search

nyupcs / pcs-sp21-lab6-server

0 stars 0 forks source link

exploit-main #37

Open LianghaoShu opened 3 years ago

LianghaoShu commented 3 years ago

-----BEGIN PGP MESSAGE-----

hQIMA7KtScPIyW/lARAAxB65mQiqseT6T1tD1LBI6QG29J2FgkYr7JbOSCt8oH7x xSDtd2Mn4U0LXrHDwlcyFWNIV2MVqG3MiZtD4tM/iMkEY7PhAQ8Xri4fbMa7h1p6 h1PLGb5v1ZQgGEX+zVcdya2B7sVFF3evNbhLaI/NZ9mmJsM13OdCW5BB9IjsWBSK pPC7/fSqwDSNGZ1GJhOq4nvQRXS6JRpP419CwHlB3MNbCDbwywlnKSQQmK8TIk99 vo9FxyC4A+CdwCtNSxwi1VbcUUGMr2R1FJnpsfnnM1AtWhzuDqH3qhd4o9Zz5mIA LthXx7gBh7CsVc/kE9QyfFlQj6WZTI+uWv/eqEpnVcGYWMI+9gHJlBgw+I0nw6+s mGtjjL7xlTD9s8SlUsQk4l1HV8lhBN0zCBg3NA1nwSq1EnU0hntWcL4nZa5XGDHz wqKLbM/AIOwj2K+OUB0VY6Gu+XQO6i3EsdXxdguhmCBYZnFCOex4bdgso9kjvITj MFyEksaNYaa8iOiKJLahC5KNeHMtcHIwlDdI7+h/AkNpiQN04i04MO+zJkgdC/W/ bXUWdFBmSI90HwsTu7QT8jWg23Fba7thrwKehBcTtfyRcqC3j++55K/yTySRvFBM Jgg7uV6c7S5A3Mqs+WNj5J1zy0yKHDCfSM4Fb6xEzzoFBBXJhzyqaVi/tISimjPS 6gHQIf/LWj/zgyWwUSVu8zXo/YMxfQaYXxY53/Uk09ftxo44O/kL6mkX4xMZHZFC zmyrY5rA6h7TIlWSBHQajYA2VHCtMi7Yr7qhS8/Mg7/SkV7SaJRWgeOejs0OjrGW Z4tf909T7AaPtwNaEYOHVnycN27ARK7/3e5Bsw5Zfve1ZolYGPbVQPTwRsG+Xh/y XEqvwOXX52sUDPAOl8QYUI4mimx/YMO7w7nU46EVUgkp5LdUM+JYYIHSphMb95qw zb0cUF904Y2ln3YtjjXpvugypMtIdgpd88Fg4SChY/i4FCKkArtB/ePl9OTa9qDR VxocEoYCeG2GkbOd9VplmHk/aw9W0No+tL7YVisBFPCt7bi5uKtBv4Sj9JG9pU/i ZzA5+bS0e5e5TQmB22ziDLn5Afps9qvTxbBENwDK40kI2NnQuXbnNGCVmDMFLrAE +dtfnKeL+yyklXttdFREN/8MLoLKZ2Khz8yt04UdjyBQUdv+fvcD2RRSlTAq0XkJ x80NvoHWymE9J7aNV5FMeVPHPHhs4BWJtx4vPQBQrlYsMg45CZG0oxXd7VKK2r9j 97CEPgor6HkW3T2lsf3pxkzKIg5nLv24AdepMxppOJnvV+ZvAaIx8j0cwP5/T9Qe