Blood Bash 2

Challenge:

We've obtained access to a system maintained by bl0ody_mary. We believe bl0ody_mary stole a sensitive document and is storing it on her Linux machine. Search her system for any files relating to De Monne Financial.

Username: bl0ody_mary
Password: d34df4c3

bloodbash.deadface.io:22

Solution:

During the previous Blood Bash challenge we identified a hidden file in the Documents directory:

$ find .          
.
./De Monne Customer Portal.pdf
./.bash_history
./Videos
./.bash_logout
./.profile
./Downloads
./.bashrc
./Music
./Documents
./Documents/flag1.txt
./Documents/.demonne_info.txt
./Pictures

Dumping the contents of .demonne_info.txt revealed the flag:

$ cat ./Documents/.demonne_info.txt

flag{a856b162978fe563537c6890cb184c48fc2a018a}