WannaFlag III: Infiltration

WannaFlag III: Infiltration

March 17, 2023
1 min read
3-infiltration
WannaFlag III: Infiltration
Solver
e enscribe
Author
dree
Category
OSINT
Points
318
Solves
82
Flag
wctf{sp1nnnNn_tH3_cUb333e3E}

We have some solid leads so far. However, we need our flags back. Find a way to locate their communication and infiltrate their private ransom service, and submit the stolen flag we wanted to use for the first OSINT!
From outside intelligence, we know the group sometimes goes by w4nn4_fl4g

We’re now given a keyphrase to work with: w4nn4_fl4g. We can search for the specific term on Google by wrapping it in quotes, and our first result is a subreddit, r/w4nn4_fl4g:

Reddit

Looking through the small amount of posts on this locked subreddit, we can find three users in particular which have access to post permissions (alongside one moderator): u/w4nn4fl4g_admin, u/RemarkableDiamond443, and u/[deleted]. None of the posts and memes were particularly interesting or relevant, but one thing stuck out in particular: the deleted user. We can find the username of the user through querying camas.unddit.com for a specific comment in r/w4nn4_fl4g; let’s utilize the comment “sorry” they left under this post:

First Query

We found the original username of the deleted user: u/Chemical_Bread1558! We can now query for posts the user made under the subreddit:

Second Query

We’ve got a hit on a moderator-deleted post. Let’s check it out:

Deleted Post

Well, that doesn’t really help. However, we can see the post’s original content by using the Unddit tool once again — simply replace the reddit in the URL with unddit to see deleted comments:

Unddit

The secret website provided leads us to this:

Website

We’ve managed to recover the flag from the first OSINT challenge, but it’s actually meant to be submitted as part of the third!