Description
In June 2023, an operator of vital importance falls victim to an attack that compromises its entire information system. You received the Linux and Windows logs and must answer the investigators’ questions.
This challenge is part of a serie. The parts are numbered in the chronological order of the attack, but it is not necessary to solve them in order :
- SOCrate 1/6 - Technologie
- SOCrate 2/6 - Reverse shell
- SOCrate 3/6 - Outil téléchargé
- SOCrate 4/6 - Latéralisation
- SOCrate 5/6 - Vol de clés
- SOCrate 6/6 - Outil utilisé
The tool identified in question 3 has made several LDAP requests. Find the IP and FQDN of the machine targeted by these requests.
Flag format: FCSC{IP|FQDN}
Example: FCSC{10.42.43.44|service.gouv.lan}
Files
-
socrate.tar.xz
237.27 MiB – f2ac337b372fba041ecccb20d18cf00401ab428457a68460bdfef4090e2b2313
Author
ribt
Flag
Submit your solution
You can submit your writeup for this challenge. Read the FAQ to learn how to proceed.
You need to be logged in to submit a writeup.