├── .gitignore ├── README.md ├── cloud └── theta │ └── nmap │ └── initial ├── crypto ├── README.md ├── blinded_COMPLETE │ ├── crypto_blinded.zip │ ├── flag.txt │ ├── other_route.py │ ├── server.py │ └── test.py └── domain_controller │ ├── __pycache__ │ └── secret.cpython-38.pyc │ ├── app.py │ ├── crypto_domain_controller.zip │ ├── secret.py │ └── tinker.py ├── forensics ├── badRansomware_COMPLETE │ ├── .~lock.badRansomware.docm# │ ├── Stage2.ps1 │ ├── badRansomware.docm │ ├── flag.txt │ ├── forensics_badransomware.zip │ ├── macro.vba │ ├── stage3.ps1 │ └── tinker.py ├── compromised │ ├── capture.pcap │ ├── hash.txt │ ├── maybe_public_key │ ├── other_rsa_private_key │ ├── output │ │ ├── audit.txt │ │ ├── bmp │ │ │ └── 01269982.bmp │ │ ├── gif │ │ │ ├── 01283713.gif │ │ │ ├── 01494643.gif │ │ │ ├── 01794121.gif │ │ │ └── 02019207.gif │ │ └── zip │ │ │ ├── 01720446.zip │ │ │ ├── T1:X3_101025_1_8_1_expROM_FW_uni_template_eeprom0.bin │ │ │ ├── T1:X3_101025_1_8_1_expROM_FW_uni_template_flash0.bin │ │ │ ├── T1:X3_101025_1_8_1_expROM_FW_uni_template_rmt_cmd_line.txt │ │ │ ├── T1A:X3_101025_1_8_1_expROM_FW_uni_template_eeprom0.bin │ │ │ ├── T1A:X3_101025_1_8_1_expROM_FW_uni_template_flash0.bin │ │ │ └── T1A:X3_101025_1_8_1_expROM_FW_uni_template_rmt_cmd_line.txt │ ├── pcap │ │ └── capture.pcap │ ├── potential_private_key │ └── strings_twelve.log ├── dfir_COMPLETE │ ├── analysis │ │ ├── logged.py │ │ └── svchost.exe │ ├── flag.txt │ └── scheduled_task_from_jdf.ps1 └── oldSchool_COMPLETE │ ├── OldSchool.xls │ ├── flag.txt │ ├── forensics_oldschool.zip │ ├── next.xls │ └── tinker.py ├── fullpwn ├── Business-CTF-2021-US-CTF-1.ovpn ├── entituber_COMPLETE │ ├── README.md │ ├── gobuster.log │ ├── nikto.log │ ├── nmap │ │ ├── all_ports │ │ └── initial │ ├── payloads │ │ ├── invoice.xml │ │ ├── management.php │ │ ├── rubyftp.rb │ │ ├── test1.xml │ │ ├── throw.sh │ │ ├── ubl_invoice.xml │ │ ├── working_xxe.xml │ │ └── xxe-ftp.log │ ├── root.txt │ ├── site │ │ ├── a.dtd │ │ ├── bad.dtd │ │ ├── bogus │ │ ├── index.html │ │ ├── met6666.exe │ │ ├── nc.exe │ │ ├── nc64.exe │ │ ├── ncat.exe │ │ ├── parameterEntity_oob.dtd │ │ ├── parameterEntity_oob.xml │ │ └── what.php │ └── user.txt ├── fire │ ├── README.md │ ├── gobuster.log │ ├── nikto.log │ ├── nmap │ │ ├── all_ports │ │ └── initial │ └── php.ini ├── level │ ├── README.md │ ├── exploit │ │ ├── flink_exploit.py │ │ └── urls.txt │ ├── java.jar │ ├── nikto.log │ └── nmap │ │ └── initial ├── level_COMPLETE │ ├── README.md │ ├── nmap │ │ └── initial │ ├── root.txt │ └── user.txt ├── parkor │ ├── README.md │ ├── exploits │ │ └── php-cgi.py │ ├── nikto.loh │ ├── nmap │ │ ├── all_ports │ │ └── initial │ └── test.sh └── parkor_COMPLETE │ ├── README.md │ ├── gobuster.log │ ├── gobuster_raft_small.log │ ├── met6666.exe │ ├── nikto.log │ ├── nmap │ ├── all_ports │ ├── initial │ └── udp_ports │ ├── nmap2 │ ├── all_aggressive_80 │ ├── all_ports │ └── initial │ ├── root.txt │ ├── upload │ └── poc.php │ └── www │ ├── PowerUp.ps1 │ ├── met6666.exe │ ├── met7777.exe │ └── shell4444.exe ├── misc └── discordvm_COMPLETE │ ├── flag.txt │ └── tinker.py ├── reversing ├── cleaned_stage1.js ├── rev_sketchy_page.zip ├── sketchy.html ├── sleeper_agent │ ├── rev_sleeper_agent.zip │ └── sleeper_agent ├── stage1.js └── syncopation_COMPLETE │ ├── flag.txt │ ├── get_flag.py │ ├── rev_syncopation.zip │ └── syncopation └── web ├── decrypt_laravel.py ├── emergency_COMPLETE ├── flag.txt ├── jwks.json ├── modified_jwt.txt └── testing_congo │ ├── jwks.json │ ├── private.pem │ └── test.py ├── larablog_COMPLETE ├── README.md ├── custom_exploit │ └── exploit.php ├── env_file ├── flag.txt ├── gobuster.log ├── gobuster_app.log ├── gobuster_assets.log ├── gobuster_config.log ├── gobuster_conresourcesg ├── gobuster_database.log ├── gobuster_storage.log ├── nginx.conf ├── nikto.log └── used_to_get_flag.php ├── noteql_COMPLETE ├── README.md └── tinker.py └── time_COMPLETE ├── README.md ├── get_flag.py ├── img └── 20210725134152.png ├── web_time.zip └── web_time ├── Dockerfile ├── build_docker.sh ├── challenge ├── Router.php ├── assets │ └── favicon.png ├── controllers │ └── TimeController.php ├── index.php ├── models │ └── TimeModel.php ├── static │ └── main.css └── views │ └── index.php ├── config ├── fpm.conf ├── nginx.conf └── supervisord.conf └── flag /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/.gitignore -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/README.md -------------------------------------------------------------------------------- /cloud/theta/nmap/initial: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/cloud/theta/nmap/initial -------------------------------------------------------------------------------- /crypto/README.md: -------------------------------------------------------------------------------- 1 | ``` 2 | sudo apt install sagemath 3 | ``` -------------------------------------------------------------------------------- /crypto/blinded_COMPLETE/crypto_blinded.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/crypto/blinded_COMPLETE/crypto_blinded.zip -------------------------------------------------------------------------------- /crypto/blinded_COMPLETE/flag.txt: -------------------------------------------------------------------------------- 1 | HTB{bl1nd3d_by-th3_sh1n1ng_l1ght...m4k3_sur3-t0_h45h_y0ur-m3ss4g3s!} -------------------------------------------------------------------------------- /crypto/blinded_COMPLETE/other_route.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/crypto/blinded_COMPLETE/other_route.py -------------------------------------------------------------------------------- /crypto/blinded_COMPLETE/server.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/crypto/blinded_COMPLETE/server.py -------------------------------------------------------------------------------- /crypto/blinded_COMPLETE/test.