WEB CSRF
Kerry is naive and clicks on every link you send her, try using a csrf vulnerability to steal her money. Box: luhack-web-0
Port: 8083 Url: [http://100.110.89.151:8083]
Posted on 2023-11-17 17:06:09.029541
Solved 1 time | 5 Points | under web
Kerry is naive and clicks on every link you send her, try using a csrf vulnerability to steal her money. Box: luhack-web-0
Port: 8083 Url: [http://100.110.89.151:8083]
Posted on 2023-11-17 17:06:09.029541
Solved 1 time | 5 Points | under web
Try exploiting the ssti to run arbitrary code and get the flag. Box: luhack-web-0
Port: 8084 Url: [http://100.110.89.151:8084]
Posted on 2023-11-17 17:06:09.029541
Solved 0 times | 5 Points | under web
Try exploiting the sqli to dump the users table. (sqlmap may be useful) Box: luhack-web-0
Port: 8085 Url: [http://100.110.89.151:8085]
Posted on 2023-11-17 17:06:09.029541
Solved 0 times | 5 Points | under web
Any way to get me access to this new album from my favourite band? (This one is a little tougher!) Box: luhack-web-0
Port: 8082 Url: [http://100.110.89.151:8082]
Posted on 2023-11-17 17:06:09.029541
Solved 0 times | 5 Points | under web
My steam wallet is running low. I've tried all the logins we found previously. This might require something new? Box: luhack-web-0
Port: 8082 Url: [http://100.110.89.151:8082]
Posted on 2023-11-17 17:06:09.029541
Solved 0 times | 5 Points | under web
I want free access to movies. Box: luhack-web-0
Port: 8082 Url: [http://100.110.89.151:8082]
Posted on 2023-11-17 17:06:09.029541
Solved 0 times | 5 Points | under web
More passwords to find! Box: luhack-web-0
Port: 8082 Url: [http://100.110.89.151:8082]
Posted on 2023-11-17 17:06:09.029541
Solved 1 time | 5 Points | under web
You've found the login page for the site. Can you get access? Box: luhack-web-0
Port: 8082 Url: [http://100.127.159.170:8082]
Posted on 2023-11-17 17:06:09.029541
Solved 1 time | 5 Points | under web
This is a basic pin brute force. You've been given access to this page with a 4 digit pin. Can you build a script to crack it? Box: luhack-web-0
Port: 8082 Url: [http://100.127.159.170:8082]
Posted on 2023-11-17 17:06:09.029541
Solved 3 times | 5 Points | under web
You're not admin, are you? Box: luhack-web-0
Port: 8081 Url: [http://100.127.159.170:8081]
Posted on 2023-11-17 17:06:09.029541
Solved 1 time | 5 Points | under web
Can you login to an account? (Try doing #4 first) Box: luhack-web-0
Port: 8081 Url: [http://100.127.159.170:8081]
Posted on 2023-11-17 17:06:09.029541
Solved 0 times | 5 Points | under web
(broken, sorry. Try web-sqli instead) Can you inject the login page? Box: luhack-web-0
Port: 8081 Url: [http://100.127.159.170:8081]
Posted on 2023-11-17 17:06:09.029541
Solved 3 times | 5 Points | under web
Hack the Network Test page. Box: luhack-web-0
Port: 8081 Url: [http://100.127.159.170:8081]
Posted on 2023-11-17 17:06:09.029541
Solved 10 times | 5 Points | under web
Another easy one, just look and pretend you're a robot 👀 Box: luhack-web-0
Port: 8081 Url: [http://100.110.89.151:8081]
Posted on 2023-11-17 17:06:09.029541
Solved 10 times | 5 Points | under web
This is an easy one, just look around... Box: luhack-web-0
Port: 8081 Url: [http://100.110.89.151:8081]
Posted on 2023-11-10 16:58:14.750622
Solved 1 time | 15 Points | under privesc
Read the flag of the root6 account
Posted on 2023-11-10 16:58:14.750622
Solved 1 time | 5 Points | under privesc
Break into the root3 account
Posted on 2023-11-10 16:58:14.750622
Solved 1 time | 10 Points | under privesc
Escalate to the root2 account
Posted on 2023-11-10 16:58:14.750622
Solved 2 times | 5 Points | under privesc
Escalate to the root5 account
Posted on 2023-11-10 16:58:14.750622
Solved 1 time | 10 Points | under privesc
Escalate to the root4 account
Posted on 2023-11-10 16:58:14.750622
Solved 1 time | 5 Points | under privesc
Escalate to the root1 account
Posted on 2023-11-10 16:58:14.750622
Solved 1 time | 5 Points | under privesc
Escalate to the root0 account
Posted on 2023-11-03 17:26:51.081314
We've received the following transmissions and their encrypted couterparts: plain text According to all known laws of aviation: there is no way a bee should be able to fly. cipher plain text Once upon a time there was a lovely princess. But she had an enchantment upon her of a fearful sort which could only be broken by love's first kiss. cipher
Posted on 2023-11-03 17:26:51.081314
Posted on 2023-11-03 17:26:51.081314
TFVIYWNre2Jhc2U2NF9pc19lbmNyeXB0aW9uP30=
Posted on 2023-11-03 17:26:51.081314
4c554861636b7b636f6d706c6574656c795f68696464656e5f66726f6d5f73696768747d
Posted on 2023-11-03 17:26:51.081314
Decrypt the file to find the flag [locked.zip] A dictionary might come in handy...
