Linux/linux starter

101 points

Don't Try to break this jail

ssh [email protected] -p 8001 password : wolfie

Solution

The challenge was to escape jail/restricted shell.

I’ve found, that PATH environment variable contains /home/wolfie/bin:/home/wolfie/.local/bin:/root/bin

So, I’ve simply scp the dash shell into /home/wolfie/.local/bin/

Then, I was able to execute my own shell and find flag in the seconds.

darkCTF{h0pe_y0u_used_intended_w4y}

Linux/Find-Me

321 points

Mr.Wolf was doing some work and he accidentally deleted the important file can you help him and read the file?

Note: All players will get individual container.

ssh [email protected] -p 10000 password: wolfie

Solution

Let's have a look what accidently deleted files we can find ;-)

ps aux
cd /proc/10/fd
ls
cat 3

Some password, but what for?

Let’s see what users do we have on this box.

getent passwd

Password seems to be accurate.

So, where’s the flag?

Reversing the text gave me the flag…

darkCTF{w0ahh_n1c3_w0rk!!!}

Forensics/Wolfie's Contact

221 Points

``Wolfie is doing some illegal work with his friends find his contacts.``

file

Solution

Few commands.

unar
binwalk -e
strings 139.zlib | less

We can see above the parts of the flag:

- darkCTF{
- C0ntacts_
- 4re_
- 1mp0rtant}

which combined together gave:

darkCTF{C0ntacts_4re_1mp0rtant}