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/crypto/blinded_COMPLETE/test.py -------------------------------------------------------------------------------- /crypto/domain_controller/__pycache__/secret.cpython-38.pyc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/crypto/domain_controller/__pycache__/secret.cpython-38.pyc -------------------------------------------------------------------------------- /crypto/domain_controller/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/crypto/domain_controller/app.py -------------------------------------------------------------------------------- /crypto/domain_controller/crypto_domain_controller.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/crypto/domain_controller/crypto_domain_controller.zip -------------------------------------------------------------------------------- /crypto/domain_controller/secret.py: -------------------------------------------------------------------------------- 1 | FLAG = "FAKE{not_real_flag_lol}" 2 | -------------------------------------------------------------------------------- /crypto/domain_controller/tinker.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/crypto/domain_controller/tinker.py -------------------------------------------------------------------------------- /forensics/badRansomware_COMPLETE/.~lock.badRansomware.docm#: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/badRansomware_COMPLETE/.~lock.badRansomware.docm# -------------------------------------------------------------------------------- /forensics/badRansomware_COMPLETE/Stage2.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/badRansomware_COMPLETE/Stage2.ps1 -------------------------------------------------------------------------------- /forensics/badRansomware_COMPLETE/badRansomware.docm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/badRansomware_COMPLETE/badRansomware.docm -------------------------------------------------------------------------------- /forensics/badRansomware_COMPLETE/flag.txt: -------------------------------------------------------------------------------- 1 | HTB{r4ns0m3wh3R} -------------------------------------------------------------------------------- /forensics/badRansomware_COMPLETE/forensics_badransomware.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/badRansomware_COMPLETE/forensics_badransomware.zip -------------------------------------------------------------------------------- /forensics/badRansomware_COMPLETE/macro.vba: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/badRansomware_COMPLETE/macro.vba -------------------------------------------------------------------------------- /forensics/badRansomware_COMPLETE/stage3.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/badRansomware_COMPLETE/stage3.ps1 -------------------------------------------------------------------------------- /forensics/badRansomware_COMPLETE/tinker.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/badRansomware_COMPLETE/tinker.py -------------------------------------------------------------------------------- /forensics/compromised/capture.pcap: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/capture.pcap -------------------------------------------------------------------------------- /forensics/compromised/hash.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/hash.txt -------------------------------------------------------------------------------- /forensics/compromised/maybe_public_key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/maybe_public_key -------------------------------------------------------------------------------- /forensics/compromised/other_rsa_private_key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/other_rsa_private_key -------------------------------------------------------------------------------- /forensics/compromised/output/audit.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/output/audit.txt -------------------------------------------------------------------------------- /forensics/compromised/output/bmp/01269982.bmp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/output/bmp/01269982.bmp -------------------------------------------------------------------------------- /forensics/compromised/output/gif/01283713.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/output/gif/01283713.gif -------------------------------------------------------------------------------- /forensics/compromised/output/gif/01494643.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/output/gif/01494643.gif -------------------------------------------------------------------------------- /forensics/compromised/output/gif/01794121.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/output/gif/01794121.gif -------------------------------------------------------------------------------- /forensics/compromised/output/gif/02019207.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/output/gif/02019207.gif -------------------------------------------------------------------------------- /forensics/compromised/output/zip/01720446.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/output/zip/01720446.zip -------------------------------------------------------------------------------- /forensics/compromised/output/zip/T1:X3_101025_1_8_1_expROM_FW_uni_template_eeprom0.bin: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /forensics/compromised/output/zip/T1:X3_101025_1_8_1_expROM_FW_uni_template_flash0.bin: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /forensics/compromised/output/zip/T1:X3_101025_1_8_1_expROM_FW_uni_template_rmt_cmd_line.