Email Analysis CTF

On 10:hats internal CTF, I create a challenge that require participant to analyze some email that attachment.

Sample

This email I take as sample for challenge. In this eml, it contains more than one electronic mail messages. That means, open up using any Email (thunderbird, gmail and etc), we can only read top first part only. For the rest, it not display some of other part contains attachment.

Understanding How electronic mail messages Work

Need to have some beginner skill to read email.
What is important part in email.
What is DNS, DKIM, hosting etc.

Find attachment

Looking into content-type (same as in Burp)
Get some info about file name and encoding type.

Using base64 guru

pst : something you need to understand how it work and manually do instead using tools given. :D

PreviousStego hunting NextPractical Ethical Hacking

Last updated 1 year ago