FPIWgnklckhDUt3pRcJ0EfiV4Krc3P3v8H+V3UmxUALpN7/obiVCLuuXa1yPnFoS N7VEV2OH5KZ4Toq6OqIUJb8SDSgnCqV+n8ELylMZpXP3JQ0uAnyMoXXVXPnrye4E Qenfg2QvkWjNHwTMDW3GayK6Vy8mvsnVU62N2225IpUEr8pvvtszXBeejvFeQ9+f 1KhWwx8qGJzqXr8uwFsrG1xLUnG3EUjGZsLqAMDq6exJSn0FcXDjMf5qWwhAKzYd A4Q5YKXM3iFONLpu73rrqR55s15REJnxcO39h/qzOXSEVVaP6cnjLDgJwPg6BdJm MKhPQLJRfu2qFmKHE8H3xceimRgiWR6RP8qO6SbiP2zistm0CjrFCxsVDZOSay4P BJ1S9yUVUfZXn5yK3rhXuLoeMWpgubLk+tcPl0sOlBI/sIsmVxf++3Sey6fHyKsw dE2azvZUxw4JTZUlteMNfTGk86FuXZtVpw74nHrUIGCFoVABzzVCQ48GUJwXwfpC yPWGOhuXJTU710QE/BzWXyBpU2Fv6/F1E1LGpsKdDaZejYios6CPSMbJ6wHwvrqg UijJjXiitTGQbeHfrikvhkSqXsCRrQJ3V23VphUIh+jJ30sjXCo18xRFT0S4gViz e/MCNUhQcZeFH47a8032MDPx0ozhOMbR4FDhVjt1htnNvHCpUdKp/DSKD3WONqDd gypdhMwmWOjZ4fgYKLQK2n/pfJc0qSEMH1m9Pn2JNWYhdjUOk05brxafBlIFhkVo p2QYhBeEd2Sj5YLz1PK+yzwCmIZ1gnljOKPhk2U1Q0jzDqacBuSHhb7W2hpRymRT 9OV5LbuBMI+hURO+Z5AnWCj5BColmNYAKsBN6ce7czHG91cxjf5NRki/q90lNUnI 7vbgAsxdV+rwC/ZoAHLJdaIaFJ44t46Hn3t2QyOlZHXzbhPR+wyK2/HQ5CK+TGxk lKSZy57fV9JBIjVJlWboJ+h2vwUiGYDHJYLq//aMihvWEatKSWzTufXkn+0tW+WU +p3KC5THB8+zueead676WE7A+GUPKhvmphH3F6u/Doqb+WL/rvlJhRvA+knUSWa/ P2FgKU1mL+mHdFOnPNFl1lJlur2ocDIKWHku4jseA2SXt9XiR6s9z6i6YGSrg+kP JxOwkgY0n7owz08BirxtMmw7GbiDht8OROEO+qqh4g2V4XaOOm2O8tHMGqkVkGkC bsj7/OyuZ6RiOs4loDvzj2O2HCJm51p8RI8w7qkiJ/4A92kqUm5AmB6layy7ftdR 2paSGKgSOXvfXG6F+c1wStNKC5iIef+VbCEW/nxFF3AaqTShd3GrXbY/GcGiq7sm B5ASwp9PVk+gvrXVWY2/VzcGoxrSP0Gq/2ao2L5Wj3D58CtDI5+OPjTBSydAV+TL ZEMNLRVRBtBc2olax7IrZA== =1xHG -----END PGP MESSAGE-----

