Should this be public?

[jonasheschl]

I solved the Got Root challenge for the Austrian Cyber Security Challenge by finding a link to this Github repository in the /.git directory. Was this the intended solution? I will not say how exactly I managed to solve Got Root in case this is indeed the intended solution.

[felixhromadko]

Good question, just found this too. It also makes it a lot easier to find repos like this one. https://github.com/Hacking-Lab/alpine-siab2 You can really see the inner workings of the docker containers which is maybe not ideal... But it could be an intended solution. Docker containers are widely used and if you forget to add .git into your .dockerignore file bad things could happen

[jonasheschl]

Did you look for another way to get root on the box?

[felixhromadko]

I asked a friend of mine and he solved it using an other method. So there definitely exists one. I don't know which one is the intended one tho.