Itsy Mipsy Router

Description

You need to audit a router at the interface between the Internet and a company’s internal network. The client asks you whether it is possible to read the files stored on the filer machine that acts as a HTTP file server. A minimal Dockerfile is provided to help you in the analysis.

Files

docker-compose.yml
itsy-mipsy-router.public.tar.xz
82.96 KiB – bc0db86d3042cccada3b17b09d0eb3b1e452c8a3eb36cdd6e432fd17ce45474b

Author

Cryptanalyse

Challenge Instructions

First, download docker-compose.yml:
curl https://hackropole.fr/challenges/fcsc2021-pwn-itsy-mipsy-router/docker-compose.public.yml -o docker-compose.yml
Launch the challenge by executing in the same folder:
docker compose up
Then, in another console, access the challenge with Netcat:
nc localhost 4000

⚠️ Important: You must solve the challenge by interacting with the Docker container through the exposed network port. Any other way is not considered valid.

In case you encounter problems, please consult the FAQ.

Flag

You don't have JavaScript actived. No problem! You can check your flag like this: echo -n 'PUT_THE_FLAG_HERE' | sha256sum # possible output: 4237e6281d1cd476dd02a7106b6a248747f095873743651be15f8bd15d1e7c3b

Writeups

I've been looking for a long time and I still can't find the flag!

You can vote for the solutions you prefer by using the on their respective pages.

Date	Author	Language	Tags	Vote
2023-12-01	n4sm	🇬🇧