mirror of
https://github.com/AbdullahRizwan101/CTF-Writeups
synced 2024-11-10 06:34:17 +00:00
Add files via upload
This commit is contained in:
parent
790eb4be9c
commit
265e653354
7 changed files with 246 additions and 0 deletions
12
CactusCon/CovidScammers/CovidScammers.md
Normal file
12
CactusCon/CovidScammers/CovidScammers.md
Normal file
|
@ -0,0 +1,12 @@
|
||||||
|
# CactusConCTF
|
||||||
|
|
||||||
|
## CovidScammers
|
||||||
|
|
||||||
|
### Free Flag
|
||||||
|
|
||||||
|
<img src="https://imgur.com/nt8JFDo.png"/>
|
||||||
|
|
||||||
|
Run strings on the binary
|
||||||
|
|
||||||
|
<img src="https://imgur.com/waj9Zak.png"/>
|
||||||
|
|
51
CactusCon/Cracking/Easy Crack 1.md
Normal file
51
CactusCon/Cracking/Easy Crack 1.md
Normal file
|
@ -0,0 +1,51 @@
|
||||||
|
# CactusCon9 CTF
|
||||||
|
|
||||||
|
## Cracking
|
||||||
|
|
||||||
|
### Easy Crack 2
|
||||||
|
|
||||||
|
<img src="https://imgur.com/RLmnTHB.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/fdTIVu2.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/ivcHmE1.png"/>
|
||||||
|
|
||||||
|
`Bonnie48`
|
||||||
|
|
||||||
|
|
||||||
|
### Easy Crack 3
|
||||||
|
|
||||||
|
<img src="https://imgur.com/ioZ8PQA.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/eNwfckj.png"/>
|
||||||
|
|
||||||
|
This was the flag
|
||||||
|
|
||||||
|
### Easy Crack 4
|
||||||
|
|
||||||
|
<img src="https://imgur.com/wsHe0AL.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/JCSNgC5.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/Bv2v3Dx.png"/>
|
||||||
|
|
||||||
|
As we can see from `Name That Hash` site that it is a sha-256 crypt hash
|
||||||
|
|
||||||
|
<img src="https://imgur.com/NfOkGf8.png"/>
|
||||||
|
|
||||||
|
`tandc4eva`
|
||||||
|
|
||||||
|
### Easy Crack 5
|
||||||
|
|
||||||
|
<img src="https://imgur.com/J3D8OZ9.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/GIb58qc.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/xbxfDH3.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/Ay06DPw.png"/>
|
||||||
|
|
||||||
|
`kuako`
|
||||||
|
|
||||||
|
|
||||||
|
|
1
CactusCon/Cracking/hash1.txt
Normal file
1
CactusCon/Cracking/hash1.txt
Normal file
|
@ -0,0 +1 @@
|
||||||
|
Stacy:$2b$12$x1iqs/FYe9VlqS906vfyI.hdHd./HyQfc1NCnsvt5vPbrPKG9t64C
|
1
CactusCon/Cracking/hash2.txt
Normal file
1
CactusCon/Cracking/hash2.txt
Normal file
|
@ -0,0 +1 @@
|
||||||
|
$1$MpIh$j3h8gwlvA0Y0YLzvjqoQ6/
|
1
CactusCon/Cracking/hash4.txt
Normal file
1
CactusCon/Cracking/hash4.txt
Normal file
|
@ -0,0 +1 @@
|
||||||
|
Kevin:$5$4NOqdM6ItdQF7OEL$16001uwuKXXL8TzZ/n/Qs6VbgYD20PJ/YjOI98aUcAC
|
1
CactusCon/Cracking/hash5.txt
Normal file
1
CactusCon/Cracking/hash5.txt
Normal file
|
@ -0,0 +1 @@
|
||||||
|
$1$1ccO$zX5YkiNuwKypRpMJ29mU20
|
179
CactusCon/Trainer/Trainer.md
Normal file
179
CactusCon/Trainer/Trainer.md
Normal file
|
@ -0,0 +1,179 @@
|
||||||
|
# Trainer
|
||||||
|
|
||||||
|
## Level 1
|
||||||
|
|
||||||
|
<img src="https://imgur.com/fF3lpxZ.png"/>
|
||||||
|
|
||||||
|
SSH with the username `level0` and password `level0`
|
||||||
|
|
||||||
|
<img src="https://imgur.com/glu07ZX.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/X0b4M4a.png"/>
|
||||||
|
|
||||||
|
## Level 2
|
||||||
|
|
||||||
|
<img src="https://imgur.com/EDltI1I.png"/>
|
||||||
|
|
||||||
|
Switch user to level1 with the password you found
|
||||||
|
|
||||||
|
<img src="https://imgur.com/xoDKbpm.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/8uAL1RW.png"/>
|
||||||
|
|
||||||
|
`943430e07fd566bc96aa05fca3c96e48`
|
||||||
|
|
||||||
|
|
||||||
|
## Level 3
|
||||||
|
|
||||||
|
<img src="https://imgur.com/WhvhCmJ.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/RC6QNQ2.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/B6Micdt.png"/>
|
||||||
|
|
||||||
|
`2cadca6148093c403d82396252b8c4db`
|
||||||
|
|
||||||
|
|
||||||
|
## Level 4
|
||||||
|
|
||||||
|
