Day 10

warmup/finders-fee

This challenge gives us a remote host to connect to, and to retrieve the flag inside flag.txt of the finder user’s home directory. Thus, the file we want to read is located at /home/finder/flag.txt.

Once connected to host using a basic ssh, we can try the easy method of cat to read the content of the file:

$ cat /home/finder/flag.txt
cat: /home/finder/flag.txt: Permission denied

Well, it would have been too easy.
Maybe we can use grep to “search” (inside one file) for a “flag” string?

$ grep -H "flag" /home/finder/flag.txt
grep: /home/finder: Permission denied

Too bad. The last chance is using find to look for the file, and run a command using its -exec option:

$ find /home/finder/flag.txt -exec cat {} \;
flag{REDACTED}

That’s it!

rev/gocrackme2

TODO