We’ll get started at 18:05

Week10

COMP6443 H18A

Final exam

Overview

  • wednesday, 3rd May
  • 3 hours (1pm - 4pm)
  • worth 50%

whats in it

  • everything is assessableā„¢
  • not just stuff from wargames
  • submit a short writeup explaination
  • there’s also a shortish devsecops question

how2hack

  • my biggest tip is try not to stress out
  • + practice, practice, practice
  • start with recon before you write payloads

CI/CD

keeping it secure

what to keep secure

  • tokens
  • keys
  • .env
  • .git

basically just ~secrets~

dumb projects idk

VPNs

Browsing vs SDN (site-to-site)

Privacy

“providers who claim not to keep any logs of their users’ online activities recently left 1.2 terabytes of private user data exposed” 🤔

What to do once you have RCE

We can execute arbitrary commands, but we’re executing them as a lower-level user (e.g. www-data or Nobody)

Privilege escalation

We want our commands to execute as root/admin/superuser

How to privesc

  • world-writable /etc/passwd (wait it is useful?)
  • cronjob running as sudo
  • setuid binaries
  • commands run as root without password
  • vulnerabilities in the kernel itself (dirtycow?)

Docker escape

Useful resources

My Experience

How’d you find the course

  • What’d you like
  • What’d you dislike
  • What can be improved

https://myexperience.unsw.edu.au

Presentations

  • Anybody
  • xd

Challenges

  • wordoftheday
  • legitauthpage
  • jobs
  • layoffs
  • nfts