Networking AI Model writeup UAP Cyber Siege CTF 2025

0xodinx

Writeup :- UAP Cyber Siege 2025 - Qualification Round_CTF- Identify the AI Model.


UAP_Cyber_siege 2025 - Dp1h3r0x

   

❇️ Description :-


--- AI Model ---


Determine the AI model referenced or used within the communication.


Example: CS{modelname}

Author: TareqAhamed (0xt4req)


✅ Solutions :-


Step 1 :- Analyze the traffic capture


First, I opened the provided traffic.pcapng file using the Wireshark tool to analyze the captured network traffic.

 

analyze the captured network traffic

 

Step 2 :- Apply DNS filter


To narrow down the investigation, I applied the filter dns in Wireshark. This showed all DNS query traffic.
Among the results, I noticed a request to the domain: generativelanguage.googleapis.com 

This domain suggested that the communication was related to a generative language AI model(gemini).



To narrow down the investigation, I applied the filter dns

--------------------------------------


noticed a request to the domain


Step 3 :- Confirm via HTTP stream

To confirm the model name, I inspected the HTTP traffic streams. Within the HTTP stream, I found a reference to the keyword: gemini.


inspected the HTTP traffic streams


This confirmed that the AI model being used in the communication was gemini.

 

Flag: CS{gemini}


      Thank you for reading this writeup.           


  Another networking writeup is coming soon...




Read More Blog........





0 Comments