App - Script

These challenges will help you to understand scripting vulnerabilities related to weak environment or configuration and development mistakes in some languages.

You will have credentials for each challenge. The goal is to leverage your privileges by exploiting some environment vulnerabilities (incorrect permissions on files, weak encryption, ...) and some development mistakes. This will allow you to get a password in order to validate your skills on the platform.

Prerequisite :
Knowledges in UNIX shell environment and programming languages like Python and Perl.
Knowledges in binary files manipulation tools.
Knowledges in C language.

14 Challenges

Results	Challenge's Name	Validations	Number of points	Difficulty	Author	Note	Solution
	Bash - System 1	16% 13646	5		Lu33Y		10
	sudo - weak configuration	11% 9148	5		notfound		4
	Bash - System 2	10% 8712	10		Lu33Y		10
	Perl - Command injection	5% 4156	15		Tosh		5
	Bash - cron	6% 4510	20		g0uZ		7
	Python - input()	7% 5611	20		g0uZ		10
	Python - pickle	3% 2027	25		koma		6
	Python - PyJail 1	3% 2417	35		sambecks		3
	Bash/Awk - netstat parsing	1% 117	40		sbrk		2
	Python - PyJail 2	2% 1229	40		zM		8
	Python - Jail - Exec	1% 581	50		Arod		1
	Javascript - Jail	1% 129	55		waxous		2
	Python - Jail - Garbage collector	1% 134	55		n0d		0
	Restricted shells	1% 723	70		Yorin		1

Challenge Results

Pseudo	Challenge	Lang	date
snw	Bash - System 2		18 June 2018 at 04:59
fabmistyk	sudo - faiblesse de configuration		18 June 2018 at 02:31
Alex	Javascript - Jail		18 June 2018 at 01:11
fabmistyk	Bash - System 2		18 June 2018 at 01:08
gogetsu4000	Bash - System 1		18 June 2018 at 01:00
T0rmann	Bash - System 2		18 June 2018 at 00:29
bababiba	Bash - System 2		18 June 2018 at 00:27
T0rmann	sudo - faiblesse de configuration		17 June 2018 at 23:49
TraaaxX	Perl - Command injection		17 June 2018 at 23:48
TraaaxX	Bash - System 2		17 June 2018 at 23:30