App - Script

These challenges will help you to understand scripting vulnerabilities related to weak environment or configuration and development mistakes in some languages.

You will have credentials for each challenge. The goal is to leverage your privileges by exploiting some environment vulnerabilities (incorrect permissions on files, weak encryption, ...) and some development mistakes. This will allow you to get a password in order to validate your skills on the platform.

Prerequisite :
Knowledges in UNIX shell environment and programming languages like Python and Perl.
Knowledges in binary files manipulation tools.
Knowledges in C language.

14 Challenges

Results	Challenge's Name	Validations	Number of points	Difficulty	Author	Note	Solution
	Bash - System 1	16% 14497	5		Lu33Y		10
	sudo - weak configuration	11% 9833	5		notfound		4
	Bash - System 2	11% 9319	10		Lu33Y		10
	Perl - Command injection	5% 4526	15		Tosh		5
	Bash - cron	6% 4844	20		g0uZ		7
	Python - input()	7% 6053	20		g0uZ		10
	Python - pickle	3% 2093	25		koma		6
	Python - PyJail 1	3% 2602	35		sambecks		3
	Bash/Awk - netstat parsing	1% 130	40		sbrk		3
	Python - PyJail 2	2% 1355	40		zM		8
	Python - Jail - Exec	1% 610	50		Arod		1
	Javascript - Jail	1% 142	55		waxous		2
	Python - Jail - Garbage collector	1% 151	55		n0d		0
	Restricted shells	1% 796	70		Yorin		2

Challenge Results

Pseudo	Challenge	Lang	date
Melendyl	Python - Jail - Garbage collector		19 August 2018 at 17:26
Mcdostone	sudo - faiblesse de configuration		19 August 2018 at 17:07
0xdeafbeef	Restricted shells		19 August 2018 at 15:38
BarbeRace	Python - PyJail 2		19 August 2018 at 15:29
Mr.Zeroh	Python - PyJail 1		19 August 2018 at 15:13
Siord	Python - PyJail 2		19 August 2018 at 15:10
gwel	Bash/Awk - parsing netstat		19 August 2018 at 14:52
krstf	sudo - weak configuration		19 August 2018 at 14:40
krstf	Bash - System 1		19 August 2018 at 14:02
francois	Python - Jail - Garbage collector		19 August 2018 at 12:29