Broken System

Challenge Description

The CryptIT Banking and Consulting company suspects that the GlobalDominationCorporation is attacking its email systems. They need your help to fix the misconfiguration.

Solution

I used a DNS checker website to look at the DNS records for the page. Since the problem is with their email systems, we should take a look at the email-related records, such as SPF and DMARC records.

The SPF records were unfortunately a red herring:

spf cryptit

However, the DMARC record had the flag!

Screenshot 2021-06-23 at 19-33-20 DMARC Record Lookup - DMARC Validation - DNSChecker org

Flag

CDDC21{_10x_f0r_yOur_Serv!ce_}