Chicken Little
[Chicken_Little_1]
Chicken Little
Chickens.
neverlan@chickenlittle.neverlanctf.com -p 3333password: neverlan
Chicken Little
Recon
This is a multilevel challenge, where each flag is also the password for the next level.
Level 0
For this challenge you need to get the contents of Welcome.txt
neverlan@chicken-little:~$ cat Welcome.txt
----------------------------------------------------------------------------
__ __ _
\ \ / / | |
\ \ /\ / /__| | ___ ___ _ __ ___ ___
\ \/ \/ / _ \ |/ __/ _ \| '_ ` _ \ / _ \
\ /\ / __/ | (_| (_) | | | | | | __/
\/ \/ \___|_|\___\___/|_| |_| |_|\___|
----------------------------------------------------------------------------
_________________
< EAT MORE CHIKIN >
-----------------
\ ^__^
\ (oo)\_______
(__)\ )\/\
||----w |
|| ||
level1 password:eat-chicken-not-cows
eat-chicken-not-cows
Level 1
Level: level1
Instructions
═════════════════════════════════════════════════════════════════════════════════
Chickens like to hide. Find one?
level1@chicken-little:~$ ls -la
total 32
drwxr-xr-x 1 level1 level1 4096 Aug 9 2019 .
drwxrwxr-x 1 root root 4096 Feb 11 04:12 ..
-rw------- 1 level1 level1 220 Aug 31 2015 .bash_logout
-rw------- 1 level1 level1 3771 Aug 31 2015 .bashrc
-rw------- 1 level1 level1 471 Aug 9 2019 .chicken.txt
-rw------- 1 level1 level1 289 Aug 9 2019 .instructions
-rw------- 1 level1 level1 655 Jul 12 2019 .profile
level1@chicken-little:~$ cat .chicken.txt
,~.
,-'__ `-, BAWK BAWK
{,-' `. } ,')
,( a ) `-.__ ,',')~,
<=.) ( `-.__,==' ' ' '}
( ) /
`-'\ , )
| \ `~. /
\ `._ \ /
\ `._____,' /
`-. ,'
`-. ,-'
`~~~~'
//_||
__//--'/`
,--'/` '
'
level2:chrispy-or-breaded
chrispy-or-breaded
Level 2
Level: level2
Instructions
═════════════════════════════════════════════════════════════════════════════════
Ok. So you found the hidden hidden chicken. Now you need to follow the BAWKs
and find what you're looking for.
level2@chicken-little:~$ ls -la
total 18596
drwxr-xr-x 1 level2 level2 4096 Aug 9 2019 .
drwxrwxr-x 1 root root 4096 Feb 11 04:12 ..
-rw------- 1 level2 level2 220 Aug 31 2015 .bash_logout
-rw------- 1 level2 level2 3771 Aug 31 2015 .bashrc
-rw------- 1 level2 level2 19011773 Aug 9 2019 BAWKBAWK.txt
-rw------- 1 level2 level2 367 Aug 9 2019 .instructions
-rw------- 1 level2 level2 655 Jul 12 2019 .profile
level2@chicken-little:~$ grep level3 BAWKBAWK.txt
BAWK level3:which-came-first-the-chicken-or-the-bawk
which-came-first-the-chicken-or-the-bawk
Level 3
Level: level3
Instructions
═════════════════════════════════════════════════════════════════════════════════
GREP OR SOMETHING ELSE. NICE. Now can you do the same thing with a binary file?
Are there BAWKs here?
level3@chicken-little:~$ ls -la
total 1032
drwxr-xr-x 1 level3 level3 4096 Aug 9 2019 .
drwxrwxr-x 1 root root 4096 Feb 11 04:12 ..
-rw------- 1 level3 level3 220 Aug 31 2015 .bash_logout
-rw------- 1 level3 level3 3771 Aug 31 2015 .bashrc
-rw------- 1 level3 level3 1024033 Aug 9 2019 binary
-rw------- 1 level3 level3 358 Aug 9 2019 .instructions
-rw------- 1 level3 level3 655 Jul 12 2019 .profile
level3@chicken-little:~$ strings -a binary | grep level4
level4:wut-those-werent-chickens
wut-those-werent-chickens
Level 4
Level: level4
Instructions
═════════════════════════════════════════════════════════════════════════════════
Nice job on that last level. LET's see if you can find the story about
chicken little.
level4@chicken-little:~$ ls -la
total 32
drwxr-xr-x 1 level4 level4 4096 Aug 9 2019 .
drwxrwxr-x 1 root root 4096 Feb 11 04:12 ..
-rw------- 1 level4 level4 220 Aug 31 2015 .bash_logout
-rw------- 1 level4 level4 3771 Aug 31 2015 .bashrc
-rw------- 1 level4 level4 343 Aug 9 2019 .instructions
-rw------- 1 level4 level4 655 Jul 12 2019 .profile
-rw------- 1 level4 level4 1315 Aug 9 2019 the_sky_is_falling
level4@chicken-little:~$ zcat the_sky_is_falling | grep level
level5:is-the-sky-falling?
is-the-sky-falling?
Level 5
Level: level5
Instructions
═════════════════════════════════════════════════════════════════════════════════
Pull the image file to your computer and look at it.
You don't know how to do that? Google is your friend.
Something like "Transfer files over SSH" might do the trick.
level5@chicken-little:~$ ls -la
total 428
drwxr-xr-x 1 level5 level5 4096 Aug 9 2019 .
drwxrwxr-x 1 root root 4096 Feb 11 04:12 ..
-rw------- 1 level5 level5 220 Aug 31 2015 .bash_logout
-rw------- 1 level5 level5 3771 Aug 31 2015 .bashrc
-rw------- 1 level5 level5 406571 Aug 9 2019 chicken-little.png
-rw------- 1 level5 level5 426 Aug 9 2019 .instructions
-rw------- 1 level5 level5 655 Jul 12 2019 .profile
From own host:
$ scp -P 3333 level5@44.233.149.141:*.png .
###############################################################
# Welcome to my game #
# NEVERLAN CTF 2020 #
# Make sure you read the rules #
###############################################################
level5@44.233.149.141's password:
chicken-little.png 100% 397KB 339.4KB/s 00:01
$ display chicken-little.png
i-was-right-all-along-it-was-falling
Level 6
Level: level6
Instructions
═════════════════════════════════════════════════════════════════════════════════
This one is fun. You'll need to crack the chicken's password.
Chickens aren't very smart so their password is less than 5 characters.
You can find the hash for level7 in the normal linux hash location.
Use hashcat on your laptop (not is this SSH).
level6@chicken-little:~$ grep level7 /etc/shadow
level7:$6$Avlq2aF8$dHQkjNT0H/YH9EeL0N/uyGaizeW83stNbvD8/P0jbetBzhI5hQYbLwe/FpXYju11qQHKVxOPtwZQ3ZGdRAvo0.:18303:0:99999:7:::
Running hashcat with this password hash:
$ hashcat -m1800 -a 3 hash.txt
...
$6$Avlq2aF8$dHQkjNT0H/YH9EeL0N/uyGaizeW83stNbvD8/P0jbetBzhI5hQYbLwe/FpXYju11qQHKVxOPtwZQ3ZGdRAvo0.:bawk
Flag
bawk