Virtual environnement to attack can be reached at : ctf02.root-me.org

Time remaining : 02:40:04

Virtual environnement chosen : A bittersweet shellfony
Description :
Attention : this CTF-ATD is linked to the challenge "A bittersweet shellfony"

My audio website was hacked. I know i have to fix an xss, but there is no admin interface and i haven’t clicked in any malicious link!

Please reproduce the way hackers got inside and tell me how they have done it! Game duration : 240 min
Validation flag is stored in the file /passwd
Only registered players for this game can attack the virtual environnement.
A tempo prevent game starting to early or too late.
Game will start when one player has choosen his virtual environnement and declared himself as ready.

35 Available rooms

Room ↓↑	Virtual environnement chosen	State	Attackers count
ctf01	Windows - ZeroLogon	Time remaining : 01:58:09	1 frantz45
ctf02	A bittersweet shellfony	Time remaining : 02:40:04	1 raoullevert
ctf03	Awky	Time remaining : 01:54:42	1 sonwever
ctf04	ARM FTP box	Time remaining : 00:51:04	2 cezame, Jeel
ctf05	LAMP security CTF4	Time remaining : 01:52:06	1 mbanania
ctf06	Awky	Time remaining : 01:41:16	1 Bunoud
ctf07	Apprenti-Scraper	Time remaining : 00:29:24	1 Jarvx
ctf08	ARP Spoofing EcouteActive	Time remaining : 00:18:50	1 FoxCie
ctf09	AppArmorJail1	Time remaining : 01:29:46	2 ismael, Lyphmeno
ctf10			0
ctf11	k8s	Time remaining : 01:47:09	1 Slashme
ctf12			0
ctf13	Basic pentesting 1	Time remaining : 00:13:41	2 nawa, e3ml
ctf14			0
ctf15			0
ctf16			0
ctf17			0
ctf18			0
ctf19			0
ctf20			0
ctf21			0
ctf22			0
ctf23			0
ctf24			0
ctf25			0
ctf26			0
ctf27			0
ctf28			0
ctf29			0
ctf30			0
ctf31			0
ctf32			0
ctf33			0
ctf34			0
ctf35			0

CTF Results

Pseudo	Virtual Environnement	Attackers count	Time start	Environnement compromised in
-	Awky	1	4 March 2019 at 11:41	-
-	Hopital Bozobe	0	4 March 2019 at 10:10	-
-	/dev/random : Pipe	1	4 March 2019 at 09:51	-
-	Metasploitable	1	4 March 2019 at 11:32	-
-	Metasploitable 2	2	4 March 2019 at 09:07	-