Positive Hack Days VII HackBattle. PHDays , , , HackBattle, . , , , .
, , , , , .
, CTF, 25 . 9 , . , .
, . , . , , , , HackBattle, 97 !
, , . “vos” “Beched” .
, PHDays. - , :
. :
: -, , -. root bash-. . , , , .
, , !
www.phdays.com/broadcast/, 24 , part 2 mix stream 2:00:00. , , .
“vos” ! , HackBattle.
“vos” :
«
- , . . , :)
, -2 — ».
“Beched” :
«
— RuCTF. . — , — , (10–30 ). , .
HackBattle , .
— , . — . Rapid Fire ForAllSecure».
:OVA:
http://static.ptsecurity.com/phdays/2017/hackbattle/creds.txt —
static.ptsecurity.com/phdays/2017/hackbattle/1.ovastatic.ptsecurity.com/phdays/2017/hackbattle/2.ovastatic.ptsecurity.com/phdays/2017/hackbattle/3.ovastatic.ptsecurity.com/phdays/2017/hackbattle/4.ovastatic.ptsecurity.com/phdays/2017/hackbattle/5.ovastatic.ptsecurity.com/phdays/2017/hackbattle/6.ovastatic.ptsecurity.com/phdays/2017/hackbattle/7.ovastatic.ptsecurity.com/phdays/2017/hackbattle/8.ovastatic.ptsecurity.com/phdays/2017/hackbattle/9.ovastatic.ptsecurity.com/phdays/2017/hackbattle/FINAL.ova. (№ 3 ), 100 , . , , .
№ 3- «
User 1, you have been successfully logged in.»:
«My profile» User 1:
Flag , .
«/profile/1», «/profile/2», User 2:
, , , IDOR-. 100 id Burp Intruder:
id 72 Length, :
! .
:
, , , Positive Technologies