Virtual environnement to attack can be reached at : ctf12.root-me.org
Time remaining : 00:51:53
Informations
- Virtual environnement chosen : root-me-spip
- Description : Attention : this CTF-ATD is linked to the challenge "Root Me, for real"
At the end of 2021, we were able to authenticate with administrative privileges on the Root-Me backoffice using, among other things, a 0day vulnerability in the SQL engine of SPIP 4.0.0.
The vulnerability has been corrected in version 4.0.1 of the software. This challenge is a simple SPIP site in vulnerable version. Find the bug in your turn, exploit it, and pass root to recover the flag ! Game duration : 240 min
- Validation flag is stored in the file /passwd
- Only registered players for this game can attack the virtual environnement.
- A tempo prevent game starting to early or too late.
- Game will start when one player has choosen his virtual environnement and declared himself as ready.
Player's list
- darkveiderg (choice : root-me-spip, ready)
World Map
35 Available rooms
| Room ↓↑ | Virtual environnement chosen | State | Attackers count |
| ctf01 | Well-Known |
 Time remaining : 01:53:30 |
1 mire |
| ctf02 | Well-Known |
Time remaining : 01:54:25 |
1 Rob |
| ctf03 |
|
0 | |
| ctf04 |
|
0 | |
| ctf05 | Apprenti-Scraper |
Time remaining : 02:36:58 |
1 val |
| ctf06 | Sambox v4 |
Time remaining : 02:37:52 |
2 cpt_mustard, ZeroDay |
| ctf07 | LAMP security CTF5 |
Time remaining : 01:36:13 |
2 0xffff, b4n3 |
| ctf08 |
|
0 | |
| ctf09 |
|
0 | |
| ctf10 |
|
0 | |
| ctf11 |
|
0 | |
| ctf12 | root-me-spip |
Time remaining : 00:51:53 |
1 darkveiderg |
| ctf13 | OpenClassrooms - DVWA |
Time remaining : 00:54:18 |
1 rob |
| ctf14 |
|
0 | |
| ctf15 |
|
0 | |
| ctf16 |
|
0 | |
| ctf17 |
|
0 | |
| ctf18 |
|
0 | |
| ctf19 |
|
0 | |
| ctf20 |
|
0 | |
| ctf21 |
|
0 | |
| ctf22 |
|
0 | |
| ctf23 |
|
0 | |
| ctf24 |
|
0 | |
| ctf25 |
|
0 | |
| ctf26 | The Ether : EvilScience |
Time remaining : 00:41:45 |
1 Usurper |
| ctf27 |
|
0 | |
| ctf28 |
|
0 | |
| ctf29 |
|
0 | |
| ctf30 |
|
0 | |
| ctf31 |
|
0 | |
| ctf32 |
|
0 | |
| ctf33 |
|
0 | |
| ctf34 |
|
0 | |
| ctf35 |
|
0 |
CTF Results
| Pseudo | Virtual Environnement | Attackers count | Time start | Environnement compromised in |
| whitecr0wz | Kioptrix level 3 | 1 | 4 March 2019 at 05:22 | 0h25 |
| cysboy | Hopital Bozobe | 1 | 4 March 2019 at 09:08 | 0h19 |
| - | Kioptrix level 4 | 0 | 4 March 2019 at 05:09 | - |
| whitecr0wz | Kioptrix level 4 | 2 | 4 March 2019 at 05:00 | 0h05 |
| - | Imagick | 1 | 4 March 2019 at 03:28 | - |