Bluetooth — Unknown file
15 Points
Google is your friend
Author
Neptune, 1 March 2019
Statement
Your friend working at NSA recovered an unreadable file from a hacker’s computer. The only thing he knows is that it comes from a communication between a computer and a phone.
The answer is the sha-1 hash of the concatenation of the MAC address (uppercase) and the name of the phone.
Example:
AB:CD:EF:12:34:56myPhone -> 023cc433c380c2618ed961000a681f1d4c44f8f1
In This Challenge We Have Given Two Resource For Reference
Solution
With the help of the given resources we got to know the the given file is Bt snoop file.
What is BT Snoop File Format
The BTSnoop file format is suitable for storing Bluetooth® HCI traffic. It closely resembles the snoop format, as documented in RFC 1761
When We Start the Challenge we got a file named ch18.bin.
First we will open the file in wireshark to see the communication between the pc and the mobile device.
According to the challenge we have to find the MAC address and the name of the phone and convert it into SHA1 Hash.
After opening the file through wireshark we will click on Wireless -> Bluetooth Devices
Then we will able to find the name of the device and the MAC address
Now we have to combine the name of the mobilee device and the MAC address and encrypt them in SHA1 hash.
You can use and website to Encrypt them.
For Your Comfort I have provided the site for encrytion
After encrytion submit the hash to solve the CTF