.png)
9 months ago
84 BOOK THIS SPACE FOR AD
ARTICLE AD
PWN COLLEGE — Introduction
Pwn.college is an education platform for students (and other interested parties) to learn about, and practice, core cybersecurity concepts in a hands-on fashion. In martial arts terms, it is designed to take a “white belt” in cybersecurity to becoming a “blue belt”, able to approach (simple) CTFs and wargames. Our philosophy is “practice makes perfect”.
The platform is maintained by an awesome team of hackers at Arizona State University. It powers much of ASU’s cybersecurity curriculum, and is open, for free, to participation for interested people around the world!
Program Misuse: Privilege Escalation
LEVEL 1 : If SUID bit on /usr/bin/catThe ‘cat’ command is commonly used to display the contents of a file. In this scenario, the SUID bit is set for ‘cat,’ enabling us to read the /flag file, which the root user owns.
cat /flagLEVEL 2 : If SUID bit on /usr/bin/moreThe ‘more’ command is used to view the contents of a file page by page. In this case, we attempt to read the /flag file, leveraging the SUID bit set on ‘more’ and accessing a file owned by root.
more /flagLEVEL 3 : If SUID bit on /usr/bin/lessSimilar to ‘more,’ ‘less’ is a command-line pager for viewing files interactively. Here, we aim to read the /flag file using ‘less’ with the SUID bit set, dealing with a file owned by root.
less /flagLEVEL 4 : If SUID bit on /usr/bin/headThe ‘head’ command is employed to display the initial lines of a file. In this context, we try to read the /flag file with the SUID bit set on ‘head,’ accessing a file owned by root.
head /flagLEVEL 5 : If SUID bit on /usr/bin/tailUsed to display the last few lines of a file, the ‘tail’ command is applied here to read the contents of the /flag file. The SUID bit is set for ‘tail,’ facilitating access to a file owned by root.
tail /flagLEVEL 6 : If SUID bit on /usr/bin/sort
Bengali (Bangladesh) · 
English (United States) ·