back to blog list

404CTF Write-Up À l'aube d'un échange

June 8, 2022 3 min read

404CTF

The 404CTF is a CTF organized by the Direction Générale de la Sécurité Extérieure (DGSE), Télécom SudParis and its association Hackademint. This 2022 edition marked the double anniversary of "the 80th anniversary of the BCRA, the secret service of the Free France and the 40th anniversary of its heir, the DGSE".

Description

This is a translation of the original description in French.

New recruit! We need you around here. One of our agents has just intercepted a short telephone conversation between two Hallebarde agents. An important exchange of confidential documents is to take place and to indicate the location of the meeting, one of the enemy agents has sent the following picture to his colleague with the following message:

What a beautiful sunrise, isn't it? I'll be waiting in the street between the building in the foreground and those in the background. See you tonight, 10pm.

We have less than a day to find out the name of the street and prevent the exchange!

Flag format: 404CTF{md5 of the full street name}.
The street name must be in lower case, include the type of street (e.g. avenue, street, boulevard...), without accents, without abbreviations, and all spaces must be replaced by dashes. For example: if the street is Avenue de Saint-Mandé in Paris, the correct flag is 404CTF{129af9edde5659143536427f9a5f659a}.

Author : Artamis

Solution

Before starting this OSINT investigation, lets analyse the image provided.

We can immediately check that there is no useful exif data. According to the instructions, it is a rising sun, so we can assume that the picture was taken facing east. Three prominent buildings can also be clearly seen in the background.

Before going further, we will assume that this is a French city and look for a list of the tallest buildings in France.

We then come across the Wikipedia page on France's tallest skyscrapers. Looking at the images associated with the towers, we notice that the third one looks remarkably similar to the one in our photo.

Liste des plus hauts gratte-ciel de France

By simply reading the Wikipedia description of the Tour Incity, we find a link to the Part-Dieu district page. Fortunately for us, the viewpoint of the description image is very similar to the one of our photo. The description also states that this photo was taken "from Fourvière".

Page Wikipédia de la Part-Dieu

We can now start to search with Google Earth for places around Fourvière or further west, probably higher than the rest of the city. We can then see that the Fourvière district is located on a hill.

Quartier de Fourvière Google Earth

Exploring the surroundings, we soon find a building on the East side of the hill which looks like the one in the background of our photo.

Bâtiment Montée Saint Barthélémy

The street below this building is called the Montée Saint Barthélémy. We can then format and hash this street name with echo -n "montee-saint-barthelemy" | md5sum, which gives us the flag 404CTF{eb66c65861da9fe667f26667b3427d2c}.

writeup 404ctf OSINT
UniCovoit's intial release! 404CTF Write-Up Fiché JS

Caught a mistake or want to contribute to this blog post? Edit this page on GitHub!