Posted on 2023-11-03 17:26:51.081314
Decode the message to find the flag
Posted on 2023-11-03 17:26:51.081314
Can you decrypt the traffic? I'll be nice and even give you the keys! (Hint: Use Wireshark) Traffic: [crypto9.pcapng] Keys: [ssl.log]
Posted on 2023-11-03 17:26:51.081314
Try the other tasks first before attempting these more difficult challenges! This one is very hard. Made by pink#3872
Posted on 2023-11-03 17:26:51.081314
You need to complete #1A first, make sure to read the prompt again [final.dat] Made by pink#3872
Posted on 2023-11-03 17:26:51.081314
Try the other tasks first before attempting these more difficult challenges! Made by pink#3872
Posted on 2023-11-03 17:26:51.081314
Decode the message to find the flag You will need to put your answer in the LUHACK{...}
format Made by pink#3872
Posted on 2023-11-03 17:26:51.081314
Decode the message to find the flag Made by pink#3872
Posted on 2023-11-03 17:26:51.081314
Finding the flag might require some brute force... [hmmm.dat] Made by pink#3872
Posted on 2023-11-03 17:26:51.081314
Decode the message to find the flag Made by pink#3872
Posted on 2023-11-03 17:26:51.081314
Decode the message to find the flag Made by pink#3872
Posted on 2023-11-03 17:26:51.081314
Decode the message to find the flag Made by pink#3872
Posted on 2023-11-03 17:26:51.081314
Decode the message to find the flag Made by pink#3872
Posted on 2023-11-03 17:26:51.081314
Decode the message to find the flag Made by pink#3872
Posted on 2023-10-27 16:22:40.546775
Solved 1 time | 5 Points | under infra
Pwn windows box with EternalBlue (Flag is on the desktop of the LUHack user) Boxes: win-infra-<0..n>
Make sure you use a bind shell, windows/x64/meterpreter/bind_tcp
works well. If this doesn't work, try one of the other win-blue machines. EternalBlue likes to trigger BSODs.
Posted on 2023-10-27 16:22:40.546775
Solved 1 time | 5 Points | under infra
Pwn vsftpd Box: luhack-infra-0
Note: The metasploit module for this doesn't try to run the exploit if it sees the shell port already open, you can use the msfconsole edit
and reload
commands to remove this check. You can also try exploiting this vulnerability manually :)
Posted on 2023-10-27 16:22:40.546775
Solved 2 times | 5 Points | under infra
Pwn Unrealircd Box: luhack-infra-0
Note: Make sure you use a bind shell, and, use port 10001
Posted on 2023-10-27 16:22:40.546775
Solved 7 times | 5 Points | under infra
Pwn redis (Make sure you use a bind shell on port 10000
) Box: luhack-infra-0
(cmd/unix/bind_netcat
is a good payload btw)
Posted on 2023-10-20 16:20:32.921542
Solved 8 times | 5 Points | under enum
Find the subdomain of luhack.me Answer format: <subdomain>.luhack.me
Posted on 2023-10-20 16:20:32.921542
Solved 3 times | 5 Points | under enum
Find a weird user on the SMTP server. They're not one of these: (hint: /usr/share/wordlists/metasploit/unix_users.txt
is a good wordlist) Box: luhack-enum-0
Posted on 2023-10-20 16:20:32.921542
Solved 13 times | 5 Points | under enum
Throw dirb
at it. Box: luhack-enum-0
Posted on 2023-10-20 16:20:32.921542
Solved 10 times | 5 Points | under enum
I hope you're not a robot? Box: luhack-enum-0
Posted on 2023-10-20 16:20:32.921542
Solved 3 times | 5 Points | under enum
Somewhere in a SMB share... Box: win-enum-0
Posted on 2023-10-20 16:20:32.921542
Solved 0 times | 5 Points | under enum
The second flag from the FTP server. (you might want to come back to this later) Box: luhack-enum-0
Posted on 2023-10-20 16:20:32.921542
Solved 16 times | 5 Points | under enum
Our ftp server isn't as secure as we hoped. Box: luhack-enum-0
Posted on 2023-10-13 16:58:11.107352
Solved 2 times | 10 Points | under session1
Find the hidden flag on the DNS server! Box: luhack-recon-0
Hint: How can we read all records of a DNS server?
