# Forensic * ## Nathan-on-osu

From the zipped file has a image which show chat logs but somehow it has been cropped the part that will show the flag as mentioned in the challenge above. To begin with, i start to look for image metadata using `exiftool` which there is one part caught my eyes that there is an additional data after the IEND chunk which is not normal.

After doing some research about that warning, I found that windows also vulnerable to acropalypse which data leakage of google pixel phones where the cropped images that save as same file are overwritten at the start of the old one thus led to additional data after the IEND chunk. Follow this for more [information](https://isc.sans.edu/diary/Windows+11+Snipping+Tool+Privacy+Bug+Inspecting+PNG+Files/29660).

To recover the cropped image, I found this tool [Acropalypse-Multi-Tool](https://github.com/frankthetank-music/Acropalypse-Multi-Tool) and it is gui based tool which is pretty easy to use. Set the mode custom RGB and resolution 1920x1080 and finally got the flag!

Flag: `osu{cr0pp3d_Future_Candy<3}` --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://ad3n.gitbook.io/ad3n/home/ctf-writeups/osu-gaming-ctf-2024/forensic.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.