| Author |
Rooting Challenge |
stdio
Member
Posts: 375
Location: omnipresent
Joined: 06.04.08
Rank: God |
|
Well its been awhile since I've posted -- but have a rooting challenge for you guys. Its at hackm3.net.
Its intentionally set up to be vulnerable, so it is possible, but it wont be easy.
Please dont disrupt services/change passwords etc. Just add your name to the index.html on the front page.
Bruteforcing/web/vulnerability scanners may/will be of little use... and might ban you for a short period of time! =P
NOTE: If you get really stuck, and are willing to admit defeat (which means you fail)...here is part 1:
http://hackm3.net/b34035bb0fb585a8481104a790c03ee3/index.html
I'm sorry, I cant hear you over the sound of how awesome I am! |
 
|
| Author |
RE: Rooting Challenge |
xof
Member
Posts: 17
Location:
Joined: 27.02.10
Rank: Wiseman |
|
Eh not that hard. I'm waiting on JTR to crack the root pass (which is gonna take a while on my shitty laptop...is it in a wordlist?).
Pretty cool to see a challenge that is actually realistic here though, and I definitely give you props for putting up your server for us 
Will you be adding more challenges in the future? |
|
|
| Author |
RE: Rooting Challenge |
stealth-
Member
Posts: 999
Location: Eh?
Joined: 10.04.09
Rank: God |
|
Yeah, I'm at the same spot as you Xof.
I got the non-root pass pretty quick with john, so I'm kinda figuring that you have to do a local exploit from the non-root user's ssh account, maybe?
Unfortunately, I havn't found anything that way yet.
The irony of man's condition is that the deepest need is to be free of the anxiety of death and annihilation; but it is life itself which awakens it, and so we must shrink from being fully alive.
http://www.stealth-x.com |
|
|
| Author |
RE: Rooting Challenge |
KvK
Member
Posts: 93
Location: EAX
Joined: 17.01.09
Rank: God |
|
Ninja ninja1337 # john --users=root passwd
Good Luck, however I believe there is a more civilized solution to this one.
#[n00b@hackm3 html]$ history
=p
|
|
|
| Author |
RE: Rooting Challenge |
stealth-
Member
Posts: 999
Location: Eh?
Joined: 10.04.09
Rank: God |
|
MoshBat wrote:
I tried some of the same things... And that c/s is pretty low...
Think that's low? I get ~2000 
The irony of man's condition is that the deepest need is to be free of the anxiety of death and annihilation; but it is life itself which awakens it, and so we must shrink from being fully alive.
http://www.stealth-x.com |
|
|
| Author |
RE: Rooting Challenge |
stdio
Member
Posts: 375
Location: omnipresent
Joined: 06.04.08
Rank: God |
|
Its a really long root password and not meant to be cracked in the time frame I leave this challenge online.
I'm sorry, I cant hear you over the sound of how awesome I am! |
|
|
| Author |
RE: Rooting Challenge |
wolfmankurd
Member
Posts: 1519
Location: UK
Joined: 30.05.05
Rank: God |
|
Good I'll stop cracking then
BY READING MY POST, YOU ACCEPT IT AS IS AND AGREE TO MY DISCLAIMER OF ALL WARRANTIES, EXPRESS OR IMPLIED, AS WELL AS DISCLAIMERS OF ALL LIABILITY, DIRECT, INDIRECT, CONSEQUENTIAL OR INCIDENTAL, THAT MAY ARISE FROM THE USE OF THIS (MIS)INFORMATION.
|
|
| Author |
RE: Rooting Challenge |
wolfmankurd
Member
Posts: 1519
Location: UK
Joined: 30.05.05
Rank: God |
|
sorry I broke it am trying to fix!
fixed
BY READING MY POST, YOU ACCEPT IT AS IS AND AGREE TO MY DISCLAIMER OF ALL WARRANTIES, EXPRESS OR IMPLIED, AS WELL AS DISCLAIMERS OF ALL LIABILITY, DIRECT, INDIRECT, CONSEQUENTIAL OR INCIDENTAL, THAT MAY ARISE FROM THE USE OF THIS (MIS)INFORMATION.
Edited by wolfmankurd on 28-07-10 00:50 |
|
|
| Author |
RE: Rooting Challenge |
stdio
Member
Posts: 375
Location: omnipresent
Joined: 06.04.08
Rank: God |
|
w00t nice job.
I'm sorry, I cant hear you over the sound of how awesome I am! |
|
|
| Author |
RE: Rooting Challenge |
stdio
Member
Posts: 375
Location: omnipresent
Joined: 06.04.08
Rank: God |
|
Hmm, what method did you use to get it? (PM Please). I liked not having a standard exploit that would have worked in 2min.
Edit: The reason I ask, is I know the first person to get it, got in on an oversight where I left the root password in the .bash_history after using su
Edit: Anyways here was one possible solution. The more indended solution. But since theres always more than one way, root is root.
http://hackm3.net/solution/index.html
I'm sorry, I cant hear you over the sound of how awesome I am!
