Awky

Date

6 January 2019

Validations

486 Compromissions 8%

Note

7 Votes

Description

Attention : this CTF-ATD is linked to the challenge "Bash/Awk - netstat parsing"

After some network troubles, our administrator has written a script that monitors the processes that have a SYN Backlog full. For the moment, this script just write the relevant information on stdout.

Log into SSH on the machine (user / password) and get root permissions by exploiting a vulnerability in the script.
The challenge validation password is in the file /srv/syn_backlog/passwd.
The CTF-ATD validation password is in the file /passwd.

Compromission time

2 hours

Operating system

linux

start this virtual environnement

CTF Results for Awky

Pseudo	Virtual Environnement	Attackers count	Time start	Environnement compromised in
RadekG	Awky	1	3 March 2019 at 07:36	0h13
-	Awky	1	3 March 2019 at 09:07	-
-	Awky	1	2 March 2019 at 23:09	-
-	Awky	1	3 March 2019 at 13:36	-
-	Awky	0	2 March 2019 at 21:14	-

173 Virtual Environnements

Results	Name	Validations	Difficulty	Author	Note
	Challenge SecuriTech	1% 13
	Windows XP pro 01	5% 490		g0uZ
	Exploit KB Vulnerable Web App	12% 305
	Holynix v1	24% 292
	Kioptrix level 2	25% 964
	Kioptrix level 3	33% 570
	Kioptrix level 4	35% 460
	LAMP security CTF4	35% 2689
	LAMP security CTF5	26% 3829
	LAMP security CTF6	18% 599
	Metasploitable	12% 1700
	Metasploitable 2	40% 8357
	Moth	21% 107
	pWnOS	32% 394
	Ubuntu 8.04 weak	5% 205		g0uZ
	Ultimate LAMP	18% 147
	VulnVoIP	17% 827
	VulnVPN	12% 59
	LAMP security CTF8	14% 288
	LAMP security CTF7	39% 879
	Hackademic RTB1	19% 363
	No Exploiting Me	14% 54
	SamBox v1	7% 715		sambecks
	SamBox v2	13% 953		sambecks
	RA1NXing Bots	7% 16
	Murdering Dexter	16% 49
	LoBOTomy	4% 9
	Vulnix	2% 12
	Xerxes	3% 18
	Infernal Hades	6% 15
	SkyTower	24% 212
	Bluebox - Microsoft Pentest	4% 408
	Acid: Reloaded	18% 175
	Acid: Server	12% 212
	CsharpVulnJson	6% 14		notfound404
	CsharpVulnSoap	10% 8
	/dev/random : Pipe	5% 234
	/dev/random : Relativity	7% 97
	/dev/random : Sleepy	4% 44
	brainpan1	4% 82
	LordoftheRoot	25% 227
	Flick 1	8% 64
	Flick 2	10% 10
	FristiLeaks 1.3	29% 214
	The Purge	5% 14
	SickOs: 1.1	13% 90
	Xerxes: 2.0.1	13% 20
	brainpan2	9% 22
	brainpan3	6% 6
	SAP Pentest	7% 284		iggy