Another year of finishing SANS Holiday Hack! This year had some cool challenges involving ransomware reverse engineering, hardware hacking, MQTT, KQL, Elastic, mobile app exploitation, and even drone path analysis. One of the last challenges was cryptography-heavy and got me stuck for a while, but working with other players helped me get through. Thanks to SANS for another good challenge!

Azure 101

• Get help with az help | less
• List all resource groups: az group list
• List all function apps within a resource group: az functionapp list -g northpole-rg1
• List the only VM in the resource group you have access to: az vm list -g northpole-rg2
  • You don’t have access to any VMs in the other resource group, northpole-rg1
• Invoke a run-command against said VM so you can run RunShellScript and get a directory listing to reveal a file on the Azure VM
  • az vm run-command invoke -g northpole-rg2 -n NP-VM1 --command-id RunShellScript --scripts "ls"

Background

This project involves deploying a simple Golang REST API into AWS, using managed services like ECS (with the Fargate launch type) and RDS.

Background

The Cloud Resume Challenge is a 16-step challenge designed to develop your cloud skills, while making your resume more publicly/easily accessible.

Recover the Elfen Ring

Clone with a Difference

The objective of this challenge is to resolve an issue with cloning a public git repository.

Links

Source code - Packer

Issue

Teams shifting to DevSecOps implementations often put a heavy focus on technical improvements, and do not strive to align their team culture with that of proper DevSecOps principles.

Issue

One shift from traditional software development practices to DevSecOps practices is the life cycle management of back-end infrastructure, such as servers.

Issue

Software engineering within today’s technological climate is fraught with challenges.

Links

Task tracking

Objective 6

Answers:

7) HR Incident Response

According to the document C:\candidate_evaluation.docx, the organization “Fancy Beaver” is secretly supported by the job applicant named “Krampus”.

Docker containers are simple to manage when you have one container or even multiple containers on one host.

Docker is software designed to package an application into a lightweight, portable, and fast self-contained environment. This environment is known as a container.

As explained in another post, a Dockerfile contains instructions on how to build your unique Docker container. It is a simple text file that is easily interpreted by both humans and the Docker engine.

As explained in another post, Docker is software designed to ‘containerize’ applications. While it can be complex to implement on a larger scale, it is quite easy to quickly launch and test on a single machine.

Implementation

This program’s purpose is to accept an integer and then print a new integer by incrementing each of the digits by 1.

Docker is software designed to containerize applications. To wrap an application in a container is to package your application into a small, lightweight environment that can be run on any machine.

Implementation

This program’s purpose is to convert a textual 24-hour time format into a verbal statement of time, by both text and voice.

Implementation

This program’s purpose is to determine if a user-supplied string was balanced or not. Essentially, it should determine if the user-supplied string contained the same amount of x characters as it does y characters. For example:

"xxxyyy" -> True
"xxxxyyy" -> False

Additive Persistence

SQL injection (SQLi) is an attack which involves taking advantage of improper/non-existent SQL user input validation.

The Kioptrix series of vulnerable VMs closely resemble the material presented in the PWK course, and the OCSP exam. Kioptrix Level 1 starts out relatively easy, so let’s get started: