App - Script

Exploit environment weaknesses, configuration mistakes and vulnerability patterns in shell scripting and system hardening.

For each of these challenges, you will be provided with connection credentials such as SSH access or a network socket. Depending on the challenge you will need to elevate your privileges or escape the sandbox by exploiting the provided environment.

Prerequisites:
- Some knowledge of the UNIX shell and of common UNIX privilege escalation techniques
- Advanced understanding of scripting languages such as Python, Perl, PHP in order to escape jails

Challenge Results Challenge Results

Pseudo Challenge Lang date
FireCat   Powershell - SecureString 1 October 2020 at 19:25
FireCat   Powershell - Command injection 1 October 2020 at 19:07
Zarked   Powershell - SecureString 1 October 2020 at 18:42
dece   Bash - System 2 1 October 2020 at 18:34
evilgod   Bash - System 1 1 October 2020 at 18:29
Leirn   Bash - cron 1 October 2020 at 18:21
Zarked   Powershell - Command injection 1 October 2020 at 18:16
dece   Python - input() 1 October 2020 at 18:15
K4r0N   Bash - System 2 1 October 2020 at 18:14
Bl00dy   Powershell - Command injection 1 October 2020 at 16:47