Home >

Huntress CTF > Easy Challenges

Back <> Next

We found all this data in the dumpster! Can you find anything interesting in here, like any cool passwords or anything? Check it out quick before the foxes get to it!

For this challenge we are given ‘dumpster_fire.tar.xz’.

We can extract the contents in the commandline with:

tar xJvf dumpster_fire.tar.xz

We are then presented with what looks like an entire linux system worth of directories. After some ls -la we find some interesting files in the directory:

home/challenge/.mozilla/firefox/bc1m1zlr.default-release

Logins.json stands out as an interesting file. If we cat the file, we see that the username and password are encrypted. We then noticed the file key4.db, which seems to contain the decryption keys.

We eventually managed to find a python script to decrypt firefox stored credentials Here

Note: This tool has not been fully vetted, use at your own risk.

After running the script in the directory we were able to retrieve the flag

python3 decrypt.py .   

Back <> Next