This is a level 2 challenge LeakedHashes. This one is pretty simple though we are asked to connect to a service running at shell2017.picoctf.com:44804 now as we connect we are asked for the username and password to login. We are given a bunch of username and hashed password so all we need to do is find a website which hosts some leaked hashes and reverses them. The one which i used is https://crackstation.net/ put the list of 20 hashes at once on the website and it will give the plaintext for every hash that exists in its database. I used the below credentials. Good luck getting the flag.

username:ilene
password:r1gh7
Advertisements