wordpress CTF
by hackerman1924 - January 27, 2021 at 10:47 PM
New User
Member
Posts 7
Threads 1
Joined Oct 2020
Reputation 0
#1
January 27, 2021 at 10:47 PM
Hi
I have a CTF I need help with. It's wordpress 5.6 without any plugins or themes. Already tried wpscan, admin user bruteforce, xmlrpc (which always returned parse error) and others.
All the files from 5.6 source code are accessible. Only user admin found. I need to have access to server or the ability to comment, but can't do it without an authenticated user (also with wp-json api)
Any idea please?
Reply
Elite User
Posts 175
Threads 7
Joined Apr 2020
Reputation 0
#2
January 28, 2021 at 03:57 AM
you can bruteforce file backup Smile
Reply
New User
Member
Posts 7
Threads 1
Joined Oct 2020
Reputation 0
#3
January 28, 2021 at 10:18 AM
(January 28, 2021 at 03:57 AM)mtdev2020 Wrote: you can bruteforce file backup Smile
No backup found from wpscan, here's the URL:

http://cs.shenkar.cloud/index.php
Reply
Banned
Posts 222
Threads 0
Joined Nov 2020
Reputation 0
#4
January 28, 2021 at 02:53 PM
Thanks for sharing buddy!
This forum account is currently banned. Ban Length: 3 Months (2m, 1w, 6d remaining).
Ban Reason: Leech
Reply
New User
Member
Posts 7
Threads 1
Joined Oct 2020
Reputation 0
#5
January 28, 2021 at 03:08 PM
If anybody want to help, I'm also willing to pay for a good lead of how to continue here .thanks-
Reply
Elite User
Posts 175
Threads 7
Joined Apr 2020
Reputation 0
#6
January 29, 2021 at 03:33 AM
(January 28, 2021 at 10:18 AM)hackerman1924 Wrote:
(January 28, 2021 at 03:57 AM)mtdev2020 Wrote: you can bruteforce file backup Smile
No backup found from wpscan, here's the URL:

http://cs.shenkar.cloud/index.php

Do you have any info about this cTF anymore? eg: homepage program .....
Reply
GOD User
GOD Upgraded Member
Posts 291
Threads 5
Joined Aug 2017
Reputation 379
3 Years of service

#7
January 30, 2021 at 01:39 AM
Whats is the name of your CTF?
Reply
New User
Member
Posts 7
Threads 1
Joined Oct 2020
Reputation 0
#8
January 31, 2021 at 11:25 AM
(January 29, 2021 at 03:33 AM)mtdev2020 Wrote:
(January 28, 2021 at 10:18 AM)hackerman1924 Wrote:
(January 28, 2021 at 03:57 AM)mtdev2020 Wrote: you can bruteforce file backup Smile
No backup found from wpscan, here's the URL:

http://cs.shenkar.cloud/index.php

Do you have any info about this cTF anymore? eg: homepage program .....

What other info do you need? the website is still online man Smile  cs.shenkar.cloud  , as I said I got as an assignment for infosec course I'm taking.
Do you have any other idea besides the backup which I didn't try yet ?
thanks
Reply
M.V.P User
Posts 662
Threads 0
Joined Feb 2021
Reputation 0

#9
February 01, 2021 at 12:46 PM
Thank you for the share friend, working nicely!
Reply
New User
Member
Posts 7
Threads 1
Joined Oct 2020
Reputation 0
#10
February 01, 2021 at 12:52 PM
(February 01, 2021 at 12:46 PM)Alpha5050 Wrote: Thank you for the share friend, working nicely!

what's working nicely? Huh
Reply
New User
Member
Posts 41
Threads 4
Joined Sep 2020
Reputation 19
#11
February 01, 2021 at 03:16 PM
http://cs.shenkar.cloud/info.php says allow_url_fopen is on
Reply

Possibly Related Threads…
Thread Author Replies Views Last Post
Alexa 1Mio Wordpress Theme and Plugin Scan - 17k 0xrs 1 77 6 hours ago
Last Post: Murray_Sky
ADHD - King Of CTF ( Best Active Defense Tools ) Amank 11 781 Yesterday at 03:59 AM
Last Post: c0oknn
WordPress Spammer - A simple and easy to use WordPress Spammer kermer 5 414 April 01, 2020 at 06:22 PM
Last Post: kermer

 Users browsing this thread: 1 Guest(s)