TryHackMe - OhSINT
What information can you possible get starting with just one photo?
Steganography
We start by downloading the WindowsXP.jpg screensaver.
The most obvious thing to check is the handle in the copyright. Once that is exhausted, we can check the GPS position.
Copyright : OWoodflint GPS Position : 54 deg 17’ 41.27” N, 2 deg 15’ 1.33” W
Twitter handle: @OWoodflint Likes taking photos Likes open source projects Likes cats
I downloaded the profile picture as well, but exiftool turned up nothing interesting.
BSSID: B4:5D:50:AA:86:41
Github
Github: OWoodfl1nt Email: OWoodflint@gmail.com From London
Wordpress Blog
Through google, we stumble across a blog:
https://oliverwoodflint.wordpress.com/author/owoodflint/
Full Name: Oliver Woodflint In New York on Holiday on 3rd March 2019
We also find a password hidden with white coloration in the one blog post. This was a very odd place to find a password.
Coordinates
Now we return back to the coordinates of the photo:
54 deg 17’ 41.27” N, 2 deg 15’ 1.33” W
Using findlatitudeandlongitude.com, we can get coordinates:
Latitude: 54.294797°
Longitude: -2.250369°
Using the BSSID from the twitter post, we can look up the network on Wigle.net.
Questions
What is this users avatar of?
Twitter - it is a cat.
What city is this person in?
Github - London
What’s the SSID of the WAP he is connected to?
Wigle - UnileverWiFi
What is his personal email address?
Github - OWoodflint@gmail.com
What site did you find his email address on?
Github
Where has he gone on holiday?
Wordpress - New York
What is this persons password?
Wordpress - penn{censored}.!