This is a List of CTF Challenges in which privilege Escalation would be done by Abusing Sudo Rights. Clicking on the Lab Name, will redirect you to the writeup of that particular lab on hackingarticles. We have performed and compiled this list on our experience. Please share this with your connections and direct queries and feedback to Pavandeep Singh.
This is a List of CTF Challenges in which privilege Escalation would be done by Abusing Sudo Rights sorted based on the File or Binary that will be used to Escalate Privileges.
| No. | Machine Name | Files/Binaries |
|---|---|---|
| 1. | Ted:1 | apt-get |
| 2. | KFIOFan : 1 | awk |
| 3. | 21 LTR: Scene1 | cat |
| 4. | Skytower | cat |
| 5. | Matrix : 1 | cp |
| 6. | Sputnik 1 | ed |
| 7. | Sunset | ed |
| 8. | DC-2 | git |
| 9. | Kioptrix : Level 1.2 | ht |
| 10. | Matrix-3 | manual |
| 11. | symfonos : 2 | MySQL |
| 12. | Development | nano |
| 13. | SP ike | nmap |
| 14. | DC6 | nmap |
| 15. | Dina | perl |
| 16. | Wakanda : 1 | pip |
| 17. | Violator | proftpd |
| 18. | Broken: Gallery | reboot/timedatectl |
| 19. | DE-ICE:S1.120 | script |
| 20. | Fristileaks | script |
| 21. | DerpNStink | script |
| 22. | Digitalworld.local : JOY | script |
| 23. | PumpkinFestival | script |
| 24. | The Ether: Evil Science | script |
| 25. | HA:Rudra | script |
| 26. | djinn:1 | script |
| 27. | UA: Literally Vulnerable | script |
| 28. | PumpkinRaising | strace |
| 29. | Unknowndevice64 : 1 | strace |
| 30. | Holynix: v1 | tar |
| 31. | Breach 2.1 | tcpdump |
| 32. | Temple of Doom | tcpdump |
| 33. | Web Developer : 1 | tcpdump |
| 34. | DC-4 | teehee |
| 35. | Serial: 1 | vim |
| 36. | Zico 2 | zip |
| 37. | HA: Dhanush | zip |
| 38. | Sunset: Nightfall | cat |
| 39. | HA: Infinity Stones | ftp |
| 40. | Sunset-Sunrise | wine |
| 41. | Me and My Girlfreind:1 | php |