CAN YOU SEE IT?

How difficult did you find this challenge?

1 2 3 4 5

Easy Hard

Event ECSC2019

Tags Web

Difficulty

Medium

Provider https://cyber.services/

Additional Info Tools needed for the solution of the challenge • General Linux tools • General web scripting/coding knowledge • Log poisoning • Code injection scripting • Reverse shell • General python knowledge

Description

Know Your Brand PLC currently experienced cybersecurity incidents and managed to roll back to previous backups. Your task is to run an assessment on the webserver accessible from the internet and try to figure out what the attackers’ tools and tactics were by recovering the proof.txt file from the server.

Write-ups

CAN YOU SEE IT.pdf
Installation instructions.txt

Other artefacts

challenge_6.ova

Tasks

Task 1: What is the hash of proof.txt?

Task 2: Which file is vulnerable for file inclusion?

Task 3: Which process is included in the sudoers file?

2020 EUROPEAN CYBER SECURITY CHALLENGE

How difficult did you find this challenge?