App - Script

Exploit environment weaknesses, configuration mistakes and vulnerability patterns in shell scripting and system hardening.

For each of these challenges, you will be provided with connection credentials such as SSH access or a network socket. Depending on the challenge you will need to elevate your privileges or escape the sandbox by exploiting the provided environment.

Prerequisites:
- Some knowledge of the UNIX shell and of common UNIX privilege escalation techniques
- Advanced understanding of scripting languages such as Python, Perl, PHP in order to escape jails

Challenge Results Challenge Results

Pseudo Challenge Lang date
Magnum3016   Bash - System 1 27 October 2020 at 23:34
Gondowt   Bash - unquoted expression injection 27 October 2020 at 23:29
varmotte   sudo - faiblesse de configuration 27 October 2020 at 23:28
anou   Bash - System 2 27 October 2020 at 23:15
kikko   Bash - quoted expression injection 27 October 2020 at 23:06
Pr0Hack3r   Python - input() 27 October 2020 at 22:55
R1CTU5   Bash - System 2 27 October 2020 at 22:54
psmak   Bash - quoted expression injection 27 October 2020 at 22:48
R1CTU5   Bash - System 1 27 October 2020 at 22:44
0x835   Bash - unquoted expression injection 27 October 2020 at 22:40