a collection of legacy challenges from the US Navy Cyber Competition Team 2019 Assessment . It is rated as
The most interesting findings are in the ICMP traffic, which is being used as a covert communication channel. Filtering for ICMP packets with frame.len != 98 reveals conversations where hackers are sharing information. You can extract these conversations with:
🔬 To continue your network forensics training, explore additional labs on the TryHackMe Free Path Catalog .
The binary enforces a specific validation mathematical puzzle, often checking inputs against complex arithmetic parameters, such as tracking combinations or factors of large target numbers (e.g., factors of 711000000 ).
If you are currently stuck on a specific step of this room, let me know: Which or port you are currently analyzing The error message or unexpected output you are seeing What tools you have already tried running
As noted in this Medium writeup by Emanuele Ciccolunghi , this CTF offers a fun, practical look into investigating data, specifically focusing on PCAP analysis. What is the CCT2019 Room? TryHackMe
Start by analyzing the provided image files using binwalk . Run exiftool on suspicious images—you'll find a Morse code hidden in the description section of one photo. Decode the Morse to get a string resembling "jus********right?".
is a "Blue Team" oriented capture-the-flag (CTF) challenge originally from the US Navy Cyber Competition Team 2019 Assessment
: Adversaries frequently wrap reverse shells in custom encryption layers to bypass standard Signature-based Intrusion Detection Systems (IDS). Security operations must rely on protocol anomaly detection to flag non-compliant traffic on common ports.
a collection of legacy challenges from the US Navy Cyber Competition Team 2019 Assessment . It is rated as
The most interesting findings are in the ICMP traffic, which is being used as a covert communication channel. Filtering for ICMP packets with frame.len != 98 reveals conversations where hackers are sharing information. You can extract these conversations with:
🔬 To continue your network forensics training, explore additional labs on the TryHackMe Free Path Catalog . cct2019 tryhackme
The binary enforces a specific validation mathematical puzzle, often checking inputs against complex arithmetic parameters, such as tracking combinations or factors of large target numbers (e.g., factors of 711000000 ).
If you are currently stuck on a specific step of this room, let me know: Which or port you are currently analyzing The error message or unexpected output you are seeing What tools you have already tried running a collection of legacy challenges from the US
As noted in this Medium writeup by Emanuele Ciccolunghi , this CTF offers a fun, practical look into investigating data, specifically focusing on PCAP analysis. What is the CCT2019 Room? TryHackMe
Start by analyzing the provided image files using binwalk . Run exiftool on suspicious images—you'll find a Morse code hidden in the description section of one photo. Decode the Morse to get a string resembling "jus********right?". You can extract these conversations with: 🔬 To
is a "Blue Team" oriented capture-the-flag (CTF) challenge originally from the US Navy Cyber Competition Team 2019 Assessment
: Adversaries frequently wrap reverse shells in custom encryption layers to bypass standard Signature-based Intrusion Detection Systems (IDS). Security operations must rely on protocol anomaly detection to flag non-compliant traffic on common ports.
Copyright 2026, Open Rising Bloom