OhSINT - TryHackMe

What information can you possible get with just one photo?

First step is download the file and open it.

A nostalgic Wallpaper

Using exiftool to check some attributes:

exiftool WindowsXP.jpg 
ExifTool Version Number         : 12.65
File Name                       : WindowsXP.jpg
Directory                       : .
File Size                       : 234 kB
File Modification Date/Time     : 2023:09:26 18:33:44-04:00
File Access Date/Time           : 2023:09:26 18:33:49-04:00
File Inode Change Date/Time     : 2023:09:26 18:33:48-04:00
File Permissions                : -rwxrw-rw-
File Type                       : JPEG
File Type Extension             : jpg
MIME Type                       : image/jpeg
XMP Toolkit                     : Image::ExifTool 11.27
GPS Latitude                    : 54 deg 17' 41.27" N
GPS Longitude                   : 2 deg 15' 1.33" W
Copyright                       : OWoodflint
Image Width                     : 1920
Image Height                    : 1080
Encoding Process                : Baseline DCT, Huffman coding
Bits Per Sample                 : 8
Color Components                : 3
Y Cb Cr Sub Sampling            : YCbCr4:2:0 (2 2)
Image Size                      : 1920x1080
Megapixels                      : 2.1
GPS Latitude Ref                : North
GPS Longitude Ref               : West
GPS Position                    : 54 deg 17' 41.27" N, 2 deg 15' 1.33" W

Firstly in the Copyright section there’s a name, this could be a person or who owns the right of this photo. Then I Google it: OWoodflint and found some good results, such as github, twitter and a wordpress blog.

After opening Twitter I found the answer for the first question:

Q1 : What is this users avator of ?
Ans : Cat

Looking further there is another lead, a BSSID, wich could give us a location.

BSSID means the unique MAC Address of a WAP (Wireless Access Point). WAP is the device that works as a base for other devices to connect to it wirelessly. For example, in your home the phones and laptops are connected to the router wirelessly. This router is a WAP and the MAC Address this router has is BSSID. The name of the Wifi Network is called SSID.

Now with the BSSID, I can use [geowifi.py](http://geowifi.py) search for a location:

https://github.com/GONZOsint/geowifi

Now with the coordinates, just put on google en discovery the answer to the second question. 

Q2 : What city is this person in ?
Ans : London

Now we need to find the SSID of the WAP he connected, we could use wigle.net

WiGLE: Wireless Network Mapping

Just enter the approximate latitude and longitude of the region and the BSSID 

Q3 : Whats the SSID of the WAP he connected to?
Ans : UnileverWifi

Now back to Google results, there is a GitHub with a Readme file:

We could find the answer to question 4 and 5.

Q4 : What is his personal email address?
Ans :  OWoodflint@gmail.com

Q5 : What site did you find his email address on ?
Ans : github

Finally there’s also a wordpress blog in google results. Visting that we see he posted on 3rd March 2019 that he is in New York. As he lives in London, we can assume he was on vacation.

Q6 : Where has he gone on holiday?
Ans : New York

I was looking for this answer on google results and I also check Have I been pwnd with no luck, but after select the text I could found a possible password:

It was hidden, you could also found it on the pages sources: 

Q6 : Where has he gone on holiday?
Ans : pennYDr0pper.!