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /forensics/compromised/output/zip/T1A:X3_101025_1_8_1_expROM_FW_uni_template_eeprom0.bin: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /forensics/compromised/output/zip/T1A:X3_101025_1_8_1_expROM_FW_uni_template_flash0.bin: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /forensics/compromised/output/zip/T1A:X3_101025_1_8_1_expROM_FW_uni_template_rmt_cmd_line.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /forensics/compromised/pcap/capture.pcap: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/pcap/capture.pcap -------------------------------------------------------------------------------- /forensics/compromised/potential_private_key: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/potential_private_key -------------------------------------------------------------------------------- /forensics/compromised/strings_twelve.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/compromised/strings_twelve.log -------------------------------------------------------------------------------- /forensics/dfir_COMPLETE/analysis/logged.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/dfir_COMPLETE/analysis/logged.py -------------------------------------------------------------------------------- /forensics/dfir_COMPLETE/analysis/svchost.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/dfir_COMPLETE/analysis/svchost.exe -------------------------------------------------------------------------------- /forensics/dfir_COMPLETE/flag.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/dfir_COMPLETE/flag.txt -------------------------------------------------------------------------------- /forensics/dfir_COMPLETE/scheduled_task_from_jdf.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/dfir_COMPLETE/scheduled_task_from_jdf.ps1 -------------------------------------------------------------------------------- /forensics/oldSchool_COMPLETE/OldSchool.xls: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/oldSchool_COMPLETE/OldSchool.xls -------------------------------------------------------------------------------- /forensics/oldSchool_COMPLETE/flag.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/oldSchool_COMPLETE/flag.txt -------------------------------------------------------------------------------- /forensics/oldSchool_COMPLETE/forensics_oldschool.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/oldSchool_COMPLETE/forensics_oldschool.zip -------------------------------------------------------------------------------- /forensics/oldSchool_COMPLETE/next.xls: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/oldSchool_COMPLETE/next.xls -------------------------------------------------------------------------------- /forensics/oldSchool_COMPLETE/tinker.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/forensics/oldSchool_COMPLETE/tinker.py -------------------------------------------------------------------------------- /fullpwn/Business-CTF-2021-US-CTF-1.ovpn: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/Business-CTF-2021-US-CTF-1.ovpn -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/README.md -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/gobuster.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/gobuster.log -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/nikto.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/nikto.log -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/nmap/all_ports: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/nmap/all_ports -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/nmap/initial: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/nmap/initial -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/payloads/invoice.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/payloads/invoice.xml -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/payloads/management.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/payloads/management.php -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/payloads/rubyftp.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/payloads/rubyftp.rb -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/payloads/test1.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/payloads/test1.xml -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/payloads/throw.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/payloads/throw.sh -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/payloads/ubl_invoice.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/payloads/ubl_invoice.xml -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/payloads/working_xxe.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/payloads/working_xxe.xml -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/payloads/xxe-ftp.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/payloads/xxe-ftp.log -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/root.txt: -------------------------------------------------------------------------------- 1 | HTB{1_AM_A_P0TAT0_T4M3T0?} -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/site/a.dtd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/site/a.dtd -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/site/bad.dtd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/site/bad.dtd -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/site/bogus: -------------------------------------------------------------------------------- 1 | hello -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/site/index.html: -------------------------------------------------------------------------------- 1 | hellofromjohn -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/site/met6666.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/site/met6666.exe -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/site/nc.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/site/nc.exe -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/site/nc64.