Author: roerohan
The file downloaded is a password protected Keepass file. You bruteforce the password using John the Ripper and you open the file to see the flag.
- John the Ripper
- keepass2john
Dang it, not again...
Download the file below.
[easy_keesy](https://ctf.nahamcon.com/files/4ae2a2f6c8aaca62ed67141489e995d0/easy_keesy?token=eyJ1c2VyX2lkIjoyMzk2LCJ0ZWFtX2lkIjpudWxsLCJmaWxlX2lkIjozMH0.XuYl2A.3KcnraGOdGA0MCn9yVrweyEto-E)
The file is included in the repo as well: easy_keesy.
First, we check what kind of a file it actually is. The Linux file can be used for this.
$ file easy_keesy
easy_keesy: Keepass password database 2.x KDBXSo, this is a password protected keepass file. We're going to use John the Ripper to bruteforce the password. But, before that, we need to convert the file into a format John can read.
keepass2john easy_keesy > ekThe output from the keepass2john tool is now saved in a file ek. Now, you just run john ek and wait till you get a password. The valid password obtained is monkeys.
Now, just open the keepass file, enter the password, and read the flag.