App - Script

These challenges will help you to understand scripting vulnerabilities related to weak environment or configuration and development mistakes in some languages.

You will have credentials for each challenge. The goal is to leverage your privileges by exploiting some environment vulnerabilities (incorrect permissions on files, weak encryption, ...) and some development mistakes. This will allow you to get a password in order to validate your skills on the platform.

Prerequisite :
Knowledges in UNIX shell environment and programming languages like Python and Perl.
Knowledges in binary files manipulation tools.
Knowledges in C language.

13 Challenges

Results	Challenge's Name	Validations	Number of points	Difficulty	Author	Note	Solution
	Bash - System 1	16% 9527	5		Lu33Y		10
	sudo - weak configuration	10% 6202	5		notfound		2
	Bash - System 2	10% 6224	10		Lu33Y		10
	Perl - Command injection	5% 2793	15		Tosh		3
	Bash - cron	6% 3192	20		g0uZ		7
	Python - input()	7% 3947	20		g0uZ		9
	Python - pickle	3% 1471	25		koma		5
	Python - PyJail 1	3% 1559	35		sambecks		2
	Python - PyJail 2	2% 828	40		zM		6
	Python - Jail - Exec	1% 469	50		Arod		1
	Javascript - Jail	1% 88	55		waxous		0
	Python - Jail - Garbage collector	1% 69	55		n0d		0
	Restricted shells	1% 410	70		Yorin		1

Challenge Results

Pseudo	Challenge	Lang	date
artor	Bash - System 1		26 September 2017 at 00:17
rockomockas	Bash - System 1		26 September 2017 at 00:00
Jazorew	Bash - System 2		25 September 2017 at 22:36
gaglimax	Bash - System 2		25 September 2017 at 22:12
Jazorew	sudo - faiblesse de configuration		25 September 2017 at 22:07
gaglimax	sudo - faiblesse de configuration		25 September 2017 at 22:06
Cameleon	Python - pickle		25 September 2017 at 21:10
tytoine78	Perl - Command injection		25 September 2017 at 21:05
tytoine78	Bash - cron		25 September 2017 at 20:41
Faintler	Python - PyJail 2		25 September 2017 at 20:32