write up ctf by ariafatah

ariaf.my.id/ctf_aria/bandit/level 16.html

soal

The password for the next level can be retrieved by submitting the password of the current level to port 30001 on localhost using SSL/TLS encryption.

Helpful note: Getting “DONE”, “RENEGOTIATING” or “KEYUPDATE”? Read the “CONNECTED COMMANDS” section in the manpage.

solve

## ncat
echo "8xCjnmgoKbGLhHFAZlGE5Tmu4M2tKJQo" | ncat --ssl localhost 30001
# Correct!
# kSkvUpMQ7lBYyCM4GBPvCvT1BfWRy0Dx

another option but didn’t work

echo "8xCjnmgoKbGLhHFAZlGE5Tmu4M2tKJQo" | openssl s_client -connect localhost:30001
# CONNECTED(00000003)
# Can't use SSL_get_servername

flag

kSkvUpMQ7lBYyCM4GBPvCvT1BfWRy0Dx