Rootkit Cold Case

Дата

4 Сентябрь 2018

Валидации

496 Компромиссы 15%

Примечание

5 голоса

Описание

We found this Linux machine that was running in 2003. At the time, we suspected an infection but we had never managed to find the origin.
Show us your skills by analyzing the running machine. Your goal is to recover the password of the stolen user and the PID of the malicious process.
This machine is associated with the "Forensic / Cold case" challenge.

Время компромисса

2 часы

Операционная система

linux

запустить эту виртуальную среду

результаты CTF за весь период для Rootkit Cold Case

Псевдоним	Виртуальное окружение	Количество злоумышленников	Дата начала	Окружающая среда в опасности
-	Rootkit Cold Case	1	22 Февраль 2019 to 15:22	-
-	Rootkit Cold Case	1	22 Февраль 2019 to 13:10	-
-	Rootkit Cold Case	1	22 Февраль 2019 to 11:09	-
-	Rootkit Cold Case	1	21 Февраль 2019 to 17:55	-
-	Rootkit Cold Case	1	21 Февраль 2019 to 13:00	-

178 Виртуальные среды

Результаты	Имя	Валидации	Трудность	Автор ↓↑	Примечание
	I’m a Bl4ck H4t	6% 56
	Windows - krbtgt reuse	11% 200
	OpenClassrooms_SkP_Pentest_Web	0% 0
	AppArmorJail1	0% 0		nivram
	OpenClassrooms - P7 - Analyste SOC	0% 0
	Matrix terminal	6% 64
	End Droid	34% 1630
	Relative Path Overwrite	10% 166		Mizu
	AppArmorJail2	0% 0
	OpenClassrooms - P3 - Cybersecurity Bootcamp	0% 1
	C for C-cure	5% 21		nikost
	ARP Spoofing Man In The Middle	0% 0		o71, voydstack
	OpenClassrooms - P4 - RAP US	0% 0
	OpenClassrooms - P3 - Cybersecurity Bootcamp_test	0% 0		Titouan
	Open My Vault	0% 0
	Apprenti-Scraper	0% 1
	A bittersweet shellfony	12% 251		mayfly
	Docker - I am groot	50% 3505		Ech0
	dasbox1	10% 127
	sshocker	11% 186		Laluka
	Texode	15% 172		Mhd_Root
	BreakingRootme2020	15% 555		Laluka
	Nodeful	9% 94
	Texode_Back	8% 79
	getting-root-over-it-v1	10% 80
	djangocatz	18% 202
	root-me-spip	10% 126		real
	Windows - Group Policy Preferences Passwords	26% 697
	Websocket - 0 protection	7% 521		Worty
	Docker - Sys-Admin’s Docker	38% 1079		Ech0
	Docker - Talk through me	42% 754		Ech0
	Escalate-me	6% 24
	OpenClassrooms - DVWA	2% 99		Sh1n, EtienneC
	OpenClassrooms - Juice Shop	1% 9		Sh1n, EtienneC
	OpenClassrooms - Sécurité Active Directory	9% 204
	Windows - ASRepRoast	33% 532
	Windows - ZeroLogon	0% 0
	JIS-CTF-VulnUpload-CTF01	24% 31
	DeRPnStiNK	28% 44
	Windows XP pro 01	5% 509		g0uZ
	Acid: Server	11% 220
	Murdering Dexter	16% 49
	LoBOTomy	4% 9
	Vulnix	2% 14
	Xerxes	3% 18
	Infernal Hades	6% 15
	SkyTower	24% 217
	Bluebox - Microsoft Pentest	4% 431
	Acid: Reloaded	17% 178
	CsharpVulnJson	5% 14		notfound404