Posted on 2023-10-13 16:58:11.107352
Solved 2 times | 5 Points | under session1
What is the content of the txt.luhack.local record? Box: luhack-recon-0
Posted on 2023-10-13 16:58:11.107352
Solved 2 times | 5 Points | under session1
What is the IP address of test.luhack.local ? Hint: use dig or nslookup Box: luhack-recon-0
Posted on 2023-10-13 16:58:11.107352
Solved 4 times | 5 Points | under session1
What protocol normally runs over port 53?
Posted on 2023-10-13 16:58:11.107352
Solved 5 times | 5 Points | under session1
How many TCP ports can possibly exist on a system?
Posted on 2023-10-13 16:58:11.107352
Solved 8 times | 5 Points | under session1
Is port 993 open? (yes/ no) Box: luhack-recon-0
Posted on 2023-10-13 16:58:11.107352
Solved 9 times | 5 Points | under session1
Is port 999 open? (yes/ no) Box: luhack-recon-0
Posted on 2023-10-13 16:58:11.107352
Solved 5 times | 5 Points | under session1
What is the SSH fingerprint of the server? Box: luhack-recon-0
Format: SHA256:...
Posted on 2023-10-13 16:58:11.107352
Solved 8 times | 5 Points | under session1
What IMAP software is running? Box: luhack-recon-0
Posted on 2023-10-13 16:58:11.107352
Solved 5 times | 5 Points | under session1
What is the SMTP banner? Box: luhack-recon-0
Posted on 2023-10-13 16:58:11.107352
Solved 10 times | 5 Points | under session1
What is the banner of port 42069? Box: luhack-recon-0
Posted on 2023-10-13 16:58:11.107352
Solved 11 times | 5 Points | under session1
What is the Organizational Unit (OU) of the certificate server on port 443? Box: luhack-recon-0
Posted on 2023-10-13 16:58:11.107352
Solved 19 times | 5 Points | under session1
What is the hostname (Common Name) of the certificate served on port 443? Box: luhack-recon-0
Posted on 2023-10-13 16:58:11.107352
Solved 21 times | 5 Points | under session1
What version of FTP software is running? Box: luhack-recon-0
Format: SoftwareName x.y.z
Posted on 2023-10-13 16:58:11.107352
Solved 22 times | 5 Points | under session1
What web server software is running? Box: luhack-recon-0
Format: SoftwareName httpd x.y.z
Posted on 2023-10-13 16:58:11.107352
Solved 21 times | 5 Points | under session1
What version of BIND is running? Format: x.y.x
Box: luhack-recon-0
Posted on 2023-10-02 21:17:05.953702
Solved 4 times | 5 Points | under freshers-challenge
Ben lost his token again!
Posted on 2023-10-02 17:58:07.696709
Solved 0 times | 10 Points | under freshers-challenge
Hidden inside this pcap is a flag: [https://cdn.discordapp.com/attachments/631618075254325257/759113595841151017/completedChallenge.pcapng]
Posted on 2023-10-02 17:58:07.696709
Solved 5 times | 5 Points | under freshers-challenge
Nothing to see here ...
Posted on 2023-10-02 17:58:07.696709
Solved 2 times | 5 Points | under freshers-challenge
We received the following file. Can you help us decode the hidden message? [Downloadable File to investigate]
Posted on 2023-10-02 17:58:07.696709
Solved 2 times | 15 Points | under freshers-challenge
To complete this challenge, you must find all 3 flags. Submit the flags in the format: flag1flag2flag3
Posted on 2023-10-02 17:58:07.696709
Solved 3 times | 5 Points | under freshers-challenge
drainage edict deadbolt cranky crucial dragnet kickoff guidance highchair fracture chatter chatter jawbone eyetooth freedom chairlift gremlin flytrap eyetooth framework glucose choking freedom klaxon
Posted on 2023-10-02 17:58:07.696709
Solved 8 times | 5 Points | under freshers-challenge
ndjsdcilxcugxtcshlxiwhpaps
When submitting the flag, enter it as LUHACK{plaintext}. Where plaintext is the plaintext of the above string.
Posted on 2023-10-02 17:58:07.696709
Solved 9 times | 5 Points | under ezpz freshers-challenge
🔎
Posted on 2023-10-02 17:58:07.696709
Solved 11 times | 5 Points | under ezpz freshers-challenge
Once you've solved Freshers Challenge #1, you'll be given the start of the next challenge. Once you get the flag for that, submit it using the bot!
Posted on 2023-10-02 17:58:07.696709
Solved 11 times | 5 Points | under freshers-challenge ezpz
Hmm I wonder Hint: [CyberChef]
Posted on 2020-09-26 08:47:06.742482
Solved 0 times | 30 Points | under hard
Here's a linux program compiled by another program I wrote, it should be fairly unintuitive to reverse engineer so good luck! [https://cdn.discordapp.com/attachments/631618075254325257/759334352886169640/a.out] Since I'm nice, here's the source code: [https://gist.github.com/simmsb/28c165087b301fcce234c1533861421e] And here's the source code of the compiler: [https://github.com/simmsb/some-scheme-compiler]