SSRF Box

22 June 2018

1799 Compromissions 18%

53 Votes

Attention : this CTF-ATD is linked to the challenge "Server Side Request Forgery"

Your goal is simple: compromise the virtual environment "SSRF Box".

The validation password of challenge (Realist) is in the /root directory.

4 hours

linux

CTF Results for SSRF Box

Pseudo	Virtual Environnement	Attackers count	Time start	Environnement compromised in
-	SSRF Box	2	2 March 2019 at 23:30	-
Ib.cobar	SSRF Box	2	2 March 2019 at 22:04	0h50
-	SSRF Box	1	2 March 2019 at 17:41	-
chococo	SSRF Box	1	2 March 2019 at 08:01	0h05
chococo	SSRF Box	1	2 March 2019 at 07:07	0h51

Results	Name	Validations	Difficulty	Author	Note
	Challenge SecuriTech	1% 13
	Windows XP pro 01	5% 496		g0uZ
	Exploit KB Vulnerable Web App	12% 306
	Holynix v1	24% 292
	Kioptrix level 2	25% 972
	Kioptrix level 3	32% 575
	Kioptrix level 4	35% 462
	LAMP security CTF4	35% 2723
	LAMP security CTF5	25% 3887
	LAMP security CTF6	18% 606
	Metasploitable	12% 1729
	Metasploitable 2	40% 8601
	Moth	20% 107
	pWnOS	32% 401
	Ubuntu 8.04 weak	5% 206		g0uZ
	Ultimate LAMP	18% 148
	VulnVoIP	17% 852
	VulnVPN	12% 60
	LAMP security CTF8	14% 291
	LAMP security CTF7	39% 891
	Hackademic RTB1	19% 364
	No Exploiting Me	14% 54
	SamBox v1	7% 723		sambecks
	SamBox v2	13% 985		sambecks
	RA1NXing Bots	7% 16
	Murdering Dexter	16% 49
	LoBOTomy	4% 9
	Vulnix	2% 13
	Xerxes	3% 18
	Infernal Hades	6% 15
	SkyTower	24% 213
	Bluebox - Microsoft Pentest	4% 419
	Acid: Reloaded	18% 176
	Acid: Server	12% 219
	CsharpVulnJson	6% 14		notfound404
	CsharpVulnSoap	9% 8
	/dev/random : Pipe	5% 236
	/dev/random : Relativity	7% 97
	/dev/random : Sleepy	4% 44
	brainpan1	4% 82
	LordoftheRoot	25% 230
	Flick 1	8% 64
	Flick 2	10% 10
	FristiLeaks 1.3	28% 215
	The Purge	5% 14
	SickOs: 1.1	13% 91
	Xerxes: 2.0.1	13% 20
	brainpan2	9% 22
	brainpan3	6% 6
	SAP Pentest	7% 293		iggy