In episode 5 of my Attacking and Defending Linux series, we proceed through a three-stage attack, breaking into the Cuckoo’s Egg-themed Milnet Boot2Root CTF virtual machine, collecting flags as we go. Milnet is an intentionally-vulnerable CTF puzzle, created by Sebastian Brabetz and inspired by Cliff Stoll’s book, The Cuckoo’s Egg. On the webinar, we break exploitation of one of the vulnerabilities, but today, let’s talk about how we could break the very first exploit in the chain: the point where we got the Internet-accessible web application to give us a low privileged shell.

By admin