Lawful Evil (lawful_evil) wrote,
Lawful Evil

HackerOne CTF- Thermostat

I wasn't sure what to expect with this one.   The Thermostat.   Android CTF... I didn't have a readily accessible android device... so initially downloaded the file.   Thermostat.apk   well, ok.   I started downloading nox from

However, while waiting for nox, I opened the apk using 7-zip.   I poked around to see if the flag was in plaintext in one of the files.   I eventually found 'classes.dex' and opened it just in notepad.exe on windows.   I searched for flag (forgot the ^flag^ or $flag$ just flag) and found a ton of them.   Eventually I cycled through and found both flags right next to each other.   Boom.   Easy squeezy.

From the hints, I'm guessing I was supposed to approach this a bit differently.   I never did get the APK opened.

Flag0 -- Found

  • Communication is key

  • Have you looked at what the app is sending to the server?

Flag1 -- Found

  • Doesn't the MAC seem interesting?

  • Access to the source code would help

  • Check out the Android Quickstart video from Hacker101

Tags: android, apk, ctf, cybersecurity, hackerone, hacking, thermostat

  • HackerOne CTF Petshop Pro

    Easy and straightforward shopping. A couple items you can add to a cart and checkout. Playing with the cart a bit, we see that the cart/checkout…

  • HackerOne CTF Postbook

    Postbook... 7 flags at 4 points each. The page looks like it can have a post timeline for posts you create, a way to sign in, sign up, etc. After…

  • HackerOne CTF Hello World!

    On this CTF you face a "What is your name?" and an option to download the binary. After downloading it and Ghidra, we open it up and see…

  • Post a new comment


    default userpic

    Your reply will be screened

    Your IP address will be recorded 

    When you submit the form an invisible reCAPTCHA check will be performed.
    You must follow the Privacy Policy and Google Terms of use.