Grave Digger 1

Challenge:

Turbo Tactical has gained access to a machine owned by DEADFACE. It appears crypto_vamp, a new recruit at DEADFACE, used a weak password for his account on d34th's machine. See if you can find the flag associated with "Grave Digger 1"

env.deadface.io

Password: 123456789q

Solution:

After SSH'ing into the provided server we conducted initial reconnaissance and discovered the flag when checking the environment variables that were currently set:

$ ssh crypto_vamp@env.deadface.io

crypto_vamp@3f160b00fdd5:~$ env

GRAVEDIGGER1=flag{d34dF4C3_en1roN_v4r}
HOSTNAME=3f160b00fdd5
PWD=/home/crypto_vamp
HOME=/home/crypto_vamp
TERM=xterm
TMOUT=1600
SHLVL=1
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
_=/usr/bin/env

The accepted flag was: flag{d34dF4C3_en1roN_v4r}