8000 GitHub - joeammond/HHC-2021-docker-config: Configuration files and binaries needed to build a container matching 'Objective 10' on the 2021 SANS HHC.
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content
/ HHC-2021-docker-config Public

Configuration files and binaries needed to build a container matching 'Objective 10' on the 2021 SANS HHC.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

joeammond/HHC-2021- 8000 docker-config

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
html
html
 
 
opt
opt
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
apply-ssrf.py
apply-ssrf.py
 
 
nginx.conf
nginx.conf
 
 
php-fpm.conf
php-fpm.conf
 
 
php.ini
php.ini
 
 
run.sh
run.sh
 
 
supervisord.conf
supervisord.conf
 
 
www.conf
www.conf
 
 

Repository files navigation

Reverse-engeering https://apply.jackfrosttower.com

Objective 10 of the 2021 SANS Holiday Hack Challenge involved exploiting an SSRF vulnerability on a website to fetch AWS credentials from an internal AWS meta-data service. By abusing this SSRF, it's possible to reverse engineer the container the website runs in and spin up a local version.

The python code used to leverage the SSRF is also included here.

pugpug

About

Configuration files and binaries needed to build a container matching 'Objective 10' on the 2021 SANS HHC.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages
0