App - Script

Exploit environment weaknesses, configuration mistakes and vulnerability patterns in scripts and systems.

For each of these challenges, you will be provided with connection credentials such as SSH access or a network socket. Depending on the challenge you will need to elevate your privileges or escape the sandbox by exploiting the provided environment.

Prerequisites:
- Some knowledge of the UNIX shell and of common UNIX privilege escalation techniques
- Advanced understanding of scripting languages such as Python, Perl, PHP in order to escape jails

 25 Challenges

Results Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution Date
pas_valide Bash - System 1 15% 30920 5 Lu33Y 10 8 February 2012
pas_valide sudo - weak configuration 10% 20565 5 notfound404 4 6 February 2012
pas_valide Bash - System 2 9% 18662 10 Lu33Y 10 8 February 2012
pas_valide LaTeX - Input 1% 122 10 Podalirius 1 17 March 2021
pas_valide Powershell - Command Injection 1% 1860 10 hat.time 5 19 June 2020
pas_valide Bash - unquoted expression injection 1% 1476 15 sbrk 4 26 October 2020
pas_valide Perl - Command injection 5% 9656 15 Tosh 9 11 August 2015
pas_valide Powershell - SecureString 1% 1000 15 hat.time 2 19 June 2020
pas_valide Bash - cron 5% 9056 20 g0uZ 8 6 May 2013
pas_valide LaTeX - Command execution 1% 25 20 Podalirius 1 17 March 2021
pas_valide Python - input() 6% 12439 20 g0uZ 11 27 May 2014
pas_valide Bash - quoted expression injection 1% 271 25 sbrk 1 26 October 2020
pas_valide Bash - race condition 1% 206 25 sbrk 7 5 May 2020
pas_valide Powershell - Basic jail 1% 349 25 hat.time 6 19 June 2020
pas_valide Python - pickle 2% 3995 25 koma 9 7 September 2012
pas_valide Shared Objects hijacking 1% 370 30 das 2 5 March 2020
pas_valide SSH - Agent Hijacking 1% 1549 30 mayfly 5 7 October 2018
pas_valide Python - format string 1% 175 35 lovasoa 1 26 March 2021
pas_valide Python - PyJail 1 3% 5064 35 sambecks 4 3 January 2015
pas_valide PHP - Jail 1% 487 40 LordRoke 9 1 March 2019
pas_valide Python - PyJail 2 2% 2839 40 zM_ 10 17 February 2015
pas_valide Python - Jail - Exec 1% 1147 50 Arod 3 23 February 2015
pas_valide Javascript - Jail 1% 311 55 waxous 2 7 December 2016
pas_valide Python - Jail - Garbage collector 1% 375 55 n0d 4 12 August 2017
pas_valide Bash - Restricted shells 1% 1849 70 Yorin 6 14 January 2017

Challenge Results Challenge Results

Pseudo Challenge Lang Date
Greg51   Powershell - Command injection 21 April 2021 at 17:24
Ivan   Bash - System 2 21 April 2021 at 17:21
VrignaudCamille   Bash - System 2 21 April 2021 at 17:17
Greg51   LaTeX - Input 21 April 2021 at 17:15
Ivan   sudo - faiblesse de configuration 21 April 2021 at 17:14
A_Coeur   sudo - faiblesse de configuration 21 April 2021 at 17:08
hadjidgr   Powershell - SecureString 21 April 2021 at 17:00
VrignaudCamille   sudo - faiblesse de configuration 21 April 2021 at 16:58
bigDjohn   Bash - unquoted expression injection 21 April 2021 at 16:58
Ivan   Bash - System 1 21 April 2021 at 16:50