LianghaoShu commented 3 years ago

My NetID is ls5501,Lianghao Shu, and my pub key id is 62A30209893D748A

LianghaoShu commented 3 years ago

-----BEGIN PGP PUBLIC KEY BLOCK-----

mQGNBGArfuYBDADMc4xLrd3Bd2dYotqVHIdIzhCOaZFFHASsfrfpiMDqD9jJCweL cVwV+K1ZF+GkNnAMX2rcuME/f+at0JhJrE++eQtx9M/3/39MKJ4mqMksbHKHv7MX UqesrATb4DotzcqIUzTqVYwNLbLRxiDARhDlAHhokqbwybl1yjxwJrN90lLOQPAO jvHPqdIH3PD9M4lCwPw+rZDUKl0efgwmVaLEI4+O/gPK0rGm3PmhMDv2Oftk+fD3 /yBT3kU5TgErrC2L1j3S156t8JvYVommDjkGwodC8GQOdfVWdQK4bymGD54+lS/C 8VQfoHPPi2MsB1wC0jlkb+3BM/KTNPuVsY9byPRtJeszHWE7CobkjsiZntuB10Jx kr6A2tv3XYIYBx2A+qK3l+YSzvIvhmd36x1kX0+w9Io0QsUCf76Nq49Snc9BTNvr RYCwCv+KK1dKfm4ABmWNGC1ekAt1RCxCZtvLdG5rizPInfpIv7L38krooP83fDq7 T76z/YQYsUQqDaEAEQEAAbQkTGlhbmdoYW9TaHUgKHBjcykgPHNodWxoOEBnbWFp bC5jb20+iQHOBBMBCgA4FiEEuSEazzK5ibPF0B3yYqMCCYk9dIoFAmArfuYCGwMF CwkIBwIGFQoJCAsCBBYCAwECHgECF4AACgkQYqMCCYk9dIqhDQv9Hnn0ns69SSLa wzZugp6HeODbOPNS0746miD/Aa+8ktallhDyWMdVSyAm/6IT/bQ9hHrQCwIm1ww9 gVwYG0reYwWWKUcR1zaAvhUkOM7R68G1wIrrc8PuQbWyjanAmww1oG5pGto2kIE3 tGlCZvZKMa+WJbzCjkZ1Yo3/lljMQTZf0uvK4lgb2XZ3YURdgb/H/gBAiimI7QfR KdZXM6Dxh/yY8b7JMvb/2dMBOfUL024nlzSQ4UJvxCwZxtM+aG45W7ojruEu1Z9L aaaJMDJ8q4RiQWvJ6nc7oxM9o6m06Dqzcnbqx5I8lcyAVXV7eLLYFIoKp34N/q1C t50FFOCDLMJg9J0j5fejLFBZAsNXPVI5Gc5OoCQW03OWHUReckCe68Wqh2+A1iio ywXHUi0YoHVmRqiy1f3kK9tRgFh3EOyoO6/P4R02IpQlK/E5SX9rkYlbvsfhnOQL o8MUmfD7g12/WmwLaSmRS/PFsDaB1oFMJBEDl/Uo4IbhoetA+69luQGNBGArfuYB DADZktdqP5WN743cKFhjfk9VtktGg6dsH1zymmH9DmgUTDtx+4kRMubREfrx6rh4 pjt+iRcCySmnMOQSsJR106iScjGaLv06yXrvNA1gIW3IJoS7v5elsQEfnhJ89Fee ZIrN1iWpBi6ioCcE9jiah+rRktN5dfzbaVlek+Ug8yOoBTZJ6kyxMY2KbdSmkL4+ A4zxlimnImuvqwyxkq3yIz+G1F5rfRVOSr042fZiIhNZjAGPGPmRMLqPQJKrJ2y+ FSZd9oD6joHHDHvoFAA7IZDmRm/HNXVwQWPN8qCdDSHTbQ3miNOm1IfTrhwAJzeM QTIQ2btEr9DsLYX+JHuZfsjO7ktqNeDVZXnIbobq4GsknD0lfyOwKDobFcXm2txA p5Jk7ag2Li/hzpg9zAAyybgquRrGxnKXZzB5/AlRUjC7c5rs3Trp2Fomom8UA0Sn XiH9X5WwAVkBKhwKvHehg47eRAsFSeDbAIOJ86pblYnrflXsJTsKCe2ibeJMMTVC bL8AEQEAAYkBtgQYAQoAIBYhBLkhGs8yuYmzxdAd8mKjAgmJPXSKBQJgK37mAhsM AAoJEGKjAgmJPXSKT8IL/RRfOMy31nhrXzfopObRvPNBhckSgzzrt5zChsst8n06 y2fxUC0X4IdWMyiOyjp785GEnv0lw80UvON4Kn230T9XqE2/CD7a1A6no/XscENi tORh8CZ2aLgMN6liFFQOSS2ZzkrvSybFGO5GXcOYtw/May28HwCuA7gisFAFJ1MK SNj5XxnZKvF1LBcjwuSxzz0g4f7vFBDCGbX25KU5eNI+a7cAbiE5tU0oh8LX/pHV +Hups52tFFunbPsRMPTlzEaYBQZNKi83oUCWEmUyUWwIjQq4KeesX2WhK3oh102r CeW3o2WlX48zJ/NJDnzjsUm5GK7yE/ZPY33EB4P2B8B2+1SL4/cf0mTDLrp2IerL ALP6mRIwf3uoLJvBISI2FhMwWxxC30J6g35w/8BQ52oS3hiK+wFcGxmY3NLNxDRD nFM0BucNauvb/Z5M0UD/pk9B8I1d0Kzmi8zsLqSf6fG8D7vsWf1EMcoGZpsYFPst RxS3PidANLpauf5u4a0Dfw== =CZ7V -----END PGP PUBLIC KEY BLOCK-----

ksmaybe commented 3 years ago 
About exploit-main (exploit-service branch)
[*] Starting service from pcs-sp21-lab6-server (branch '0ff895975bf20c1233991128be75afbddf7b0049')
[*] Failed to start service
#1 [internal] load build definition from Dockerfile
#1 sha256:9f85d65b6212bf17f3b958b62459156f9747fc6d0fcafda9545ec332c51a3af7
#1 transferring dockerfile: 303B done
#1 DONE 0.0s

#2 [internal] load .dockerignore
#2 sha256:52a70f53840f1e49cc2f40afce2145f7dd41a7f6fedf6111f68274348d0481bf
#2 transferring context: 2B done
#2 DONE 0.0s

#3 [internal] load metadata for docker.io/selenium/standalone-chrome:89.0
#3 sha256:beb2bf66ef313fd2e3aace2d303a1c73abc80369b025ce6bfeb4a2cc5920b54e
#3 DONE 0.2s

