I learned a new attack vector: SSI injection. Thanks.
- ch3rn0byl: we just started the haste one if you want to do it (00:28)
- H4v0k: boot it up amon , sleep is for the weak (00:31)
- ch3rn0byl: sleep is for the bitchesssssss (00:32)
- ch3rn0byl: fucking haste (02:38)
Note, if you want to learn more about windows exploit development you can read the ch3rn0byl’s blog: here.
Name: H.A.S.T.E: 1
Date release: 13 Sep 2017
Web page: https://securityshards.wordpress.com/2017/09/13/new-h-a-s-t-e-hacking-challenge/
Aim: get any kind of shell in the system.Read More
Name: Bulldog 1
Date release: 28 Aug 2017
Author: Nick Frichette
You can find the virtual machine and the description of the CTF in Vulnhub at this address: https://www.vulnhub.com/entry/bulldog-1,211/
Note, this VM don’t work with VMWare workstation/Fusion, that’s why after few tries I decided to install VirtualBox (ew, disgusting).