In this challenge, you're provided a link to a packet capture (pcap) file. Packet capture files grab a snapshot of the network traffic across a number of devices. As implied by the title of the challenge, we're looking for a comment within one of the packets in the file:
<img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1620514621070/PrHk8eP6q.png" alt="image.png" />
Packet capture files are best parsed/analyzed through Wireshark, which is downloadable for free <a target="_blank" href="https://www.wireshark.org/download.html">here</a> . Once you open the file, you see an extensive amount of packets:
<img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1620514828580/4RZI2y4E7.png" alt="image.png" />
By entering a simple ctrl+f, an additional search bar drops down at the top of the window. Select "Packet details" from the dropdown menu on the left side of the bar. Since we know the format of the flags for the challenge start with "DawgCTF" we can try searching for that:
<img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1620514989973/nI-j0RtKe.png" alt="image.png" />
After clicking "Find," we're taken directly to a comment in one of the packets, and the flag for the challenge is displayed:
<img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1620515054593/Rp7EsATws.png" alt="image.png" />
Flag for the challenge: 
<code>DawgCTF{w3 h34r7 0ur 1r4d 734m}</code>

In this challenge, you're provided a link to a packet capture (pcap) file.  Packet capture files grab a snapshot of the network traffic across a number of devices. As implied by the title of the challenge, we're looking for a comment within one of the packets in the file:



![image.png](https://cdn.hashnode.com/res/hashnode/image/upload/v1620514621070/PrHk8eP6q.png)

Packet capture files are best parsed/analyzed through Wireshark, which is downloadable for free  [here](https://www.wireshark.org/download.html) . Once you open the file, you see an extensive amount of packets:


![image.png](https://cdn.hashnode.com/res/hashnode/image/upload/v1620514828580/4RZI2y4E7.png)

By entering a simple ctrl+f, an additional search bar drops down at the top of the window. Select "Packet details" from the dropdown menu on the left side of the bar. Since we know the format of the flags for the challenge start with "DawgCTF" we can try searching for that:


![image.png](https://cdn.hashnode.com/res/hashnode/image/upload/v1620514989973/nI-j0RtKe.png)

After clicking "Find," we're taken directly to a comment in one of the packets, and the flag for the challenge is displayed:


![image.png](https://cdn.hashnode.com/res/hashnode/image/upload/v1620515054593/Rp7EsATws.png)

Flag for the challenge: 
```DawgCTF{w3 h34r7 0ur 1r4d 734m}
``` 


Difficulty - Easy

DawgCTF 2021 - Just a Comment

CTF write-ups and other resources/references


MatryoshkaHax

MatryoshkaHax

DawgCTF 2021 - Just a Comment

Difficulty - Easy