HackTheBox OSINT Challenges Easy Phish

HackTheBox often consits of clues that can really help in understanding what needs to be done. For OSINT challenges always focus on these small details.

So, in this challenge we get to know that

Customers of secure-startup.com have been recieving some very convincing phishing emails, can you figure out why?

As I already knew, phishing emails can always be restricted through SPF records, DMARC, DKIM etc.

So, I go to mxtoolbox.com to check for all these records. Over the there, I find out the half flag in SPF record and half in DMARC of secure-startup.com.

Now, combine both flags and submit them.

Please share your comments and If you enjoyed this blog post, share it with a friend! See you guys in next post soon.