Monday, December 22, 2014 Login · Register
    Login
Username

Password


Remember Me

Not a member yet?
Click here to register.

Forgotten your password?
Request a new one here.

 

    Users Online
  • · Members on IRC: 21   
  • · Total Members: 17,624
  • · Newest Member: jackfrost91
  •  

     

        Related Ads
     

     

     

        Top 10 Forum Posters
    UserPosts
    bluechill1411   
    madf0x1297   
    cruizrisner1062   
    Qwexotic1034   
    Null Set872   
    Override604   
    auditorsec603   
    godofcereal599   
    TurboBorland585   
    Teddy477   
     

        Affiliates




  • iExploit


  • iExploit


  • WeChall





  • Thisislegal.com

  •  

        Related Ads
     

    View Thread
         
    Security Override Hacking Challenges Forensics Hacking Challenges
    Forensics 10
    Register FAQ Members List Today's Posts Search

    Print Thread
    08-13-2014 03:24 AM Forensics 10
    Ok, I've successfully decrypted trafic using *** key. Now I can see tcp, udp, dns and http packets in wireshark, BUT in http packets I can only see - "Continuation or non-http trafic"Sad. Please tell what I'm doing wrong? or have I missed something? what should I see after decryprion? Just give me a little hint pleaseSmile
     
    Offline
    08-13-2014 06:36 PM RE: Forensics 10 | Edited by VK 08-13-2014 06:53 PM
    Pavel wrote:
    Ok, I've successfully decrypted trafic using *** key. Now I can see tcp, udp, dns and http packets in wireshark, BUT in http packets I can only see - "Continuation or non-http trafic"Sad. Please tell what I'm doing wrong? or have I missed something? what should I see after decryprion? Just give me a little hint pleaseSmile


    I'm where you're at now. Due to the challenge saying:

    "Dhakkan of Dhakkan Security is assigned to secure the basic authentication based website with some form of encryption."

    I think there's another layer of encryption in the HTTP traffic that needs to be decrypted. I filtered the packet to display the HTTP client/server traffic only, but I'm not sure what to look for.

    EDIT: Solved. Quoted the keyword and didn't even know it.
     
    Offline
    08-14-2014 03:22 AM RE: Forensics 10
    VK wrote:
    Pavel wrote:
    Ok, I've successfully decrypted trafic using *** key. Now I can see tcp, udp, dns and http packets in wireshark, BUT in http packets I can only see - "Continuation or non-http trafic"Sad. Please tell what I'm doing wrong? or have I missed something? what should I see after decryprion? Just give me a little hint pleaseSmile


    I'm where you're at now. Due to the challenge saying:

    "Dhakkan of Dhakkan Security is assigned to secure the basic authentication based website with some form of encryption."

    I think there's another layer of encryption in the HTTP traffic that needs to be decrypted. I filtered the packet to display the HTTP client/server traffic only, but I'm not sure what to look for.

    EDIT: Solved. Quoted the keyword and didn't even know it.


    I can see Basic Authentication in Http trafic, it's somehow crypted or broken. I mean I see: WWW-Autheate:ate: Basic r="Sw="Sweex LW05
    Co
    Content-Length .....

    I also think about SSL... Is it a right direction?
     
    Offline
    08-14-2014 10:23 AM RE: Forensics 10
    Pavel wrote:

    I can see Basic Authentication in Http trafic, it's somehow crypted or broken. I mean I see: WWW-Autheate:ate: Basic r="Sw="Sweex LW05
    Co
    Content-Length .....

    I also think about SSL... Is it a right direction?


    PM sent for spoilers
     
    Offline
    Jump to Forum:
    Forum powered by fusionBoard