Rootkit Cold Case

Data

4 Settembre 2018

Validations

470 Compromissions 16%

Note

5 votes

Description

We found this Linux machine that was running in 2003. At the time, we suspected an infection but we had never managed to find the origin.
Show us your skills by analyzing the running machine. Your goal is to recover the password of the stolen user and the PID of the malicious process.
This machine is associated with the "Forensic / Cold case" challenge.

Temps de compromission

2 heures

Système d'exploitation

linux

démarrer cet environnement virtuel

Résultats du CTF alltheday pour Rootkit Cold Case

Pseudonyme	Environnement Virtuel	Nombre d'attaquant	Date de début	Environnement compromis en
-	Rootkit Cold Case	0	2 marzo 2019 to 23:55	-
-	Rootkit Cold Case	1	28 febbraio 2019 to 22:19	-
-	Rootkit Cold Case	1	28 febbraio 2019 to 17:22	-
-	Rootkit Cold Case	0	28 febbraio 2019 to 17:43	-
-	Rootkit Cold Case	3	27 febbraio 2019 to 22:19	-

177 Environnements Virtuels

Résultats	Cognome	Validations ↓↑	Difficulté	Autore	Note
	Metasploitable 2	40% 8663
	Basic pentesting 1	32% 4756
	LAMP security CTF5	25% 3894
	Docker - I am groot	51% 3138		Ech0
	LAMP security CTF4	35% 2725
	SSH Agent Hijacking	26% 2393		mayfly
	SSRF Box	18% 1815		sambecks
	Metasploitable	12% 1733
	Mr. Robot 1	21% 1646
	End Droid	35% 1352
	Imagick	22% 1053		sambecks
	SamBox v2	13% 990		sambecks
	Docker - Sys-Admin’s Docker	40% 976		Ech0
	Kioptrix level 2	24% 972
	LAMP security CTF7	39% 891
	VulnVoIP	17% 861
	SamBox v1	7% 727		sambecks
	Docker - Talk through me	42% 664		Ech0
	Django unchained	23% 634		TiWim
	Well-Known	10% 627		sm0k
	Windows - Group Policy Preferences Passwords	26% 613
	LAMP security CTF6	18% 606
	Kioptrix level 3	32% 575
	Shared Objects Hijacking	13% 568		das
	BreakingRootme2020	15% 521		Laluka
	Windows XP pro 01	5% 498		g0uZ
	Awky	8% 497		sbrk
	Windows - KerbeRoast	18% 482
	Rootkit Cold Case	16% 470		franb
	Kioptrix level 4	34% 462
	Websocket - 0 protection	6% 455		Worty
	Windows - ASRepRoast	35% 441
	Bluebox - Microsoft Pentest	4% 422
	pWnOS	32% 402
	Hackademic RTB1	19% 364
	DC-1	15% 348
	SamBox v3	5% 334		sambecks
	Bluebox 2 - Pentest	3% 311		sambecks
	Exploit KB Vulnerable Web App	12% 306
	SAP Pentest	7% 293		iggy
	Holynix v1	24% 292
	LAMP security CTF8	14% 291
	/dev/random : Pipe	5% 236
	A bittersweet shellfony	12% 234		mayfly
	LordoftheRoot	25% 232
	Hopital Bozobe	8% 230		sambecks
	Acid: Server	12% 219
	FristiLeaks 1.3	28% 216
	SkyTower	24% 214
	Ubuntu 8.04 weak	5% 206		g0uZ