🔍 OSINT CTF Challenge

Welcome to the Open Source Intelligence (OSINT) Capture The Flag challenge! Your mission is to uncover details about a target user using open-source tools and public data.

🧠 About the Challenge

This beginner-to-intermediate OSINT puzzle includes:

Profile-related clues (images, networks, email traces)
Hints to guide your investigation
All answers based on publicly available information

Note: Don't view the answer sheet until you're done!

📂 Included Files

WindowsXP_1551719014755.jpg: Image of Interest
ohsint_ans.jpg: Final answer sheet (keep hidden until finished!)

🛠️ Useful Tools

exiftool - View metadata of images
wigle.net - Lookup WiFi SSID/BSSID
Wayback Machine - Explore past versions of websites
DevTools - Inspect source code in web pages

🧩 Questions

What is this user's avatar of?
What city is this person in?
What is the SSID of the WAP he connected to?
What is his personal email address?
What site did you find his email address on?
Where has he gone on holiday?
What is the person’s password?

🕵️‍♂️ Hints

Q1: Use Exiftool to find the image author. Check for author metadata or software used.

Q2: Combine the BSSID + SSID with WiGLE.net.

Q6: If the website is down, use the Wayback Machine.

Q7: View source code in browser. Hidden info might be in HTML comments or scripts.

✅ How to Play

Download this project or open via GitHub Pages
Use the hints and tools above to answer each question
Document your methodology and tools used
When done, cross-check your answers with ohshint ans.jpg

⚠️ Rules

All data used is public or fictional for training purposes
Do not view answers until you've finished
Do not use OSINT tools on real people without consent