CTF challenge powered by Docker

This Repository contains a web challenge with a user token and a Linux privilege escalation challenge with a root token.
This challenge was part of the Hacker Contest at the TU Darmstadt 2021.

Install

1. Download the Git Large File Storage extension from here. Install with git lfs install
2. Clone Repository.
3. Create personal access token here (To get access to the github container registry that contains the docker images for this challenge).
4. Set env variable for access token export CR_PAT=YOUR_TOKEN, export CR_NAME=YOUR_GITHUB_USERNAME.
5. Run sudo chmod +x install.sh && sudo -E ./install.sh.
6. Lets hack!.

Walkthrough

The attached Walkthrough.pdf gives a detailed explanation of how to setup the challenge and how to solve it step by step.

Requirements

1. Docker engine
2. docker-compose

Cheatsheet.pdf

This pdf just gives a few tips and tricks of how to find and exploit privilege escalation vulnerabilities.