Active Directory Introduction Well, well well… Here we are. Doing an Active Directory introduction note. Lets start by defining what is Active directory. Active Directory (AD), is the windows dir...

Réaliste Kerb1 For this challenge, we are going to use the well known AS-REPRoasting attack. I will not explain in detail how the attack work but you can have more information here. The main idea...

Forensique My Name Is ? In this challenge, we are asked to find the name of the user that juste have been powned. To do this, we just have to run the envars command of volatility. Using volatili...

SQLi 1 Here, we are tasked to perform SQL injections. An IPS is configured, this means that we can’t use tools like SQLMap because we would be blocked. We can see, that we are facing a login pag...

MegaUpload 1 - Bypass upload filter For this challenge, we have a website where we can upload files. But the upload is limited to image files (.jpg) and text files (.txt), other files return an...

LFI 1 In this challenge, we are tasked to perform LFI on the given website. The LFI vulnerability often appear in the GET parameter directly in the URL. Here we can notice the ?page=accueil.php ...

Attention au swap In this challenge, we are asked to demonstrate some kind of vulnerability regarding the text editor vim. The name of the challenge gives us a hint on where to look for (swap). ...

Find You’re Path Here we are given username and password for the user bob. We can ssh into the machine as follows: As you can see, when we perform sudo -l we see that we can run the vim comman...

Réseau FTP In this challenge, we have a pcap file and we are tasked to retrieve bob’s password. We need to find its FTP password so lets filter by this protocol: We can see a Login successful...

Réaliste Le monitoring est important In this challenge, we are tasked to become root of the machine. First we go to the login page and can log-in with the credentials admin:admin (before that ot...