SANS HOLIDAY HACK 2018 Writeup , KRINGLECON The objectives Orientation Challenge Directory Browsing de Bruijn Sequences Data Repo Analysis AD Privilege Discovery Badge Manipulation HR Incident Response Network Traffic Forensics Ransomware Recovery Who Is Behind It All? First I go to Bushy Evergreen and try to solve the terminal challenge . Solving it is fairly easy , Escape_Key followed by ":q" without quotes After this we move to the kiosk and solve the questions The question were based on the themes of previous Holiday Hack Challenges. Once we answer it correctly we get the flag. For this I visited Minty Candycane and I tried to solve the terminal challenge. The application has command injection vulnerability , so injecting a system command with the server ip allows execution of the command. So first I perform an `ls` operation to list of the directory contents , followed by a cat of t
Web - Network - System - Mobile - Cloud - Automotive - Embedded - Internet Of Things (IOT)