Description
Baguette Corporation have been compromised.
Employees use a custom server to store and retrieve sensitive informations but we know for sure that some of those secrets have leaked.
The source code have already been audited and no vulnerabilities have been identified.
The possibility of a supply chain attack is still possible, so you are asked to investigate.
You are given the binary that is currently running in production and a network capture around the time where the leak would have occured.
Your job is to identify exactly what was leaked.
Note: This challenge has been written for Compete with TeamEurope 2024, organized during ECSC 2024 training.
Files
-
baguette
25.05 KiB – ad77c59810842e3f2a89289baaedf3798c30eca903c845575eeee3b3b767e053 -
capture.pcap
6.57 KiB – 1f5c2372912c5dca6ec9eb0969f514ca6cfc4ee83b36c6c3da2f365b00a67d65
Authors
Flag
Submit your solution
You can submit your writeup for this challenge. Read the FAQ to learn how to proceed.
You need to be logged in to submit a writeup.
Writeups
There are no public solutions for this challenge yet, but you can submit yours after getting the flag.