App - Script

These challenges will help you to understand scripting vulnerabilities related to weak environment or configuration and development mistakes in some languages.

You will have credentials for each challenge. The goal is to leverage your privileges by exploiting some environment vulnerabilities (incorrect permissions on files, weak encryption, ...) and some development mistakes. This will allow you to get a password in order to validate your skills on the platform.

Prerequisite :
- Knowledges in UNIX shell environment and programming languages like Python and Perl.
- Knowledges in binary files manipulation tools.
- Knowledges in C language.

Challenge Results Challenge Results

Pseudo Challenge Lang date
Blooooood   Bash - System 2 fr 30 May 2017 at 11:07
jezman   Bash - System 1 en 30 May 2017 at 11:04
jezman   sudo - weak configuration en 30 May 2017 at 10:56
cking   sudo - weak configuration en 30 May 2017 at 10:11
Blooooood   sudo - faiblesse de configuration fr 30 May 2017 at 09:53
Pifi   Bash - System 1 fr 30 May 2017 at 09:45
cking   Bash - System 1 en 30 May 2017 at 09:39
RootKit   Python - input() fr 30 May 2017 at 09:22
nilo   Bash - System 2 en 30 May 2017 at 07:33
skpanchal   Perl - Command injection en 30 May 2017 at 05:13