Rootme TELNET Authentication
Root-me
TELNET Authentication
Packet Capture Analysis
We need to find the user password in the telnet session. Telnet is another unsecure protocol that communicates in clear text.
We’ll open the pcap in wireshark and use the telnet as filter. We’ll click on a packet and follow the tcp stream.
Right-click -> Follow -> TCP stream
...
login: .."........"ffaakkee
.
Password:user
.
...
Wireshark will reconstruct the whole telnet conversation. We can see that the password is user.