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/site/nc64.exe -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/site/ncat.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/site/ncat.exe -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/site/parameterEntity_oob.dtd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/site/parameterEntity_oob.dtd -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/site/parameterEntity_oob.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/entituber_COMPLETE/site/parameterEntity_oob.xml -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/site/what.php: -------------------------------------------------------------------------------- 1 | 4 | -------------------------------------------------------------------------------- /fullpwn/entituber_COMPLETE/user.txt: -------------------------------------------------------------------------------- 1 | HTB{CR055_R04DS_W17H_THE_XXE} -------------------------------------------------------------------------------- /fullpwn/fire/README.md: -------------------------------------------------------------------------------- 1 | 10.129.166.38 -------------------------------------------------------------------------------- /fullpwn/fire/gobuster.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/fire/gobuster.log -------------------------------------------------------------------------------- /fullpwn/fire/nikto.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/fire/nikto.log -------------------------------------------------------------------------------- /fullpwn/fire/nmap/all_ports: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/fire/nmap/all_ports -------------------------------------------------------------------------------- /fullpwn/fire/nmap/initial: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/fire/nmap/initial -------------------------------------------------------------------------------- /fullpwn/fire/php.ini: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/fire/php.ini -------------------------------------------------------------------------------- /fullpwn/level/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/level/README.md -------------------------------------------------------------------------------- /fullpwn/level/exploit/flink_exploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/level/exploit/flink_exploit.py -------------------------------------------------------------------------------- /fullpwn/level/exploit/urls.txt: -------------------------------------------------------------------------------- 1 | http://10.129.172.64/ -------------------------------------------------------------------------------- /fullpwn/level/java.jar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/level/java.jar -------------------------------------------------------------------------------- /fullpwn/level/nikto.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/level/nikto.log -------------------------------------------------------------------------------- /fullpwn/level/nmap/initial: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/level/nmap/initial -------------------------------------------------------------------------------- /fullpwn/level_COMPLETE/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/level_COMPLETE/README.md -------------------------------------------------------------------------------- /fullpwn/level_COMPLETE/nmap/initial: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/level_COMPLETE/nmap/initial -------------------------------------------------------------------------------- /fullpwn/level_COMPLETE/root.txt: -------------------------------------------------------------------------------- 1 | HTB{br0k3n_st0r4g3} -------------------------------------------------------------------------------- /fullpwn/level_COMPLETE/user.txt: -------------------------------------------------------------------------------- 1 | HTB{0utd4t3d_cms_1s_n0_g00d} -------------------------------------------------------------------------------- /fullpwn/parkor/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor/README.md -------------------------------------------------------------------------------- /fullpwn/parkor/exploits/php-cgi.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor/exploits/php-cgi.py -------------------------------------------------------------------------------- /fullpwn/parkor/nikto.loh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor/nikto.loh -------------------------------------------------------------------------------- /fullpwn/parkor/nmap/all_ports: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor/nmap/all_ports -------------------------------------------------------------------------------- /fullpwn/parkor/nmap/initial: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor/nmap/initial -------------------------------------------------------------------------------- /fullpwn/parkor/test.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor/test.sh -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/README.md -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/gobuster.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/gobuster.log -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/gobuster_raft_small.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/gobuster_raft_small.log -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/met6666.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/met6666.exe -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/nikto.