Awky

日付

6 2019年1月

Validations

494 Compromissions 8%

Note

7 votes

Description

Attention : this CTF-ATD is linked to the challenge "Bash/Awk - netstat parsing"

After some network troubles, our administrator has written a script that monitors the processes that have a SYN Backlog full. For the moment, this script just write the relevant information on stdout.

Log into SSH on the machine (user / password) and get root permissions by exploiting a vulnerability in the script.
The challenge validation password is in the file /srv/syn_backlog/passwd.
The CTF-ATD validation password is in the file /passwd.

Temps de compromission

2 heures

Système d'exploitation

linux

démarrer cet environnement virtuel

Résultats du CTF alltheday pour Awky

Pseudonyme	Environnement Virtuel	Nombre d'attaquant	Date de début	Environnement compromis en
-	Awky	1	2019年3月4日 to 11:41	-
-	Awky	0	2019年3月3日 to 23:29	-
-	Awky	3	2019年3月3日 to 21:28	-
RadekG	Awky	3	2019年3月3日 to 20:49	0h05
-	Awky	1	2019年3月3日 to 07:55	-

176 Environnements Virtuels

Résultats	お名前	Validations	Difficulté	著者	Note ↓↑
	SSH Agent Hijacking	26% 2357		mayfly
	Ubuntu 8.04 weak	5% 206		g0uZ
	Kioptrix level 2	25% 971
	Docker - Sys-Admin’s Docker	41% 936		Ech0
	OpenClassrooms - Juice Shop	1% 7		Sh1n, EtienneC
	root-me-spip	9% 101		real
	BreakingRootme2020	15% 512		Laluka
	Acid: Server	12% 218
	AppArmorJail1	0% 0		nivram
	ARP Spoofing EcouteActive	0% 0		voydstack
	Metasploitable 2	40% 8571
	OpenClassrooms - Sécurité Active Directory	11% 173
	Mr. Robot 1	21% 1636
	Docker - Talk through me	42% 631		Ech0
	I’m a Bl4ck H4t	7% 48
	Bash considered harmful	8% 138		sbrk
	SAP Pentest	7% 292		iggy
	Rootkit Cold Case	16% 462		franb
	Docker - I am groot	51% 3006		Ech0
	Bluebox - Microsoft Pentest	4% 418
	LAMP security CTF5	25% 3875
	LAMP security CTF7	39% 889
	DC-4	17% 156
	SSRF Box	18% 1757		sambecks
	Basilic	4% 19
	Imagick	22% 1036		sambecks
	Billu-b0x2	10% 123
	LAMP security CTF6	18% 603
	DeRPnStiNK	29% 41
	k8s	10% 168		sambecks
	/dev/random : Pipe	5% 236
	Basic pentesting 1	32% 4644
	Bee-box v1	6% 41
	LAMP security CTF4	35% 2712
	Metasploitable	12% 1721
	OpenClassrooms - DVWA	2% 84		Sh1n, EtienneC
	CTFair	0% 0
	A bittersweet shellfony	12% 233		mayfly
	SamBox v2	13% 978		sambecks
	Bulldog	27% 195
	Command Injection OS	18% 56
	Gemini-Pentest-v1	8% 29
	Texode_Back	8% 75
	Lazysysadmin	16% 56
	DC-6	30% 112
	Challenge SecuriTech	1% 13
	SkyTower	24% 213
	CsharpVulnJson	6% 14		notfound404
	OpenClassrooms - P7 - Analyste SOC	0% 0
	BBQ Factory	6% 125		sm0k, dvor4x