Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
[TBD Challenge] Log Analysis Challenge #1
19-06-2013, 09:57 PM,
Post: #1
[TBD Challenge] Log Analysis Challenge #1
view log tersebut di sini
http://paste.tbd.my/1194

Tahap: Beginner

Soalan

1 - Berikan kod CVE exploit yang cuba digunakan attacker

2 - IP mana attacker tersebut simpan shell

3 - Kenapa den golakkan jo attacker ni.
Hint1: Kalau tengok log dia ni, mesti facepalm.
Hint2: jawab berpandukan log je. takyah fikir jauh sangat.
Hint3: HTTP standard error code.

PM jawapan kepada den

Solver:
1- shahril
2- JejakaPemalu
3- Fakhru
4- Tron
5- p0pc0rn
6- Ferr
7- smael
8- fatah
9- amsama
10-
UPDATED:
Sedikit cerita mengenai challenge ni. Pertama sekali, log ni memang diambil dari satu live server. Memang aku dah filter ambil yang penting2 je kalau tak jenuh korang nak baca kan ? ;d Percubaan serangan ni berlaku pada masa aku baru 2 minggu je kerja. Serangan bot ni cukup ganas sampai firewall boleh hang ;d
First time aku dengar firewall jam.

Boleh kata pengalaman pertama aku buat analisis log sebagai kerja dan bukan hobi. So, challenge ni ada serba sedikit sentimental value pada aku. Me Gusta

Jawapan:

Spoiler:

1. CVE-2010-1598
2. 67.19.79.203
3. 404 Not Found


  ▲
▲ ▲
Spoiler:

surah Ali Imran Ayat 31

Reply
19-06-2013, 10:12 PM,
Post: #2
RE: [TBD Challenge] Log Analysis Challenge #1
apa maksud -> 3 - Kenapa den golakkan jo attacker ni. ?
Reply
19-06-2013, 10:16 PM,
Post: #3
RE: [TBD Challenge] Log Analysis Challenge #1
Hint1: Kalau tengok log dia ni, mesti facepalm.

  ▲
▲ ▲
Spoiler:

surah Ali Imran Ayat 31

Reply
19-06-2013, 10:18 PM,
Post: #4
RE: [TBD Challenge] Log Analysis Challenge #1
(19-06-2013, 10:16 PM)ak47suk1 Wrote: Hint1: Kalau tengok log dia ni, mesti facepalm.

haha, tadi x faham maksud ayat, fakhru dh translatekan bahasa ganu ke BM yng betul Fuck That Shit
Reply
19-06-2013, 10:46 PM,
Post: #5
RE: [TBD Challenge] Log Analysis Challenge #1
klau diikut kan , banyak IP yng attack GayFace tktau betul or tak
Can u See Me
Troll 2
Reply
19-06-2013, 10:51 PM,
Post: #6
RE: [TBD Challenge] Log Analysis Challenge #1
(19-06-2013, 10:46 PM)Xantium Wrote: klau diikut kan , banyak IP yng attack GayFace tktau betul or tak

dia xnak attacker, dia nk ip location shell tuh ;d
Reply
19-06-2013, 10:58 PM,
Post: #7
Re: [TBD Challenge] Log Analysis Challenge #1
Cukup 10 orang jawab atau sehingga 1 julai. Mana sampai dulu. Aku bagi jawapan dan cerita serba sedikit mengenai challenge ni.

Sent from my HTC One using Xparent Green Tapatalk 2

  ▲
▲ ▲
Spoiler:

surah Ali Imran Ayat 31

Reply
19-06-2013, 11:11 PM,
Post: #8
RE: [TBD Challenge] Log Analysis Challenge #1
da pm da GayFace tktau betul or tak
Can u See Me
Troll 2
Reply
27-06-2013, 01:49 PM,
Post: #9
RE: [TBD Challenge] Log Analysis Challenge #1
bump

  ▲
▲ ▲
Spoiler:

surah Ali Imran Ayat 31

Reply
27-06-2013, 02:23 PM,
Post: #10
RE: [TBD Challenge] Log Analysis Challenge #1
ok, tambah ana dalam list. naikkan mood. GayFace

#tahun 2010 punya bugs.
̿ ̿ ̿̿'̿̿\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿ - انا کڤيتݢولوڠ
http://fatah.afraid.org/
[Image: 763440762.png]
Reply
27-06-2013, 02:48 PM,
Post: #11
RE: [TBD Challenge] Log Analysis Challenge #1
ramai solver ;d

Sent from my GT-S7500 using Tapatalk 4 Beta
Reply
01-07-2013, 08:20 AM,
Post: #12
RE: [TBD Challenge] Log Analysis Challenge #1
Malam ni den release jawapan.

  ▲
▲ ▲
Spoiler:

surah Ali Imran Ayat 31

Reply
01-07-2013, 08:25 PM,
Post: #13
RE: [TBD Challenge] Log Analysis Challenge #1
updated first post.

  ▲
▲ ▲
Spoiler:

surah Ali Imran Ayat 31

Reply
01-07-2013, 08:33 PM, (This post was last modified: 01-07-2013, 08:35 PM by matz.)
Post: #14
RE: [TBD Challenge] Log Analysis Challenge #1
Code:
1. CVE-2010-1598

Mana dapat ni?OK

kenapa attacker tu kena gelak? sebab - 404 not found <---maksudnya, ni la kan?

IP, dapat, tpi teka2 je..sebab tak faham, malas nak pm.. GayFace
Rajin Belajar Pasti Berjaya
Tiada Kegagalan Setelah Berusaha
Itulah Cara Membalas Jasa
Pengorbanan Guru Dan Keluarga Tercinta
Big Grin

Spoiler:
[Image: 522167_476797252342999_168490270_n.jpg]
Reply
01-07-2013, 08:55 PM,
Post: #15
RE: [TBD Challenge] Log Analysis Challenge #1
boleh rujuk

https://cve.mitre.org/cgi-bin/cvename.cg...-2010-1598

  ▲
▲ ▲
Spoiler:

surah Ali Imran Ayat 31

Reply


Possibly Related Threads...
Thread Author Replies Views Last Post
  Challenge - Paan 0b0x3d 7 836 11-12-2013, 02:42 AM
Last Post: JohnWhite
  TBD Challenge #1, Menang RM100 suhz 99 15,014 14-11-2013, 01:43 AM
Last Post: RFC792
  Programming Challenge 1 - Membina Segi Tiga s3m00t 49 8,161 29-10-2013, 09:22 PM
Last Post: Cybercrookz
  php reverse challenge lvl easy firdaushatta 10 1,009 25-07-2013, 02:18 AM
Last Post: firdaushatta
  [TBD Challenge] Data Forensic v0.0.0.0.0xXXXX1029939392 RFC792 24 2,630 06-07-2013, 07:12 PM
Last Post: RFC792
  Steganography Challenge suhz 35 2,763 04-07-2013, 01:18 PM
Last Post: Codeshift3r
  [PHP] Challenge Reverse This Function ! shahril 12 1,271 26-06-2013, 12:58 PM
Last Post: akif
  Firefly Challenge UnKn0wN 24 2,919 28-10-2012, 09:33 PM
Last Post: shadowmacx
  Wargames2012 Challenge Ahlspiess 26 4,753 21-07-2012, 06:19 PM
Last Post: kryp70
  Pijat challenge #1 pijat 5 1,252 20-06-2012, 11:05 PM
Last Post: kryp70

Forum Jump: