 Hello everyone, my name is John Hammond and this is another video for try hack me one awesome online training platform That's kind of on par and I think sometimes even better than hack the box So let's dive into it I'm gonna switch to my screen over here and you can see I am logged in to try hack me try hack me calm The only rooms that I've completed thus far are just that basic penetration testing room that we had that recent video on And now let's do something else. I want to showcase the ocent room It's all about open-source intelligence, right? That's what ocent the acronym is supposed to really stand for So we need to go ahead and join this room to actually be able to interact with it So I'll let that green button there join room and then we should be able to work with this Looks like we have a few tasks only just a few of them And they say what information can you possibly get starting with just one photo? So we have something to download and that's literally it. Let's go ahead and download this I'll actually try and right-click. Can I do that? Can I do a W get on that? Probably not whatever Let's go ahead and set up a directory so I can work with this. I'm gonna call it THM All I have is the basic pen testing room done But let's call ocent and know that that is a lowercase h right the acronym is osint for open-source intelligence They're just kind of being clever and funny with the name here ocent. So let's do this Let's download this file windows XP dot jpeg and I'll put it in THM I have a lot of files apparently just flowing through here whatever and Now we have that file downloaded into the ocent directory. Awesome. So let's go ahead and see what that picture is and It's literally just the background that would come to fault with Windows XP So not the most helpful thing. It's called a jpeg here. We can run Windows on it It's a jpeg run file on it. I Said run Windows. You don't want to run Windows on an image. It says what is this user's avatar of? Don't really know what that could mean here. You could type in like Windows XP, but They give you a nice little hint here in the answer format They the number of asterisks is literally the length of the answer that you're looking for so that might help You can check out the hints if you want, but I want to do my other kind of basic reconnaissance on this file If you're running in Linux a really other great tool you could use to examine metadata is exif tool And if you could install that if you don't have it, it might be able to find the repos So exif tool on that image and we could see here We have some interesting information. It knows the GPS position, which I guess you could use to track down his location latitude and longitude Copyright oh wood flint, which is kind of peculiar And that's all the information that we could get out of that You could do other things like strings on that image to see if there's anything new in there You'll also kind of be able to see some of that metadata really in there if I modify that length to like eight characters long You might be able to see some better potential information Copyright GPS latitude and longitude in his this thing oh wood flint. So let's go ahead and look up what that might be You could literally just kind of Google oh wood flint and You can see some my some my links are purple here because I had to do this challenge obviously myself There's a Twitter account here Looks like there are some write-ups So be careful not to go down that rabbit hole. Don't look at those write-ups Make sure you can solve this yourself unless you really really want to here. All right Let's go take a gander at what all this is. Oh that github repo is actually His name too. So let's look through those. So I opened this Twitter page And that username is the exact same name as what we've seen in the actual image here Just a simple hello world tweet from 2019. It says for my house. I can get free wi-fi. Huh, okay Something odd and strange to share on Twitter Looks like The user's avatar is a cat and I think that is what they're trying to go for I originally when I read that I didn't fully understand it, but Let's go ahead and submit that. Let's see if cat is the right answer Which it is awesome the other question is what city is this person in so We have some of our results twitter Twitter just says space so that doesn't help us all that much Maybe those other links we might have found had some good stuff Oh, this could very well be his github He only has a people finder and that's it. So not a lot of stuff. It says hi. I'm from london Maybe London is the answer that we need here. We could go ahead and try that Submit And that's right too. Okay. Next question is what's the ssid of the WAP he's connected to or the wireless access point Okay, well we have the bssid from his twitter post Click on that. Oh, so someone responded at gilanting what gianting watches. No way. That's not his SSID is it? No, that doesn't really match that format Well, okay, so we could track that down on like weigel or wiggle I honestly don't know how to pronounce the wireless networking map Um, no don't know my location, please You could search for a bssid here over on the side and then if you were to go ahead and hit that filter button I did this and it's kind of annoying. It doesn't bring you to any results really So I just kind of scrolled out and tried to zoomed away zoomed out and tried to see if I could find any results Stuff in the United States. We told him we were in London. We already learned that he's in London So we could go check out over there. Oh, yeah, and you can see just a tiniest blip Over in London We'll zoom way in on that See what information it could give us Whoa Okay so Zooming all the way in It says unilever wifi Yeah, unilever wifi. Let's try that You need a lever Was it a capital F? Yep. Wifi submit Cool. All right Interesting. Don't put your bssid bssssid Out on the internet, especially on twitter. What is his personal email address? Oh, that was on his github page, wasn't it? Yeah, yeah, yeah project starting soon. Email me if you want to help out. Oh would flint at gmail.com We can slap that in there and what site did you find his email address on that was totally github Done where has he gone on holiday? Huh, okay That's not on his twitter page. That's all that we saw in there And nothing in github really. Oh, he has his own website. He has a little blog It says hey, I'm in new york right now Okay, perfect Contact page Whatever Contact page new york Where's it gone on holiday? What is this person's password? Well, we might be able to do some digging on his website because if he's hosting that himself on the internet We can kind of just view the source and see what the back end is made out of A lot of external links a lot of wordpress stuff Yep, a lot of wordpress stuff I'm in a york right now. So update the system's account my new photos What the heck I'm in new york right now. So update this right away with new photos and there's a A white text paragraph White color text paragraph that is says penny dropper Weird. All right. We can try if that's it. Oh, yeah, it has a period in it. That's gotta be it. It's gotta be it Cool. Whoo We did it That's that room. That is the oscent challenge kind of kind of small stuff kind of simple stuff, right? But um, kind of cool It just goes to show how much information you can really track down if there is metadata available on your pictures here Just simply running x of tool Maybe we were to get able to get a name able to get some information track him down online Even a gps coordinates. That's that's kind of crazy. So Goes to show What sort of information is out there when you put that on the internet? Speaking of that, I should probably go respond to all those twitter messages notification. I have just one no one loves me Hey, if you like the video, please go subscribe to me on the youtube's and follow me on the twitter Thanks for watching everybody. I hope you enjoyed this video. If you did, please do press that like button Please do leave a comment. I love to get your feedback I love to hear what you'd like to see Do you want to see more try hack me it seemed to be really well received in the first video So I want to do a little bit more with it But thank you guys for watching. Love to see you on the discord server patreon paypal LinkedIn instagram facebook all those things Thanks everybody. See you later