App - Script

These challenges will help you to understand scripting vulnerabilities related to weak environment or configuration and development mistakes in some languages.

You will have credentials for each challenge. The goal is to leverage your privileges by exploiting some environment vulnerabilities (incorrect permissions on files, weak encryption, ...) and some development mistakes. This will allow you to get a password in order to validate your skills on the platform.

Prerequisite :
- Knowledges in UNIX shell environment and programming languages like Python and Perl.
- Knowledges in binary files manipulation tools.
- Knowledges in C language.

Challenge Results Challenge Results

Pseudo Challenge Lang date
Al3x   Python - input() fr 22 February 2019 at 11:31
Al3x   Bash - cron fr 22 February 2019 at 11:16
Candyb   Bash - System 2 fr 22 February 2019 at 11:11
Al3x   Perl - Command injection fr 22 February 2019 at 11:09
Al3x   Bash - System 2 fr 22 February 2019 at 11:02
thabet   Bash - System 2 fr 22 February 2019 at 10:59
r00t4rd   Bash - System 2 de 22 February 2019 at 10:59
berzerking   Bash - System 1 fr 22 February 2019 at 10:56
r00t4rd   Bash - System 1 de 22 February 2019 at 10:37
Bakunine   Python - PyJail 1 fr 22 February 2019 at 10:18