3mrgnc3 Posted April 7, 2017 Share Posted April 7, 2017 (edited) New VM just sent in... to Vulnhub.com but here is a link for anyone who is into all that and wants to try it out now. D0Not5top Boot2Root This is my second public Boot2Root, It’s intended to be a little more difficult that the last one I made. That being said, it will depend on you how hard it is :D It's filled with a few little things to make the player smile. Again there are a few “Red Herrings”, and enumeration is key. DIFFICULTY ????? CAPTURE THE FLAGS There are 7 flags to collect, designed to get progressively more difficult to obtain DETAILS File: D0Not5top_3mrgnc3_v1.0.ova OS: ????? VM Type: VirtualBox IP Address: DHCP Size: 700 MB DOWNLOAD https://3mrgnc3.ninja/files/D0Not5top_3mrgnc3_v1.0.ova SUPPORT Any support issues can be directed to 3mrgnc3@techie.com SCREENSHOT I hope you all enjoy it! 3mrgnc3 ;D P.s. my previous challenge can be found here. https://3mrgnc3.ninja/2016/12/64base/ ------------------------------------------- NOTE: I Origionally posted this in 'everything else' forum but wanted to move it here. Not sure how to do that... Mods please feel free to remove origional. Edited April 7, 2017 by 3mrgnc3 fixed link Quote Link to comment Share on other sites More sharing options...
digip Posted April 8, 2017 Share Posted April 8, 2017 (edited) Quote I Origionally posted this in 'everything else' forum but wanted to move it here. Not sure how to do that... Mods please feel free to remove origional. Just an FYI, you can delete your other post yourself. Go to options, and then delete on the post. edit: Just finished the 64base 101 - walkthrough https://pastebin.com/WfmUXSC3 Edited April 8, 2017 by digip Quote Link to comment Share on other sites More sharing options...
digip Posted April 9, 2017 Share Posted April 9, 2017 Not sure how far in I am or what flag this is, but enjoying the missile game Quote Link to comment Share on other sites More sharing options...
3mrgnc3 Posted April 9, 2017 Author Share Posted April 9, 2017 21 minutes ago, digip said: Not sure how far in I am or what flag this is, but enjoying the missile game Nice :D Glad you like it digip. Quote Link to comment Share on other sites More sharing options...
digip Posted April 9, 2017 Share Posted April 9, 2017 (edited) I just hacked the game, set all the walls to blanks..lol Spoiler: https://imgur.com/a/B6ifK#4BXilZU Edited April 9, 2017 by digip Quote Link to comment Share on other sites More sharing options...
3mrgnc3 Posted April 9, 2017 Author Share Posted April 9, 2017 (edited) On 04/09/2017 at 10:03 AM, digip said: I just hacked the game, set all the walls to blanks..lol https://imgur.com/a/B6ifK#4BXilZU Nice job :D ;D Edited April 10, 2017 by 3mrgnc3 spoiler removed Quote Link to comment Share on other sites More sharing options...
digip Posted April 9, 2017 Share Posted April 9, 2017 (edited) Looks like the audio.js file causes the game to crash for me, so will try to dig through it manually. Edited April 9, 2017 by digip Quote Link to comment Share on other sites More sharing options...
3mrgnc3 Posted April 9, 2017 Author Share Posted April 9, 2017 46 minutes ago, digip said: Looks like the audio.js file causes the game to crash for me, so will try to dig through it manually. That's a shame. Are you attacking from a VM with limited resources? What browser are you using? Going through the code will obviously work too though. Quote Link to comment Share on other sites More sharing options...
digip Posted April 9, 2017 Share Posted April 9, 2017 10 minutes ago, 3mrgnc3 said: That's a shame. Are you attacking from a VM with limited resources? What browser are you using? Going through the code will obviously work too though. Yeah, I managed to figure out the directory with the octal codes :) Still working through things, but managed to get FL4_5 Quote Link to comment Share on other sites More sharing options...
3mrgnc3 Posted April 16, 2017 Author Share Posted April 16, 2017 Still no walkthroughs submitted as of yet. If anyone has done one, please either tweet it to @3mrgnc3 or email me at 3mrgnc3@techie.com. Quote Link to comment Share on other sites More sharing options...
digip Posted April 16, 2017 Share Posted April 16, 2017 I have not finished this one yet. the encrypted <code>key</code> I have, not sure what to do with it yet..lol. Thought maybe it was part of an rsa ssh key, but haven't got anything beyond the gathering of it, nor revisited since last week. Quote Link to comment Share on other sites More sharing options...
3mrgnc3 Posted April 17, 2017 Author Share Posted April 17, 2017 Hi digip, I sent you a DM on twitter mate. I messed up the clue for that flag. I've sent you a correction and will be updating the ova and my blog shortly today. As a point of note. The flags are not needed in order to root this box. They are really just designed as a parallel challenge to tackle. I have made some of the flags very tricky to find. Cheers. Quote Link to comment Share on other sites More sharing options...
digip Posted April 22, 2017 Share Posted April 22, 2017 For anyone else following along or trying this one, my walkthrough on how I gained root: https://3mrgnc3.ninja/2017/04/d0not5top-ctf-walkthrough-by-digip/ Thanks 3mrgnc3 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.