Bob’s Cap  - Forensics Network Challenge 

For this challenge we can download a packet capture file called "bob_1.pcapng". Let’s open it using the network analyzer tool, Wireshark.

Once opened, we see that the file contains mainly Telnet connection logs. And as we know, telnet connections are not encrypted, so it’s very easy to read data from it on the network.

Let’s extract all telnet data using Tshark.

And here is the flag! FLAG_s8dkaAfoul83