<img src="https://imgur.com/vzmZCBg.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/SeKT4hG.png"/>
|
||||||
|
|
||||||
|
## Level 5
|
||||||
|
|
||||||
|
<img src="https://imgur.com/EALlS5A.png"/>
|
||||||
|
|
||||||
|
## Level 6
|
||||||
|
|
||||||
|
<img src="https://imgur.com/rMraU2e.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/ylj9h3L.png"/>
|
||||||
|
|
||||||
|
## Level 7
|
||||||
|
|
||||||
|
<img src="https://imgur.com/O37Uoav.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/LgQeuJK.png"/>
|
||||||
|
|
||||||
|
## Level 8
|
||||||
|
|
||||||
|
<img src="https://imgur.com/qZmIN1Z.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/HTLmhkC.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/3at5ZpA.png"/>
|
||||||
|
|
||||||
|
## Level 9
|
||||||
|
|
||||||
|
<img src="https://imgur.com/csKQVuN.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/9Dh26YK.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/2hGVdSD.png"/>
|
||||||
|
|
||||||
|
Run strings on the binary
|
||||||
|
|
||||||
|
<img src="https://imgur.com/JAH3LBf.png"/>
|
||||||
|
|
||||||
|
## Level 10
|
||||||
|
|
||||||
|
<img src="https://imgur.com/YclRxkt.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/qA0FjPi.png"/>
|
||||||
|
|
||||||
|
## Level 11
|
||||||
|
|
||||||
|
<img src="https://imgur.com/yD7ooh5.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/gep6M8r.png"/>
|
||||||
|
|
||||||
|
`192`
|
||||||
|
|
||||||
|
## Level 12
|
||||||
|
|
||||||
|
<img src="https://imgur.com/chM9VtH.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/myte7rb.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/EEFzuxF.png"/>
|
||||||
|
|
||||||
|
## Level 13
|
||||||
|
|
||||||
|
<img src="https://imgur.com/9JYG4Ce.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/yHMot7M.png"/>
|
||||||
|
|
||||||
|
We can see `mysecret` has a SUID bit
|
||||||
|
|
||||||
|
<img src="https://imgur.com/GGNjDBn.png"/>
|
||||||
|
|
||||||
|
`f4736e1eb28b1d9055c5f5d58a49b5a6`
|
||||||
|
|
||||||
|
## Level 14
|
||||||
|
|
||||||
|
<img src="https://imgur.com/HxZvZp9.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/5fquULd.png"/>
|
||||||
|
|
||||||
|
`0ea027e3835aa87a4a47465321c5fe75`
|
||||||
|
|
||||||
|
## Level 15
|
||||||
|
|
||||||
|
<img src="https://imgur.com/yjpRf7f.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/mix23OT.png"/>
|
||||||
|
|
||||||
|
Since kernel version is `4.19.0-12` password is `4.19`
|
||||||
|
|
||||||
|
## Level 16
|
||||||
|
|
||||||
|
<img src="https://imgur.com/JnffVro.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/KxH4enG.png"/>
|
||||||
|
|
||||||
|
Linux Distro is `Debian` so this will be our password
|
||||||
|
|
||||||
|
## Level 17
|
||||||
|
|
||||||
|
<img src="https://imgur.com/hHyRII7.png"/>
|
||||||
|
|
||||||
|
Aliases are saved in `.bashrc`
|
||||||
|
|
||||||
|
<img src="https://imgur.com/P7wtv3l.png"/>
|
||||||
|
|
||||||
|
## Level 18
|
||||||
|
|
||||||
|
<img src="https://imgur.com/AWrjtxS.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/WB8Ii4C.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/NDIYrR5.png"/>
|
||||||
|
|
||||||
|
## Level 19
|
||||||
|
|
||||||
|
<img src="https://imgur.com/GovoiPP.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/hJyh4iV.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/ZyPji94.png"/>
|
||||||
|
|
||||||
|
## Level 20
|
||||||
|
|
||||||
|
<img src="https://imgur.com/kF6Geuk.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/kF6Geuk.png"/>
|
||||||
|
|
||||||
|
Here we can see id_rsa key for user `level20`
|
||||||
|
|
||||||
|
<img src="https://imgur.com/uRzsz9M.png"/>
|
||||||
|
|
||||||
|
## Level 21
|
||||||
|
|
||||||
|
<img src="https://imgur.com/p2TfT8w.png"/>
|
||||||
|
|
||||||
|
## Level 22
|
||||||
|
|
||||||
|
<img src="https://imgur.com/Tkh0vLK.png"/>
|
||||||
|
|
||||||
|
<img src="https://imgur.com/VLOYDo0.png"/>
|
Loading…
Reference in a new issue