TYS 0x04 - Is it really that easy?!

This post is part of the Test Your Skills series. You can find an introduction here. And an overview of all TYS’s currently available is over here.


Challenge

Your objective? Get root! But, do it without making any changes to the container/image or the file-system outside your users home directory (/home/void) and do not change the docker run command (run it the way shown below)!

more...

Hacking a telnetd sensor node on the back of busybox telnetd

Telnetd sensor node what?!

I call it a sensor node (more on that in a later post), you might call it a telnetd stub. We are essentially talking about a telnet service which looks like a telnet service, is fingerprinted as a telnet service, replies like a telnet service, but is limited to bare minimal functionality and just meant as a sensor to gather information.

In this case, we are looking for the folks who are looking for us - or, who are looking for exposed services on the interwebs (or maybe your corp network?).

more...

TYS 0x03 - I fatfinger deleted my cute little puppy!

This post is part of the Test Your Skills series. You can find an introduction here. And an overview of all TYS’s currently available is over here.


Scenario

Bob, who has a very cute little puppy, sends you an email asking for your help. He says that he, by accident, deleted the best picture he had of his cute little puppy from a USB memory stick. He also mentioned that he immediately unplugged the memory stick once he noticed that he deleted the picture. He took an image of the stick with DD and attached it to the email.

His last line in the mail is something like: This is really important to me. I need this picture back asap. I will make up to you if you can deliver within 72 hours!

more...

dockerinoz - build containers that won't haunt you

dockerinoz - simple Dockerfile (security) best practices verification

dockerinoz is a very small and simple tool which allows you to verify the content of Dockerfiles against a given best practice. It’s nothing more than a fancy grep using a bit more than just simple regular expressions. This approach allows for very quick verifications which is especially important when implementing dockerinoz into your build pipeline. It also makes dockerinoz super easy to modify and extend - especially as the rules are just regular expressions in a json file (rules.json).

more...