Athackcon CTF 2021

Challenges written based on real-life scenarios that I discovered in bug-bounty and during penetration testing engagements.

Github

A Github repository that contains all challenges.

Environment setup on Ubuntu

Requirments

  • Install docker-engine

  • Install docker-compose

Install Docker and docker-compose.

# Update apt package index
sudo apt update
# Allow apt to use repository over HTTPS
sudo apt install \
    apt-transport-https \
    ca-certificates \
    curl \
    gnupg \
    lsb-release
# Add Docker's official GPG key
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /usr/share/keyrings/docker-archive-keyring.gpg
# X86_64 / amd64
echo \
    "deb [arch=amd64 signed-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable" | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null

# Update apt package index
sudo apt update

# Install the latest version of docker engine and containerd.
sudo apt-get install docker-ce docker-ce-cli containerd.io

# Download docker-compose version 1.29
sudo curl -L "https://github.com/docker/compose/releases/download/1.29.2/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose

# Apply executable permissions to the binary
sudo chmod +x /usr/local/bin/docker-compose

# Add user to docker group
sudo usermod -aG docker $(whoami)

Reboot the machine.

Install git.

Clone the repository.

After cloning the repository change the current directory to the repository directory.

Builds Docker images from Dockerfiles.

Create and start containers

Challenges

Name
IPAddress
Flag

Trust

127.0.0.1:8000

/usr/src/app/flag.txt

Config

127.0.0.1:8001

/flag/flag.txt

Extend

127.0.0.1:8002

/usr/src/app/flag.txt

Poison

127.0.0.1:8003

/usr/src/app/flag.txt

PreviousTechnology Control CompanyNextTrust

Last updated

Was this helpful?