I Sea You (Part 1)

After the golden crown was stolen, our team of operatives intercepted unusual sea-radio waves coming from our stronghold. We suspect that there is a double-agent that helped Atlantis steal the crown!

Your Mission: Intercept the message and make contact with the double-agent

For this challenge, we were given a .wav file, and immediately we went to launch Sonic Visualizer. By experience, most challenges that involves audio files are Steganography challenges. An example would be this write-up.

Unfortunately, after opening it in Sonic Visualizer, we did not see anything of interest. We were skeptical 🤔

.wav file in sonic visualizer

We decided to play the audio and listened to it. To our surprise, at the 1 minute mark of the audio, we heard a familiar sound - known as Morse Code.

We fired up Audacity, an audio software, and took a look at the .wav file.

Audacity

The 7th and 8th at the bottom caught our eye. We decided to extract that portion of the audio by deleting the other portion of the audio and ONLY leaving the Morse Code portion.

export as .wav

After a bit of Googling, we uploaded our extracted morse code portion to a Morse Code decoder, and we receive the results in text.

morse code decoded

The next thing we did was send an email to ORCA.ATLANTIS@GMAIL.COM and within minutes we got a reply WITH a partial flag!!! 😲

Agent Orca replied!

Partial Flag: STANDCON22{Y0u_F0uNd_0r

From the looks of it, there is nothing out of the ordinary and so we thought we have hit a dead end.

BUT, we saw there was an empty space right after Agent Orca's sign off, after experiencing Grey Cat The Flag's Ghost challenge, we immediately highlighted that empty white space!

hidden text

PS: You couldn't have chosen a better location to store the treasure, my liege! I loved the food so much that I left a review! (As you requested, I am sending this in White at the bottom of the email so as to be as discreet as possible)

The huge hint from the text was "I left a review!". And so we figured that we have to find some sort of a Google Review on Agent Orca's profile.

We used an online OSINT tool, called Epios, that helps us find Agent's Orca profile via its email address.

Alternatively, you could use this Reddit post/guide to find user's review via Google ID.

epios

Clicking onto the Google Maps link, we went to the Reviews tab and we found the other half of the flag!! 🎉🎉

second half of the flag!

Final Flag: STANDCON22{Y0u_F0uNd_0rC@'s_SEA_cR3t!}

Challenge Files

91MB
intercepted-audio-sea-waves.zip
archive
PreviousSTANDCON 2022NextLocate Me

Last updated