backdoorCTF 2014 WriteUp - misc250

We get a picture file which can be used to login to a website as user backdoor.The task is to login as user sdslabs.

In a hexeditor we find the following suspicious data in the picture:

This looks like the following bits

01100010 (=b)
01100001 (=a)
01100011 (=c)
01101011 (=k)
01100100 (=d)
01101111 (=o)
01101111 (=o)
01110010 (=r)

We change the data to "sdslabs":

And are rewarded with the following message:
Congrats the flag is practice_makes_one_perfect