Data Elf-iltration

export object > http

christmaslists.zip has password to unzip
using john --> zip2john christmaslists.zip > for-john
	       john --wordlist /usr/share/wordlist/rockyou.txt for-john
password = [redacted]
uzip -> christmaslisttimmy.txt {answer 2}

steghide extract -sf TryHackMe.jpg
christmasmonster.txt   {answer 3}

Task

• What data was exfiltrated via DNS?

  Candy Cane Serial Number 8491   -via wireshark DNS
  

• What did Little Timmy want to be for Christmas?

  PenTester
  

• What was hidden within the file?

  RFC527