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/nikto.log -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/nmap/all_ports: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/nmap/all_ports -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/nmap/initial: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/nmap/initial -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/nmap/udp_ports: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/nmap/udp_ports -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/nmap2/all_aggressive_80: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/nmap2/all_aggressive_80 -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/nmap2/all_ports: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/nmap2/all_ports -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/nmap2/initial: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/nmap2/initial -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/root.txt: -------------------------------------------------------------------------------- 1 | HTB{K33P_V1rTu4L_EY3_ON_PA7H5_S1R} -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/upload/poc.php: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/www/PowerUp.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/www/PowerUp.ps1 -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/www/met6666.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/www/met6666.exe -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/www/met7777.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/www/met7777.exe -------------------------------------------------------------------------------- /fullpwn/parkor_COMPLETE/www/shell4444.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/fullpwn/parkor_COMPLETE/www/shell4444.exe -------------------------------------------------------------------------------- /misc/discordvm_COMPLETE/flag.txt: -------------------------------------------------------------------------------- 1 | HTB{4lw4ys_RTFM!1} -------------------------------------------------------------------------------- /misc/discordvm_COMPLETE/tinker.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/misc/discordvm_COMPLETE/tinker.py -------------------------------------------------------------------------------- /reversing/cleaned_stage1.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/reversing/cleaned_stage1.js -------------------------------------------------------------------------------- /reversing/rev_sketchy_page.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/reversing/rev_sketchy_page.zip -------------------------------------------------------------------------------- /reversing/sketchy.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/reversing/sketchy.html -------------------------------------------------------------------------------- /reversing/sleeper_agent/rev_sleeper_agent.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/reversing/sleeper_agent/rev_sleeper_agent.zip -------------------------------------------------------------------------------- /reversing/sleeper_agent/sleeper_agent: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/reversing/sleeper_agent/sleeper_agent -------------------------------------------------------------------------------- /reversing/stage1.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/reversing/stage1.js -------------------------------------------------------------------------------- /reversing/syncopation_COMPLETE/flag.txt: -------------------------------------------------------------------------------- 1 | HTB{4_r4th3r_0ffb34t_b1n4ry!} -------------------------------------------------------------------------------- /reversing/syncopation_COMPLETE/get_flag.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/reversing/syncopation_COMPLETE/get_flag.py -------------------------------------------------------------------------------- /reversing/syncopation_COMPLETE/rev_syncopation.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/reversing/syncopation_COMPLETE/rev_syncopation.zip -------------------------------------------------------------------------------- /reversing/syncopation_COMPLETE/syncopation: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/reversing/syncopation_COMPLETE/syncopation -------------------------------------------------------------------------------- /web/decrypt_laravel.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/decrypt_laravel.py -------------------------------------------------------------------------------- /web/emergency_COMPLETE/flag.txt: -------------------------------------------------------------------------------- 1 | HTB{your_JWTS_4r3_cl41m3d!!} -------------------------------------------------------------------------------- /web/emergency_COMPLETE/jwks.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/emergency_COMPLETE/jwks.json -------------------------------------------------------------------------------- /web/emergency_COMPLETE/modified_jwt.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/emergency_COMPLETE/modified_jwt.txt -------------------------------------------------------------------------------- /web/emergency_COMPLETE/testing_congo/jwks.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/emergency_COMPLETE/testing_congo/jwks.json -------------------------------------------------------------------------------- /web/emergency_COMPLETE/testing_congo/private.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/emergency_COMPLETE/testing_congo/private.pem -------------------------------------------------------------------------------- /web/emergency_COMPLETE/testing_congo/test.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/emergency_COMPLETE/testing_congo/test.py -------------------------------------------------------------------------------- /web/larablog_COMPLETE/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/larablog_COMPLETE/README.md -------------------------------------------------------------------------------- /web/larablog_COMPLETE/custom_exploit/exploit.