Here are the answers to Puzzle #9: Ann’s Deception (DEFCON 2011):
- Round 1 Decryption Key: r0und1g0!!
In this capture we were looking for the name of the company. This is located inside an email.
- Round 2 Decryption Key: !n1c3?w0rk
In this capture we were looking for the date of a speech given by Bruce Schneier. To solve this puzzle you must carve out a packet capture which was sent as an email attachment. Inside that packet capture, you can find the data by looking through the web traffic to see the pages Ann viewed.
Answer: October 6-7, 2011
- Round 3 Decryption Key:?g3tting!t0ugh
In this capture we were looking for Romulus’s password. This can be found by carving out the VOIP conversation and listening to it.
- Round 4 Decryption Key: m4k1ng?pr0g
In this packet capture we were looking for the name on the 16th line in a spread sheet. To find the answer, you need to carve out the SMB transfer of the 7zip file containing the credit card file. In order to unlock the 7zip file you will need to use the password YOU found in Round 3.
Answer: Jason Wilson
- Round 5 Decryption Key: 0v3r#h4lf?w4y
In this packet capture, you need to carve out the SMB file transfer of the ingredients list. To unlock the 7zip file containing the ingredients list, you will need to use the password you found in in Round 4.
Answer:8.4 oz- Red Bull; Tim
- Round 6 Decryption Key: ch33rs!0n3$m0r3
Round 6 requires you to find the final ingredient of the 133t pill. To unlock the volume, you must use the cipher along with the previous answers from Rounds 1-5. Begin by solving the cipher, and then use the cipher as the password to unlock the Truecrypt volume.
Cipher Solution: 00gmu1rt#?
Answer: 2oz Vodka
Copyright 2011, Lake Missoula Group, LLC. All rights reserved.