Edited by stdio on 28-07-10 01:54 |
|
|
| Author |
RE: Rooting Challenge |
spyware
Member
Posts: 4190
Location: The Netherlands
Joined: 14.04.07
Rank: God
Warn Level: 90
|
|
Had my fun.
Sorry for spamming /etc/passwd and shadow.
"The chowner of property." - Zeph Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term. - Carl Sagan Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor? - Ebert |
|
|
| Author |
RE: Rooting Challenge |
stdio
Member
Posts: 375
Location: omnipresent
Joined: 06.04.08
Rank: God |
|
Its all good, but yeah. v2 coming soon..... Videos re-uploaded just incase someone else wants to see. http://hackm3.net
I'm sorry, I cant hear you over the sound of how awesome I am! |
|
|
| Author |
RE: Rooting Challenge |
KvK
Member
Posts: 93
Location: EAX
Joined: 17.01.09
Rank: God |
|
Thanks for the fun. I learned a few things.
|
|
|
| Author |
RE: Rooting Challenge |
wolfmankurd
Member
Posts: 1519
Location: UK
Joined: 30.05.05
Rank: God |
|
whens the new one coming? 
BY READING MY POST, YOU ACCEPT IT AS IS AND AGREE TO MY DISCLAIMER OF ALL WARRANTIES, EXPRESS OR IMPLIED, AS WELL AS DISCLAIMERS OF ALL LIABILITY, DIRECT, INDIRECT, CONSEQUENTIAL OR INCIDENTAL, THAT MAY ARISE FROM THE USE OF THIS (MIS)INFORMATION.
|
|
|
| Author |
RE: Rooting Challenge |
stdio
Member
Posts: 375
Location: omnipresent
Joined: 06.04.08
Rank: God |
|
wolfmankurd wrote:
whens the new one coming?
Right now -- enjoy. (Password cracking on this one isnt needed at all)
Again please dont stop services, dos, etc.
Editing to say I will probably be rebooting soon as to clean a few things up. (And will keep rebooting every hour or two)
Edit2: Its all automated now to reboot at 5 after the hour. Takes about 1 min and it will be back up.
I'm sorry, I cant hear you over the sound of how awesome I am!
Edited by stdio on 29-07-10 08:55 |
|
|
| Author |
RE: Rooting Challenge |
Tucak
Member
Posts: 19
Location:
Joined: 04.06.08
Rank: God |
|
|
Man, that was fun. Please make more! : ) |
|
|
| Author |
RE: Rooting Challenge |
stdio
Member
Posts: 375
Location: omnipresent
Joined: 06.04.08
Rank: God |
|
|
Tucak wrote:
Man, that was fun. Please make more! : )
Glad you liked it, and nice job.
I'm sorry, I cant hear you over the sound of how awesome I am! |
|
|
| Author |
RE: Rooting Challenge |
wolfmankurd
Member
Posts: 1519
Location: UK
Joined: 30.05.05
Rank: God |
|
Thanks it was fun, but I think the last exploit was dissapointing. keep them comming please!
BY READING MY POST, YOU ACCEPT IT AS IS AND AGREE TO MY DISCLAIMER OF ALL WARRANTIES, EXPRESS OR IMPLIED, AS WELL AS DISCLAIMERS OF ALL LIABILITY, DIRECT, INDIRECT, CONSEQUENTIAL OR INCIDENTAL, THAT MAY ARISE FROM THE USE OF THIS (MIS)INFORMATION.
Edited by wolfmankurd on 30-07-10 01:04 |
|
|
| Author |
RE: Rooting Challenge |
spyware
Member
Posts: 4190
Location: The Netherlands
Joined: 14.04.07
Rank: God
Warn Level: 90
|
|
We could've been exploiting sudo, dpkg, lppasswd, gzip and more... Ah well. The rooting aspect was a bit too straightforward (ie. easy).
Thanks again though, a third challenge will be appreciated.
"The chowner of property." - Zeph Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term. - Carl Sagan Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor? - Ebert |
|
|
| Author |
RE: Rooting Challenge |
stdio
Member
Posts: 375
Location: omnipresent
Joined: 06.04.08
Rank: God |
|
|
wolfmankurd wrote:
Thanks it was fun, but I think the last exploit was dissapointing. keep them comming please!
spyware wrote:
We could've been exploiting sudo, dpkg, lppasswd, gzip and more... Ah well. The rooting aspect was a bit too straightforward (ie. easy).
Thanks again though, a third challenge will be appreciated.
MoshBat wrote:
What the last two said.
Alright, you asked and you shall receive. I have seriously tried to up the difficulty on this one, though I suspect you will still get through (I just hope it takes you longer to exploit than it did for me to make).
Also another change
the contents of /root/proof.txt can be pasted into a new scoreboard here
http://scoreboard.hackm3.net (please if you get it dont spam it with a shit ton of names, or else I will just require registration/captchas/more pain in the ass things for you)
http://www.hackm3.net - enjoy
Also I may revert the machines every so often (wont be more than once per hour, but on a revert you will lose all your work, so keep notes if you have a bad memory)
I'm sorry, I cant hear you over the sound of how awesome I am! |
|
|
Main:
