Program Misuse

fundamentals

0/51 challenges completed

For each challenge in this module, a different (standard) program that is owned by root has its suid bit set. Probably, this program is not normally designed to be suid. Your task is to misuse the program with this increased privilege to read the flag. Some of these programs are ordinarily used to read files; several of them are not. In order to better understand how to use (and misuse) these programs, you may want to read through their man pages.

Program Misuse: Privilege Escalation

Video

Slides

Program Misuse: Mitigations

Video

Slides

Challenges

1

cat

2

more

3

less

4

tail

5

head

6

sort

7

vim

8

emacs

9

nano

10

rev

11

od

12

hd

13

xxd

14

base32

15

base64

16

split

17

gzip

18

bzip2

19

zip

20

tar

21

ar

22

cpio

23

genisoimage

24

env

25

find

26

make

27

nice

28

timeout

29

stdbuf

30

setarch

31

watch

32

socat

33

whiptail

34

awk

35

sed

36

ed

37

chown

38

chmod

39

cp

40

mv

41

perl

42

python

43

ruby

44

bash

45

date

46

dmesg

47

wc

48

gcc

49

as

50

wget

51

ssh-keygen