Posts

Step by step guide on hosting a CTF for FREE

Image
CTFd is an easy to setup CTF platform which is open-source. This writeup focuses on setting up a CTF hosting platform as quickly as possible using CTFd.  First we need a machine that can house the CTFd framework.  1. Machine for CTFd framework  We will use digitalocean to create our free machine. - Register a new account on digitalocean using this link . This will give you a free $200 credit for a 60-day period. - Create a droplet  * Ubuntu x64, 8GB-4Intel vCPU, 160GB SSD, 5TB Transfer 2.  Install CTFd framework on Droplet - Power on the droplet (if not already on) and access console to login as root. - Once logged in, issue the following commands : At this point, navigate to localhost:8000 or dropletIP:8000 and the CTFd platform will be running. But the CTFd will be hosted on http and not https. 3. HTTP to HTTPS 3.1. Link droplet to a domain name  In order to setup an SSL certificate a domain name is required. We will use free Cloudns hosting to point IP...
Post a Comment
Keep reading

Digisol DG-HR3400 Backdoor

Image
Opening the Digisol DG-HR3400 Backdoor Welcome folks !!!. All those who came in, expecting a working backdoor, you have a reason to cheer. It was when I spotted a new access point in the neighborhood, that had its WPS on by default, which is common with almost all modern home routers nowadays. After managing to authenticate with the default WPS pin, I fired up Nmap to have a better idea about the host. Nmap scan report PORT STATE SERVICE 23/tcp open telnet 80/tcp open http MAC Address: 00:17:__:__:__:__ (Smartlink Network Systems Limited) Nmap gave it all, what was needed, about the host. The vendor information pointed to Smartlink Network Systems Limited a leading networking company. The router belonged to the family of networking devices popularly known by Digisol , a subsidiary of Smartlink Network Systems Limited. A Sneak-Peak At The DG-HR3400 Web Interface  The web interface on port 80, provided a login screen with the default username ...
2 comments
Keep reading