App - Script

These challenges will help you to understand scripting vulnerabilities related to weak environment or configuration and development mistakes in some languages.

You will have credentials for each challenge. The goal is to leverage your privileges by exploiting some environment vulnerabilities (incorrect permissions on files, weak encryption, ...) and some development mistakes. This will allow you to get a password in order to validate your skills on the platform.

Prerequisite :
- Knowledges in UNIX shell environment and programming languages like Python and Perl.
- Knowledges in binary files manipulation tools.
- Knowledges in C language.

Challenge Results Challenge Results

Pseudo Challenge Lang date
artor   Bash - System 1 fr 26 September 2017 at 00:17
rockomockas   Bash - System 1 en 26 September 2017 at 00:00
Jazorew   Bash - System 2 fr 25 September 2017 at 22:36
gaglimax   Bash - System 2 fr 25 September 2017 at 22:12
Jazorew   sudo - faiblesse de configuration fr 25 September 2017 at 22:07
gaglimax   sudo - faiblesse de configuration fr 25 September 2017 at 22:06
Cameleon   Python - pickle en 25 September 2017 at 21:10
tytoine78   Perl - Command injection fr 25 September 2017 at 21:05
tytoine78   Bash - cron fr 25 September 2017 at 20:41
Faintler   Python - PyJail 2 fr 25 September 2017 at 20:32