Hack the Box: Templed

Challenge Lab: Crypto

Difficulty: Easy

“I found the following message in a temple, I had the sensation that they were hiding something. Could you help me discover what it was?

Zip Password: hackthebox

sha256: eeebd042dd1a65d271498a6fa5972b08f10c53f82d2a38c5c52eb9c8edb251f7

We start by downloading the .zip file, then use the password provided to open this .jpg image:

I put this in a photo editor and started adding random filters and adjusting things. When I turned the exposure all the way up I saw what immediately reminded me of the Runic Alphabet:

However, this proved fruitless, because there are some symbols that don’t have runic counterparts.

I turned the exposure back to normal, stared at it for awhile, then Googled “temple crypto” and saw this:

Which, according to this Wikipedia page, was a numeral system for European Monks living in the middle ages to efficiently write numbers. What it looks like you do is layer these on top of each other to create symbols. Following those rules…

Translates to:

72 84 66 123 77 48 78 107 115 95 107 78 51 119 33 125

Using a simple online converter (found HERE) to convert this from decimal to ASCII, I was able to find the flag!

Happy Hacking! ❤




CTF Writeups to facilitate cyber education.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Gowebbi fake- Read the truth behind the rumors- [Strongly agree/ recommend]

Cryptographic Hashing Functions and Password Salts.

InfoSecSherpa’s News Roundup for Saturday, February 12, 2022

Image by Zephyrka from Pixabay

The Kettlemine NFT airdrop is here

InfoSecSherpa’s News Roundup for Friday, April 8, 2022

The wait is over, PNS launching in 7 Days!

InfoSecSherpa’s News Round Up for Monday, November 22, 2021

iNf4mation Quiz

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store


CTF Writeups to facilitate cyber education.

More from Medium

UTCTF 2021 — RF is Spooky

[ Hack The Box ] Devzat — Writeup

Hacker101 CTF [Medium] MicroCMS v2 Write-up

Writeup: CSRF where token is tied to non-session cookie @ PortSwigger Academy