Rootkit Cold Case

date

Validierung

501 Compromissions 15%

Bewertung  Bewertung

5 votes

Beschreibung

We found this Linux machine that was running in 2003. At the time, we suspected an infection but we had never managed to find the origin.
Show us your skills by analyzing the running machine. Your goal is to recover the password of the stolen user and the PID of the malicious process.
This machine is associated with the "Forensic / Cold case" challenge.

Zeit der Kompromittierung

2 Stunden

Betriebssystem

 linux

diese virtuelle Umgebung starten

Ergebnisse des CTF alltheday Ergebnisse des CTF alltheday für Rootkit Cold Case

Nickname Virtual Machine Anzahl der Angreifer Begonnen am Maschine kompromittiert in
- Rootkit Cold Case 1 15. Januar 2019 zu  14:03 -
- Rootkit Cold Case 2 14. Januar 2019 zu  21:32 -
- Rootkit Cold Case 1 14. Januar 2019 zu  17:04 -
- Rootkit Cold Case 0 14. Januar 2019 zu  09:13 -
Sicarius Rootkit Cold Case 1 13. Januar 2019 zu  14:17 0h14

 178 Virtuals Environnements

Ergebnis Name Validierung Schwierigkeitsgrad   Schwierigkeitsgrad Autor Bewertung  Bewertung
pas_valide I’m a Bl4ck H4t 6% 57
pas_valide Windows - krbtgt reuse 11% 202
pas_valide OpenClassrooms_SkP_Pentest_Web 0% 0
pas_valide AppArmorJail1 0% 0 nivram
pas_valide OpenClassrooms - P7 - Analyste SOC 0% 0
pas_valide Matrix terminal 6% 64
pas_valide End Droid 34% 1637
pas_valide Relative Path Overwrite 10% 171 Mizu
pas_valide AppArmorJail2 0% 0
pas_valide OpenClassrooms - P3 - Cybersecurity Bootcamp 0% 1
pas_valide C for C-cure 5% 23 nikost
pas_valide ARP Spoofing Man In The Middle 0% 0 o71, voydstack
pas_valide OpenClassrooms - P4 - RAP US 0% 0
pas_valide OpenClassrooms - P3 - Cybersecurity Bootcamp_test 0% 0 Titouan
pas_valide Open My Vault 0% 0
pas_valide Apprenti-Scraper 0% 1
pas_valide A bittersweet shellfony 12% 252 mayfly
pas_valide Docker - I am groot 50% 3523 Ech0
pas_valide dasbox1 10% 127
pas_valide sshocker 11% 188 Laluka
pas_valide Texode 15% 173 Mhd_Root
pas_valide BreakingRootme2020 15% 558 Laluka
pas_valide Nodeful 9% 95
pas_valide Texode_Back 8% 80
pas_valide getting-root-over-it-v1 10% 80
pas_valide djangocatz 18% 203
pas_valide root-me-spip 10% 126 real
pas_valide Windows - Group Policy Preferences Passwords 26% 703
pas_valide Websocket - 0 protection 7% 532 Worty
pas_valide Docker - Sys-Admin’s Docker 38% 1089 Ech0
pas_valide Docker - Talk through me 42% 755 Ech0
pas_valide Escalate-me 6% 24
pas_valide OpenClassrooms - DVWA 2% 99 Sh1n, EtienneC
pas_valide OpenClassrooms - Juice Shop 1% 9 Sh1n, EtienneC
pas_valide OpenClassrooms - Sécurité Active Directory 9% 206
pas_valide Windows - ASRepRoast 33% 542
pas_valide Windows - ZeroLogon 0% 0
pas_valide JIS-CTF-VulnUpload-CTF01 24% 31
pas_valide DeRPnStiNK 28% 44
pas_valide Windows XP pro 01 5% 510 g0uZ
pas_valide Acid: Server 11% 220
pas_valide Murdering Dexter 16% 49
pas_valide LoBOTomy 4% 9
pas_valide Vulnix 2% 14
pas_valide Xerxes 3% 18
pas_valide Infernal Hades 6% 15
pas_valide SkyTower 24% 217
pas_valide Bluebox - Microsoft Pentest 4% 431
pas_valide Acid: Reloaded 17% 178
pas_valide CsharpVulnJson 5% 14 notfound404