Tenable CTF 2023 — Tenable Publication

Faishol Hakim

Published in

MII Cyber Security Consulting Services

4 min readSep 6, 2023

Tenable Publication

Start your Engine

Really wasting time to read each blog from tenable and try to find something interesting related the flag. Until I found this on the page source from someone blog. f0R_d@Yz}, and I assume it the last part of the flag. Then i try to read the source page from same writer, then find the first part of the flag

flag: flag{b10gs_f0R_d@Yz}

2. 3 Strikes and you’re out!

Given a hint just like the image above. Nothing informative can got here. Then try to find out about this strik-e things on the tenable blog. When going to part Resource Zero-day Research, find some keyword related to the picture.

It a Strikingly CMS Prototype Pollution. And it same font type with the hint

So, like the part 1, try to find some hints on the source code view on comment section. Unusal string used in comment on the source code.

<!-- be bg a_ bf bc a_ bf bc a_ bf b_ a_ bf bb a_ bb e` a_ ba ee a_ ba ee a_ bf bf a_ bf bf a_ bf bf a_ ba ed a_ bf bc a_ be bd a_ be ed a_ be b` a_ be ba a_ be eb a_ be bd a_ ba ed a_ be bb a_ be ee a_ be ec a_ ba ee a_ bf bb a_ be bd a_ be bb a_ bf bd a_ bf ba a_ be bh a_ bf bc a_ bf bh a_ ba ee a_ bf ba a_ be bd a_ bf bb a_ be bd a_ be b` a_ bf ba a_ be bb a_ be bg a_ ba ee a_ bf bc a_ bf ba a_ be b` a_ ba ec a_ bb ba a_ bb b_ a_ bb ba a_ bb bb a_ ba ec a_ bb ba a_ bb b_ -->

Identify this strings on dcode.fr and cyberchef. Some option come in

Try to analyze with each option, and find decoded strings look like hexadecimal when using ROT-47.

Then decode it and find some information.

It need to decoded twice use hexadecimal option with auto delimiter. The link given drive to other tenable blog about CMS Vulnerability. Like the previous technique. Try to find some information on the commented source code.