Our PHP devs are working on this employee management portal. We have a mock build of the website and you are to pentest the platform for weaknesses. Your goal is to get more privileges and command execution on the server.
We're given a PHP server that looks like this:
<?php
spl_autoload_register(function ($name){
if (preg_match('/Controller$/', $name))
{
$name = "controllers/${name}";
I've developed a little application to help me with my pentest missions, with lots of useful payloads! I even let users add new payloads, but since I was in a rush I didn't have time to test the security of my application, could you take care of it ?
We're given an express server that looks like this:
const express = require('express');
const path = require('path');
const fs = require('fs');
const { spawn } = require('child_process');
const puppeteer = require('puppeteer');
Paint by Numbers? Or perhaps, compute by pixels?
We're given an image that looks like this:
Based on the challenge name, this is a program written in the esolang Piet. Then, we can import the program into an online Piet IDE and try running it:
You have been hired to contribute to a very suspicious project. Follow the link below to get onboard.
We're given access to an organization that looks like this:
Besides the random projects, of note are two repositories:
Bob Robizillo created a public instructions for Tiffany, so she can start work on new secret project. can you access the secret repository?
We're not given a whole lot to work with. Howver, googling "Bob Robizillo" nets us this public Gist:
Dear Tiffany,
I hope this message finds you well. To streamline our collaboration on the 1337up repository, I kindly ask you to add the enclosed SSH key to your account. This step is crucial for enabling a seamless forking process and enhancing our project efficiency.
We didn't get him in time π« Thankfully, we don't believe he's fled the country yet. He uploaded another photo this morning, it's as if he's taunting us! Anyway, this may be our last chance - do you know where he is right now?
We're given an image looking like this:
Something weird going on at this pizza store!!
We're given a simple pizza chain website looking like this:
Looking at the source code, CSS, and images, nothing seems out of the ordinary. However, going to robots.txt,
There's a fugitive on the loose and we need to track him down! He posted this to social media recently, do you know where the photograph was taken from? If you can provide the precise building, we can move in immediately π
We're given an image that looks like this:
Should be simple, right? In the middle of the image, we find a reference to the "Trang Tien Plaza" bringing us right here:
Deadface is running a server where they have a list of targets they are planning on using in an upcoming attack. See if you can find any targets they are trying to hide.
We're given a simple website that looks like this:
On each "page", we can find records that begin with "A", "B", and "C":