Looking for an InfoSec Flex CEH Tutor/Mentor
davetuckman Member Posts: 4 ■■□□□□□□□□
edited May 2020 in CEH
I am working through the InfoSec Flex CEH course. I am stuck and seeking someone wiser than myself on some of the Capture The Flag Cyber Range tasks that wrap up the course.
There's a total of 4 CTF Cyber Ranges. My current status
- CTF1 is completed
- CTF2 I've answered 2 of the 4 questions. need help with remaining 2
- CFT3 I've answered 3 of the 4 questions. need help with remaining 1
- CFT4 I've answered 0 of the 2 questions. need help with remaining 2
I think it's simple things that I'm just not connecting the dots on, and looking to learn. If anyone has experience with these and can help, that would be awesome. Happy to pay for someone's time/expertise. Thanks in advance.
It runs, but asks please specify the password, then completes with no session created. I'm at a loss in what step(s) I'm missing
I understand the goal of the exercise, but not putting it all together.
II can learn it, but I need help on this one.
In step 3 of CTF3 you must do actual injection. or 1=1 dash dash might look like or%201=1dashdash. I didn't include actual dashes as to not get blocked on the forum. Basically you have to account for url encoding for the space. Most people forget that part and not encoding it properly will make your injection fail.
Work through these and then worry about step 4 and CTF4. You shouldn't overwhelm yourself trying to mentally digest too much at once.
Good luck and hope these help.
Now I'm on CTF4 and I'm not sure what's required for the flag. The flag simply asks, "What is FLAG 1?"
I'm not sure if I'm supposed to but the name of a script in here or something else. The hint that the CTF gives is "look at options that can be given to the sudo command."
A hint other than those given in the CTF would be greatly appreciated.
This is a public forum so others are reading as well. I'm not going to be too specific with hints as others may want to try a little harder on their own, and I'd hate to be the bearer of spoilers. If you want anything more specific, go ahead and send me a private message.