ᯓ★𝙝𝙚𝙡𝙡𝙤｡𖦹°‧

Challenge Information Platform: SNHT Category: Misc Overview Heeeeeeelp! Yesterday I ordered the coolest DDC merch and I’m already soooo excited, BUT there are big problems: I haven’t received an email with a tracking ID I entered the wrong shipping details, so I don’t know which postal code I typed in… I tried chatting a bit with their AI chatbot, but it refuses to tell me anything about tracking IDs or postal codes :( ...

Challenge Information Platform: SNHT Category: Web Overview An outdated MinIO cluster is running with a critical security vulnerability. Your goal is to retrieve the flag. GLHF! The IT-Ops Portal is accessible at: http://portal.cfire:8080 Reconnaissance Upon opening the website we are greeted with IT-ops Portal. In the channel we get information about an “env var leak” and also that the current version of the cluster is RELEASE.2022-10-24T18-35-07Z. When clicking the links to the console they both takes you to http://minio.cfire:9001/login login screen. ...

Challenge Information Platform: OverTheWire (Bandit) Difficulty: Easy Category: Linux Overview At this moment, level 34 does not exist yet. Solution SSH into machine on port 2220 with password from previous level. ssh -p 2220 bandit33@bandit.labs.overthewire.org Look at README.txt file. OTW Bandit is now FINISHED! ✧｡٩(ˊᗜˋ )و✧*｡

Challenge Information Platform: OverTheWire (Bandit) Difficulty: Easy Category: Linux Overview After all this git stuff, it’s time for another escape. Good luck! Solution SSH into machine on port 2220 with password from previous level. ssh -p 2220 bandit32@bandit.labs.overthewire.org Immediately upon login we are greeted with a message and everything we input into the shell gets turned to uppercase. Somethings we can access are environment variables since they are always uppercase. ...

Challenge Information Platform: OverTheWire (Bandit) Difficulty: Easy Category: Linux Overview There is a git repository at ssh://bandit31-git@bandit.labs.overthewire.org/home/bandit31-git/repo via the port 2220. The password for the user bandit31-git is the same as for the user bandit31. From your local machine (not the OverTheWire machine!), clone the repository and find the password for the next level. This needs git installed locally on your machine. Solution Clone the repo git clone ssh://bandit31-git@bandit.labs.overthewire.org:2220/home/bandit31-git/repo Looking at the README.md ...