Name		Name	Last commit message	Last commit date
parent directory ..
README.md		README.md
chall.pcap.gz		chall.pcap.gz
challenge.yml		challenge.yml
solve.py		solve.py

README.md

bad packets

The packet capture shows tampering of oldcss via Trevor C2.
Trevor C2 is a command-and-control framework (details here).
Use the trevorc2_server.py script from the TrevorC2 repository (link).
Decrypt one of the oldcss values in the TCP stream.
Use the same AES key from the encryption process to get the flag.

Refer to solve.py for the solution.