Social Circles

CATEGORY - OSINT

Introduction

This OSINT challenge provides a username and instructs us to follow them on YouTube. Our goal is to track the user across different platforms and extract the hidden flag.

Steps

Step 1: Checking the YouTube Channel

The challenge provides the username:

AhjussiPlayz

So, I searched for this YouTube channel and found that it had only one video uploaded. Since it was the only available content, it was likely where the flag was hidden.

Step 2: Inspecting the Video for Clues

I played the video, and at first, nothing seemed unusual. However, I noticed that a transcript was available, suggesting that closed captions (CC) were present.

Checking the English CC revealed nothing.

I then switched to Korean CC, and this was where I found something interesting.

Step 3: Translating the Hidden Text

I used Google Translate to translate the Korean subtitles.

It revealed a new username:

wimebix884

This was an important lead, so I decided to search for this username across different platforms.

Step 4: Tracking the Username with Sherlock

I used Sherlock, a Kali Linux CLI tool for username enumeration, to find accounts associated with wimebix884.

Sherlock found multiple results, so I manually checked seven links one by one.

Step 5: Finding the Account on Smule

One of the results led me to this Smule profile:

🔗 https://www.smule.com/wimebix884

Under the Songs tab, I noticed an attachment named "Flag Debaucher". This looked suspicious, so I clicked on it.

Step 6: Extracting the Final Flag

The Smule attachment contained a Google Drive link:

🔗 https://drive.google.com/file/d/1093uvDYSVWke8ze2jdgJ1rVehz51Jx00

I played the audio file uploaded to Google Drive and successfully extracted the flag.

FLAG

ACECTF{mu171m3d14_f146}