Restrict session to IP 

Direction  Go to the Warchall: Nurxxed challenge

Global Rank: 176
Totalscore: 113474
Posts: 11
Thanks: 5
UpVotes: 8
Registered: 8y 341d

The User is Offline
Google/translate1Thank You!1Good Post!0Bad Post! link
I have employed many methods to try and solve the challenge, however I seem to be at a dead end.

I don't want to spoil too much so I'll try to be discrete:
I've :
-used various CVEs from 2013 and 2014
-Read many 'famous' papers dealing with reverse shell'S:' with heap exploitation
-Read large portions of the PHP manual and GWF code in an attempt to find objects that meet the requirements (none of them are accessible :( )
-(somewhat) Identified the version of PHP I'm running under
-Tried to find 0-days in the PHP interpreter ;P
-Looked at commit history on Github for the challenge.

Please understand that I'm not too familiar with PHP dev as I like JS more :)
Global Rank: 1
Totalscore: 758618
Posts: 437
Thanks: 497
UpVotes: 471
Registered: 15y 240d

The User is Offline
RE: Direction
Google/translate1Thank You!1Good Post!0Bad Post! link
Stay with the code you are given. I think nurfed knows better than to use GWF. Drool

You might have missed something in your research.
Global Rank: 176
Totalscore: 113474
Posts: 11
Thanks: 5
UpVotes: 8
Registered: 8y 341d

The User is Offline
RE: Direction
Google/translate1Thank You!1Good Post!0Bad Post! link
Thanks dloser!

Update before I rest:

I've attempted to perform more reconnaissance on the challenge by logging into the Warchall box.
There's an interesting 'difference' that I've noted, and I think it has something to do with a certain comment I found as well...
Since then I've found a couple of modules to look deeper into. Should I figure out how to wakeup tomorrow morning, or am I on the wrong track?

Global Rank: 1
Totalscore: 758618
Posts: 437
Thanks: 497
UpVotes: 471
Registered: 15y 240d

The User is Offline
RE: Direction
Google/translate1Thank You!3Good Post!0Bad Post! link
As long as you are researching new things, even if they do not lead to a solution, you are on a right track... ;)
WindAI, Redknee, ckclark, tunelko, silenttrack, n0tHappy, nonfungiblesecurity, quangntenemy, TheHiveMind, Z, balicocat, Ge0, samuraiblanco, arraez, jcquinterov, hophuocthinh, alfamen2, burhanudinn123, Ben_Dover, stephanduran89, braddie0, SwolloW, dangarbri, csuquvq have subscribed to this thread and receive emails on new posts.
1 people are watching the thread at the moment.
This thread has been viewed 4137 times.