#4 [1/7] FROM docker.io/selenium/standalone-chrome:89.0@sha256:beb559d9a8fddb3cc154122598a527c6fb00f19751577974013924a209431f91
#4 sha256:cfa7f2d3a3cae72a7b4a2fd6d9e3fe6bf7d6c6a4462d83f9fadb5866bd1543d1
#4 DONE 0.0s

#6 [internal] load build context
#6 sha256:71dc9df0c9dbc8b83df474caa05479d38951574bef83984f61dae93df9569a36
#6 transferring context: 99.32kB 0.0s done
#6 DONE 0.0s

#5 [2/7] RUN apt-get update && apt-get install -y python3 python3-pip
#5 sha256:1f82db4cdd0345e13bbf91421a58803f0de60b2a8230a42c43c8a09334118de0
#5 CACHED

#7 [3/7] COPY . /app
#7 sha256:fa390d7d75c4f61f7dc81fb9193daca51c11db5c9f7e7b378dab7f537deb75c6
#7 DONE 0.0s

#8 [4/7] WORKDIR /app
#8 sha256:c8db7f3cd3a6a148b97b4764d97866afdd9868dace976e07a6e292319a9f27cd
#8 DONE 0.0s

#9 [5/7] RUN mkdir -p /var/ctf
#9 sha256:8951e0413f3baa0bb992acf21d7be474c9c830995018ca6cf4517df545e06f85
#9 DONE 0.3s

#10 [6/7] COPY flag /var/ctf/
#10 sha256:e2fa73a427f9d62358f5112e1c8c90de5808d090df983bc36242fe9a03e288ca
#10 DONE 0.0s

#11 [7/7] RUN pip3 install -r requirements.txt
#11 sha256:9311ad8e31d4b2b3f34fd63afab0f1fb78c95ecd99464a1d9235dd7e677c2a37
#11 1.010 WARNING: The directory '/home/seluser/.cache/pip' or its parent directory is not owned or is not writable by the current user. The cache has been disabled. Check the permissions and owner of that directory. If executing pip with sudo, you may want sudo's -H flag.
#11 1.144 Collecting click==7.1.2
#11 1.188   Downloading click-7.1.2-py2.py3-none-any.whl (82 kB)
#11 1.244 Collecting Flask==1.1.2
#11 1.256   Downloading Flask-1.1.2-py2.py3-none-any.whl (94 kB)
#11 1.313 Collecting itsdangerous==1.1.0
#11 1.318   Downloading itsdangerous-1.1.0-py2.py3-none-any.whl (16 kB)
#11 1.377 Collecting Jinja2==2.11.3
#11 1.382   Downloading Jinja2-2.11.3-py2.py3-none-any.whl (125 kB)
#11 1.469 Collecting MarkupSafe==1.1.1
#11 1.475   Downloading MarkupSafe-1.1.1-cp38-cp38-manylinux2010_x86_64.whl (32 kB)
#11 1.551 Collecting selenium==3.141.0
#11 1.560   Downloading selenium-3.141.0-py2.py3-none-any.whl (904 kB)
#11 1.666 Collecting urllib3==1.26.3
#11 1.676   Downloading urllib3-1.26.3-py2.py3-none-any.whl (137 kB)
#11 1.750 Collecting Werkzeug==1.0.1
#11 1.761   Downloading Werkzeug-1.0.1-py2.py3-none-any.whl (298 kB)
#11 1.825 Installing collected packages: click, Werkzeug, itsdangerous, MarkupSafe, Jinja2, Flask, urllib3, selenium
#11 2.302 Successfully installed Flask-1.1.2 Jinja2-2.11.3 MarkupSafe-1.1.1 Werkzeug-1.0.1 click-7.1.2 itsdangerous-1.1.0 selenium-3.141.0 urllib3-1.26.3
#11 DONE 2.4s

#12 exporting to image
#12 sha256:e8c613e07b0b7ff33893b694f7759a10d42e180f2b4dc349fb57dc6b71dcab00
#12 exporting layers
#12 exporting layers 0.1s done
#12 writing image sha256:7dba0942714c4a69f8ae619a165df02a95938f7ba98f01c4252ebc34ca9ea3e8 done
#12 naming to docker.io/library/pcs-sp21-lab6-server-0ff895975bf20c1233991128be75afbddf7b0049 done
#12 DONE 0.1s
docker: Error response from daemon: Conflict. The container name "/pcs-sp21-lab6-server-0ff895975bf20c1233991128be75afbddf7b0049" is already in use by container "8091eae6427042a587827ed4ffe9bb129700b81cd8917e1bf7ccecbbe79645d5". You have to remove (or rename) that container to be able to reuse that name.
See 'docker run --help'.

==========================

[*] The exploit did not work.

ksmaybe commented 3 years ago

This submission has been verified. Well done!