybnC9WELfpQh3nvoiCks6NTkpG6hB9fwz+YMdnBkFdWYrVO3fzlraj31P1jMfwA=
0
Summary
The Foggy Intrusion Challenge on Hack The Box is an easy-level challenge focused on forensics and file handling. It involves analyzing network traffic, specifically a TCP stream, to extract a base64-encoded string from an HTTP response. Using tools like CyberChef, the string is decoded and inflated, revealing useful information. This challenge helps beginners practice deconstructing network traffic and decoding encrypted data.