Fuku

Date

28 October 2017

Validations

23 Compromissions 4%

Note

3 Votes

Description

Fuku (pronounced "far queue") CTF is designed to fuck with people.

There are a few flag.txt files to grab. The final one is in the /passwd file. However, the ultimate goal is to get a root shell.

Scenario

"Bull was pissed when you broke into his Minotaur box. He has taken precautions with another website that he is hosting, implementing IDS, whitelisting, and obfuscation techniques. He is now taunting hackers to try and hack him, believing himself to be safe. It is up to you to put him in his place."

Hints

Some scripting will probably be needed to find a useful port.
If the machine seems to go down after a while, it probably hasn’t. This CTF isn’t called Fuku for nothing!

Author: Robert Winkel

Compromission time

4 hours

Operating system

linux

start this virtual environnement

CTF Results for Fuku

Pseudo	Virtual Environnement	Attackers count	Time start	Environnement compromised in
-	Fuku	1	2 March 2019 at 20:12	-
-	Fuku	1	23 February 2019 at 18:30	-
-	Fuku	1	23 February 2019 at 18:02	-
-	Fuku	1	23 February 2019 at 17:52	-
-	Fuku	1	23 February 2019 at 17:24	-

178 Virtual Environnements

Results	Name	Validations	Difficulty	Author	Note
	Challenge SecuriTech	1% 13
	Windows XP pro 01	5% 502		g0uZ
	Exploit KB Vulnerable Web App	12% 307
	Holynix v1	24% 292
	Kioptrix level 2	24% 975
	Kioptrix level 3	32% 576
	Kioptrix level 4	34% 464
	LAMP security CTF4	34% 2751
	LAMP security CTF5	25% 3918
	LAMP security CTF6	18% 610
	Metasploitable	12% 1745
	Metasploitable 2	39% 8781
	Moth	20% 107
	pWnOS	31% 405
	Ubuntu 8.04 weak	5% 206		g0uZ
	Ultimate LAMP	18% 149
	VulnVoIP	17% 872
	VulnVPN	12% 60
	LAMP security CTF8	14% 292
	LAMP security CTF7	39% 897
	Hackademic RTB1	19% 365
	No Exploiting Me	14% 54
	SamBox v1	7% 740		sambecks
	SamBox v2	13% 1006		sambecks
	RA1NXing Bots	7% 16
	Murdering Dexter	16% 49
	LoBOTomy	4% 9
	Vulnix	2% 14
	Xerxes	3% 18
	Infernal Hades	6% 15
	SkyTower	24% 217
	Bluebox - Microsoft Pentest	4% 426
	Acid: Reloaded	18% 178
	Acid: Server	11% 219
	CsharpVulnJson	5% 14		notfound404
	CsharpVulnSoap	9% 8
	/dev/random : Pipe	5% 238
	/dev/random : Relativity	7% 99
	/dev/random : Sleepy	4% 47
	brainpan1	4% 83
	LordoftheRoot	25% 233
	Flick 1	8% 65
	Flick 2	9% 10
	FristiLeaks 1.3	28% 217
	The Purge	5% 14
	SickOs: 1.1	13% 91
	Xerxes: 2.0.1	13% 20
	brainpan2	9% 22
	brainpan3	6% 6
	SAP Pentest	7% 293		iggy