bossplayersCTF: 1

[ vulnhub  ctf  walkthrough  ]

Goal

root

Download

https://www.vulnhub.com/entry/bossplayersctf-1,375/

Walkthrough

nmap
alt text

default 80
alt text

base64 comment revealed in source
alt text

base64 decoded to site page
alt text

navigate to page and seems to point to rce
alt text

after testing various different words to trigger execution (command, ping, file)…cmd works
alt text

reverse shell achieved
alt text

after some searching looks suid ‘find’ seems likely
alt text

root
alt text

root flag
alt text

Written on October 17, 2019
Share on: