Holiday Hack 2017 Write Up
Tags
Common Information
| Type | Value |
|---|---|
| UUID | a6e10dc0-4329-4cc2-930b-8601685dd8b5 |
| Fingerprint | 6739915a4d0333d4 |
| Analysis status | DONE |
| Considered CTI value | 1 |
| Text language | |
| Published | Jan. 11, 2018, 2:41 p.m. |
| Added to db | Jan. 18, 2023, 8:04 p.m. |
| Last updated | Nov. 17, 2024, 6:50 p.m. |
| Headline | Adventures In Cyber Challenges |
| Title | Holiday Hack 2017 Write Up |
| Detected Hints/Tags/Attributes | 101/2/71 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 28 | cve-2017-9805 |
|
| Details | Domain | 3 | unix.stackexchange.com |
|
| Details | Domain | 24 | man7.org |
|
| Details | Domain | 117 | ld.so |
|
| Details | Domain | 46 | ld-linux-x86-64.so |
|
| Details | Domain | 4 | pen-testing.sans.org |
|
| Details | Domain | 1 | songs.id |
|
| Details | Domain | 1 | likes.like |
|
| Details | Domain | 6 | serverfault.com |
|
| Details | Domain | 1 | l2s.northpolechristmastown.com |
|
| Details | Domain | 1 | mail.northpolechristmastown.com |
|
| Details | Domain | 1 | eaas.northpolechristmastown.com |
|
| Details | Domain | 1 | edb.northpolechristmastown.com |
|
| Details | Domain | 1 | dev.northpolechristmastown.com |
|
| Details | Domain | 1 | cve-2017-9805.py |
|
| Details | Domain | 1 | northpolechristmastown.com |
|
| Details | Domain | 52 | window.open |
|
| Details | Domain | 339 | system.net |
|
| Details | Domain | 57 | www.owasp.org |
|
| Details | Domain | 1 | breakthesecurity.cysecurity.org |
|
| Details | File | 7 | 8.html |
|
| Details | File | 1 | christmassongs.db |
|
| Details | File | 91 | access.log |
|
| Details | File | 3 | shadow.bak |
|
| Details | File | 1 | c:\greatbook.txt |
|
| Details | File | 1 | c:\greatbookpage7.pdf |
|
| Details | File | 1 | catcher.php |
|
| Details | File | 1 | cve-2017-9805.py |
|
| Details | File | 1 | struts_exploit.py |
|
| Details | File | 1 | quackquackhere.php |
|
| Details | File | 1 | cookiecatcher.php |
|
| Details | File | 7 | report.docx |
|
| Details | File | 1 | greatbookpage3.pdf |
|
| Details | File | 1 | reminder.docx |
|
| Details | File | 4 | list.csv |
|
| Details | File | 5 | list.docx |
|
| Details | File | 257 | robots.txt |
|
| Details | File | 4 | cookie.txt |
|
| Details | File | 674 | node.js |
|
| Details | File | 364 | console.log |
|
| Details | File | 5 | account.html |
|
| Details | File | 1 | dde_exmaple_minty_candycane.png |
|
| Details | File | 1 | greatbook.txt |
|
| Details | File | 1 | greatbookpage7.pdf |
|
| Details | File | 1204 | index.php |
|
| Details | File | 1 | php-get-via-email.html |
|
| Details | IPv4 | 1 | 10.142.0.5 |
|
| Details | IPv4 | 1 | 10.142.0.13 |
|
| Details | IPv4 | 1441 | 127.0.0.1 |
|
| Details | IPv4 | 1 | 10.142.0.7 |
|
| Details | IPv4 | 1 | 10.142.0.11 |
|
| Details | IPv4 | 1 | 10.142.0.6 |
|
| Details | IPv4 | 619 | 0.0.0.0 |
|
| Details | Url | 1 | https://unix.stackexchange.com/questions/157997/run-a-binary-owned-by-root-without- |
|
| Details | Url | 1 | http://man7.org/linux/man-pages/man8/ld.so.8.html |
|
| Details | Url | 1 | https://pen-testing.sans.org/blog/2017/12/06/go-to-the-head-of-the-class-ld-preload-for- |
|
| Details | Url | 1 | https://serverfault.com/questions/133229/what-is-the-shadow-group-used-for |
|
| Details | Url | 1 | http://mail.northpolechristmastown.com |
|
| Details | Url | 1 | http://eaas.northpolechristmastown.com |
|
| Details | Url | 1 | https://pen-testing.sans.org/blog/2017/12/05/why-you-need-the-skills-to-tinker-with- |
|
| Details | Url | 1 | https://l2s.northpolechristmastown.com/quackquackhere.php?ls |
|
| Details | Url | 1 | http://x.x.x.x/cookiecatcher.php?cookie="+document.cookie |
|
| Details | Url | 1 | https://pen-testing.sans.org/blog/2017/12/06/a-spot- |
|
| Details | Url | 1 | https://superuser.com/questions/176783/what-is-the-difference-between-executing-a-bash-script-vs-sourcing-it |
|
| Details | Url | 1 | http://mail.northpolechristmastown.com/attachments |
|
| Details | Url | 1 | https://pen-testing.sans.org/blog |
|
| Details | Url | 1 | http://x.x.x.x:6666/sweets.dtd |
|
| Details | Url | 1 | https://www.owasp.org/index.php/xss_filter_evasion_cheat_sheet |
|
| Details | Url | 1 | http://x.x.x.x/cookiecatcher.php? |
|
| Details | Url | 1 | https://breakthesecurity.cysecurity.org/2011/09/how-to-create-cookie-stealer-coding-in- |
|
| Details | Url | 1 | https://pen-testing.sans.org/blog/2017/11/27/understanding-and-exploiting-web-based-ldap |