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/larablog_COMPLETE/custom_exploit/exploit.php -------------------------------------------------------------------------------- /web/larablog_COMPLETE/env_file: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/larablog_COMPLETE/env_file -------------------------------------------------------------------------------- /web/larablog_COMPLETE/flag.txt: -------------------------------------------------------------------------------- 1 | HTB{0ff_by_sl4sh_pwn4g3} -------------------------------------------------------------------------------- /web/larablog_COMPLETE/gobuster.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/larablog_COMPLETE/gobuster.log -------------------------------------------------------------------------------- /web/larablog_COMPLETE/gobuster_app.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/larablog_COMPLETE/gobuster_app.log -------------------------------------------------------------------------------- /web/larablog_COMPLETE/gobuster_assets.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/larablog_COMPLETE/gobuster_assets.log -------------------------------------------------------------------------------- /web/larablog_COMPLETE/gobuster_config.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/larablog_COMPLETE/gobuster_config.log -------------------------------------------------------------------------------- /web/larablog_COMPLETE/gobuster_conresourcesg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/larablog_COMPLETE/gobuster_conresourcesg -------------------------------------------------------------------------------- /web/larablog_COMPLETE/gobuster_database.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/larablog_COMPLETE/gobuster_database.log -------------------------------------------------------------------------------- /web/larablog_COMPLETE/gobuster_storage.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/larablog_COMPLETE/gobuster_storage.log -------------------------------------------------------------------------------- /web/larablog_COMPLETE/nginx.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/larablog_COMPLETE/nginx.conf -------------------------------------------------------------------------------- /web/larablog_COMPLETE/nikto.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/larablog_COMPLETE/nikto.log -------------------------------------------------------------------------------- /web/larablog_COMPLETE/used_to_get_flag.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/larablog_COMPLETE/used_to_get_flag.php -------------------------------------------------------------------------------- /web/noteql_COMPLETE/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/noteql_COMPLETE/README.md -------------------------------------------------------------------------------- /web/noteql_COMPLETE/tinker.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/noteql_COMPLETE/tinker.py -------------------------------------------------------------------------------- /web/time_COMPLETE/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/README.md -------------------------------------------------------------------------------- /web/time_COMPLETE/get_flag.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/get_flag.py -------------------------------------------------------------------------------- /web/time_COMPLETE/img/20210725134152.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/img/20210725134152.png -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/web_time.zip -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/web_time/Dockerfile -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time/build_docker.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/web_time/build_docker.sh -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time/challenge/Router.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/web_time/challenge/Router.php -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time/challenge/assets/favicon.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/web_time/challenge/assets/favicon.png -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time/challenge/controllers/TimeController.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/web_time/challenge/controllers/TimeController.php -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time/challenge/index.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/web_time/challenge/index.php -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time/challenge/models/TimeModel.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/web_time/challenge/models/TimeModel.php -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time/challenge/static/main.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/web_time/challenge/static/main.css -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time/challenge/views/index.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/web_time/challenge/views/index.php -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time/config/fpm.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/web_time/config/fpm.conf -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time/config/nginx.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/web_time/config/nginx.conf -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time/config/supervisord.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/JohnHammond/htbbizctf2021/HEAD/web/time_COMPLETE/web_time/config/supervisord.conf -------------------------------------------------------------------------------- /web/time_COMPLETE/web_time/flag: -------------------------------------------------------------------------------- 1 | HTB{f4k3_fl4g_f0r_t3st1ng} --------------------------------------------------------------------------------