Virtual environnement to attack can be reached at : ctf07.root-me.org

Time remaining : 03:29:35

Virtual environnement chosen : A bittersweet shellfony
Description :
Attention : this CTF-ATD is linked to the challenge "A bittersweet shellfony"

My audio website was hacked. I know i have to fix an xss, but there is no admin interface and i haven’t clicked in any malicious link!

Please reproduce the way hackers got inside and tell me how they have done it! Game duration : 240 min
Validation flag is stored in the file /passwd
Only registered players for this game can attack the virtual environnement.
A tempo prevent game starting to early or too late.
Game will start when one player has choosen his virtual environnement and declared himself as ready.

35 Available rooms

Room	Virtual environnement chosen	State	Attackers count
ctf01	ARM FTP box	Time remaining : 02:59:04	1 cezame
ctf02	End Droid	Time remaining : 03:20:22	2 JeanC@T, Arrobe
ctf03	Bee-box v1	Time remaining : 01:36:07	1 Cesar
ctf04	Shared Objects Hijacking		1 Id3m
ctf05	OpenClassrooms_SkillProgram_AD1	Time remaining : 00:38:52	1 Florent Caux
ctf06	OpenClassrooms_SkillProgram_AD1	Time remaining : 00:59:16	1 Laetitia Leguen
ctf07	A bittersweet shellfony	Time remaining : 03:29:35	1 Nagoya
ctf08			0
ctf09			0
ctf10			0
ctf11			0
ctf12			0
ctf13			0
ctf14			0
ctf15			0
ctf16			0
ctf17			0
ctf18			0
ctf19			0
ctf20			0
ctf21			0
ctf22			0
ctf23			0
ctf24			0
ctf25			0
ctf26			0
ctf27			0
ctf28			0
ctf29			0
ctf30			0
ctf31			0
ctf32			0
ctf33			0
ctf34			0
ctf35			0

CTF Results

Pseudo	Virtual Environnement	Attackers count	Time start	Environnement compromised in
-	SamBox v3	1	26 February 2019 at 23:00	-
-	Mr. Robot 1	0	26 February 2019 at 22:53	-
Reneg4de	Metasploitable	2	26 February 2019 at 22:38	0h06
-	brainpan1	0	26 February 2019 at 22:32	-
-	Bluebox 2 - Pentest	0	27 February 2019 at 09:36	-