Linux Hacking Exercises
For those who are interested in Linux security issues and vulnerabilities, the exploit-exercises.com training project has been created with a selection of Linux virtual machines, vulnerability descriptions, documentation and practical tasks.
1. Nebula virtual machine
torrent file
direct link
The most common vulnerabilities associated with privilege escalation in Linux are SUID files, permissions, race conditions, metavariables, $ PATH vulnerabilities, scripting languages vulnerabilities, binary file compilation errors.
Nebula includes 19 levels, to download a level, you must log in as levelXX, where XX is the level number from 00 to 19. Some levels can be completed only in remote mode. If you need root access to change some settings, you can login with the name nebula, password nebula, then execute the command
')
2. Protostar virtual machine
torrent file
direct link
Introduction to Linux / x86 memory errors: stack overflow (8 exercises), network programming: working with sockets and byte order (4 exercises), format output (5 exercises), heap overflow (4 exercises), final exercises (3).
Login to the system is possible under user login, with user password. The level description is located in the / opt / protostar / bin directory.
3. Fusion virtual machine (based on Protostar)
torrent file
Advanced exploits, cryptographic tasks, time attack, various network protocols (Protocol Buffers, Sun RPC and others), as well as demonstration of some protection mechanisms, such as randomization of address space, position-dependent code execution (Position Independent Executables), non-executable memory , source code fortification (_DFORTIFY_SOURCE =), buffer overflow protection (ProPolice / SSP), 28 exercises in total.
Virtual machines are in the archives of ova: a brief reference to the Open Virtualization Format . The archive contains the virtual machine itself and the settings file. In the VMware Workstation program, the file is imported with the File → Open command, and into VirtualBox with the File → Import Appliance command. Alternatively, for VirtualBox, you can pre-convert the file to vmx format using the ovftool utility. And for VMware ESIx software, you may need to convert to vmx using VMware vCenter Converter Standalone.
1. Nebula virtual machine
torrent file
direct link
The most common vulnerabilities associated with privilege escalation in Linux are SUID files, permissions, race conditions, metavariables, $ PATH vulnerabilities, scripting languages vulnerabilities, binary file compilation errors.
Nebula includes 19 levels, to download a level, you must log in as levelXX, where XX is the level number from 00 to 19. Some levels can be completed only in remote mode. If you need root access to change some settings, you can login with the name nebula, password nebula, then execute the command
sudo -s with the password nebula.')
2. Protostar virtual machine
torrent file
direct link
Introduction to Linux / x86 memory errors: stack overflow (8 exercises), network programming: working with sockets and byte order (4 exercises), format output (5 exercises), heap overflow (4 exercises), final exercises (3).
Login to the system is possible under user login, with user password. The level description is located in the / opt / protostar / bin directory.
3. Fusion virtual machine (based on Protostar)
torrent file
Advanced exploits, cryptographic tasks, time attack, various network protocols (Protocol Buffers, Sun RPC and others), as well as demonstration of some protection mechanisms, such as randomization of address space, position-dependent code execution (Position Independent Executables), non-executable memory , source code fortification (_DFORTIFY_SOURCE =), buffer overflow protection (ProPolice / SSP), 28 exercises in total.
Virtual machines are in the archives of ova: a brief reference to the Open Virtualization Format . The archive contains the virtual machine itself and the settings file. In the VMware Workstation program, the file is imported with the File → Open command, and into VirtualBox with the File → Import Appliance command. Alternatively, for VirtualBox, you can pre-convert the file to vmx format using the ovftool utility. And for VMware ESIx software, you may need to convert to vmx using VMware vCenter Converter Standalone.
Source: https://habr.com/ru/post/141839/
All Articles