Home >

Huntress CTF > Easy Challenges

Back <> Next

Connect with SSH, with username user and SSH password userpass. Your syntax may look like: ssh user@chal.ctf.games -p [PORTNUMBER]

This challenge contains 4 total flags which are all in the same box. We are given ssh login credentials to access a Powershell core instance. Powershell is very helpful for this, as all you need to do to find the commands you need to use is ask it using

get-help

Note: These do not need to be solved in a specific order

Challenge 1: Welcome to our hackable M365 tenant! Can you find any juicy details, like perhaps the street address this organization is associated with?

m_365_1

Challenge 2: This tenant looks to have some odd Conditional Access Policies. Can you find a weird one?

m_365_2

Challenge 3: We observed saw some sensitive information being shared over a Microsoft Teams message! Can you track it down?

m_365_3

Challenge 4: One of the users in this environment seems to have unintentionally left some information in their account details. Can you track down The President?

m_365_4

This just goes to show, the only command you need to know in powershell is ‘Get-help’.

Back <> Next