πEmail Analysis CTF
On 10:hats internal CTF, I create a challenge that require participant to analyze some email that attachment.
Sample
This email I take as sample for challenge. In this eml, it contains more than one electronic mail messages. That means, open up using any Email (thunderbird, gmail and etc), we can only read top first part only. For the rest, it not display some of other part contains attachment.
Understanding How electronic mail messages Work
Need to have some beginner skill to read email.
What is important part in email.
What is DNS, DKIM, hosting etc.
Find attachment
Looking into content-type (same as in Burp)
Get some info about file name and encoding type.
Using base64 guru
pst : something you need to understand how it work and manually do instead using tools given. :D
Last updated