In inventory as robert, I have changed SMTP settings to my local smtp server, however, I am not getting anything.
Looks like I am supposed to get an information on name change, password update, or login.
Is that just fake?

Can anyone give me a hint with ecdsa exploit? i have been working on that for 2 days but still dont know how to exploit it for flag 4.

(August 2, 2022, 12:08 PM)outishome Wrote: Can anyone give me a hint with ecdsa exploit? i have been working on that for 2 days but still dont know how to exploit it for flag 4.

i've been looking at this.  https://billatnapier.medium.com/ecdsa-weakness-where-nonces-are-reused-2be63856a01a  still not got it to work yet though.

(August 5, 2022, 09:35 AM)ripc0rd Wrote:

(August 2, 2022, 12:08 PM)outishome Wrote: Can anyone give me a hint with ecdsa exploit? i have been working on that for 2 days but still dont know how to exploit it for flag 4.

i've been looking at this.  https://billatnapier.medium.com/ecdsa-weakness-where-nonces-are-reused-2be63856a01a  still not got it to work yet though.

I am at the same page and yeah still dont know how to make the whole thing work :D  . This is definitely a new experience for me. If you have discord, pm me than maybe we can work together to solve this fortress :)

(August 1, 2022, 02:21 PM)philipjphry Wrote:

(July 30, 2022, 07:40 PM)popex Wrote:

(July 28, 2022, 10:40 AM)philipjphry Wrote:

(July 27, 2022, 12:47 PM)F4nny Wrote:

(July 15, 2022, 04:10 PM)hacker1111 Wrote: flag 4

flag 3 is in sql db. dump keys_tbl table

Any progress on flag4?

its about ecdsa nonce reuse attack, not very difficult. You can pretty much copy any script from net and modify it a little bit

flag 4 is not only about generting jwt token. Did you get the shell ?

yeah i've already completed the whole fortress

Care to give us some details for flag4?

(August 1, 2022, 09:03 PM)farkow Wrote: In inventory as robert, I have changed SMTP settings to my local smtp server, however, I am not getting anything.
Looks like I am supposed to get an information on name change, password update, or login.
Is that just fake?

yeah the smtp is useless its just another rabbithole

---

(August 9, 2022, 12:47 PM)ripc0rd Wrote:

(August 1, 2022, 02:21 PM)philipjphry Wrote:

(July 30, 2022, 07:40 PM)popex Wrote:

(July 28, 2022, 10:40 AM)philipjphry Wrote:

(July 27, 2022, 12:47 PM)F4nny Wrote: Any progress on flag4?

its about ecdsa nonce reuse attack, not very difficult. You can pretty much copy any script from net and modify it a little bit

flag 4 is not only about generting jwt token. Did you get the shell ?

yeah i've already completed the whole fortress

Care to give us some details for flag4?

i already told you the attack, now go and implement it.

anyone can help me wih flag4
Now I have AWS_SECRET_ACCESS_KEY and AWS_ACCESS_KEY_ID from database
what the next step
and how to access to support_portal

I'm stuck here 3 days ago please help me

(August 19, 2022, 11:54 AM)infosecsy19 Wrote: anyone can help me wih flag4
Now I have AWS_SECRET_ACCESS_KEY  and AWS_ACCESS_KEY_ID from database
what the next step
and how to access to support_portal

I'm stuck here 3 days ago please help me

Well 4 days here :D - can someone tell us where to find flag 4

(July 15, 2022, 03:46 PM)菲隆德伯特 Wrote: git 中有凭据： 您可以像这样使用它们：这给了一个名为“rebecca”的新用户

ecs = boto3.client('ecs',aws_access_key_id="ASIAGCB1NKN8SCJOVP2K",aws_secret_access_key="tOzF/tLK3S3CNsXfj0mjPsIH2iCh5odYHMPDwSVxn7CB5",region_name="eu-east-1",endpoint_url='http://cloud.amzcorp.local')

apt-get install awscli

aws configure

enter the creds

aws --endpoint-url http://cloud.amzcorp.local ecs help

---

Can you connect to AWS EC2

---

It prompts 403

Are there all web servers down? 503 Service Unavailable