______             _    _ _ _   _      ______ _                 
|  ___|           | |  | (_) | | |     |  ___| |                
| |_ _   _ _ __   | |  | |_| |_| |__   | |_  | | __ _  __ _ ___ 
|  _| | | | '_ \  | |/\| | | __| '_ \  |  _| | |/ _` |/ _` / __|
| | | |_| | | | | \  /\  / | |_| | | | | |   | | (_| | (_| \__ \
\_|  \__,_|_| |_|  \/  \/|_|\__|_| |_| \_|   |_|\__,_|\__, |___/
                                                       __/ |    
                                                      |___/

Welcome to "Fun with Flags"!

This boot2root machine is themed after the famous TV show, The Big Bang Theory.

To successfully complete the challenge you will need to get all 7 flags, one for each

main character and get root access.

Difficulty: Easy / Beginner Level

Need hints? Twiter @emaragkos

-Runs better with VirtualBox -DHCP is disabled - Static IP 192.168.1.105 -If you have problems setting a lab with a specific subnet 192.168.1.0/24

here is my tutorial: https://emaragkos.gr/tutorials/vulnhub-vm-with-static-ip/

Good luck and have fun :)

  • Description: Have fun!
  • Difficulty: Easy/Intermediate
  • Contact: @whitecr0wz

It is recommended to run this machine in VirtualBox.

oreo: 1

Alexander 7 Mar 2020

Name: Oreo

OS: Android-x86 8.1 64-bit

Categories: basic enumeration, reverse engineering

Level: medium

Tested Virtualization Platforms: KVM, VMware

Root Flag Location: /data/root.txt

MuzzyBox: 1

Muzzy 28 Feb 2020

I have created this amazing CTF for pentester. However, This is not like other CTF which has been using common exploits and tools. Instead, you will learn about Real-world website testing methodology, advance injections and more.

Tempus Fugit is a Latin phrase that roughly translated as “time flies”.

This is an hard, probably insane, real life box, created by @4nqr34z and @theart42.

As in the former Tempus Fugits, #5 the idea is still to create something “out of the ordinary”.

Need any hints? Feel free to contact us on Twitter: @tfhints

DHCP-Client.

Tested and works both on Virtualbox and vmware

Health warning:

May cause loss of hair, severe self doubt and enlarged imposter syndrome

Story:

Recovered from the security disaster that was Tempus Fugit 4, our friends at Mofo company returned to the warm bosom of Linux. They have developed a sensational Internet application and have protected it with all sorts of fancy tooling. Deploying new technology and cool security features, they are confident that they can now withstand the worst of the worst. But, being hacked so many times, may the real danger be lurking from within?? Hack TF5 and find out for yourself!, @theart42 and @4nqr34z

N/A

This is the first in our collaborative series. This machine has 3 flags and requires a combination of traffic analysis, linux priv esc, and some outside the box CTF thinking.

Technical Info:

  • Ubuntu 64bit
  • Tested on virtualBox
  • DHCP should be enabled (set as bridged networking)

This a beginner level machine , getting a shell is a little bit harder, just think out of the box to get the shell.privilege escalation is easy once you get the shell.

This machine has 3 flags. Each flag is present in the Home directory of particular user. Be ready to test your Linux skills.

Technical Information

  • machine is based on Ubuntu 64bit
  • Tested on virtualBox
  • DHCP is enabled (set as bridged networking)

Installation

unzip it and then import it into virtualBox

Difficulty

Beginner/intermediate

Contact

If you have solved this machine in an unintended way then please let us know,you may get a chance to publish your writeup on our website. website link : https://www.haclabs.org

This machine is designed by keeping in mind about all the beginners who wants to start their journey in CTF challenges.

This machine doesn't require any prior knowledge about different web vulnerabilities.

Privilege escalation is the Key!

This machine has 3 flags. Each flag is present in home directory.

You must know some basic linux commands to pawn this machine.

Technical Information

  • Machine is based on Ubuntu 64bit
  • Tested on virtualBox
  • DHCP is enabled (set as bridged networking)

Installation

Unzip it and then import it into virtualBox

Contact

If you have solved this machine in an unintended way then please let us know,you may get a chance to publish your writeup on our website. website link : https://www.haclabs.org

Sar: 1

Love 15 Feb 2020

Sar is an OSCP-Like VM with the intent of gaining experience in the world of penetration testing.