CTF Writeups
Casino Royale
Learning Objectives
- XXS, CSRF & XXE
- Shell Manipulation
- Linux Permissions
Wakanda
Learning Objectives
- LFI with PHP wrapper
- Linux-fu
- Python PIP
Vulnix
Learning Objectives
- FS mounting exploits
- SMTP enum
- SSH keygen and basic administration
- Root Squashing
tr0ll
Learning Objectives
- More of a CTF but still has useful techniques
- Anonymous FTP
- pcap and other file investigation
- Cron job exploit
SickOS 1.2
Learning Objectives
- Enum web directories with curl
- URL encoding command execution
- Default linux app vulnerability
Kioptrix 2
Learning Objectives
- Enum web directories with curl
- URL encoding command execution
- Command execution
Kioptrix 3
Learning Objectives
- Webapp exploit searching
- In-depth manual SQLi
- Hashcat/crack hashes
- Password reuse