add pwn challenges

Challenges/Pwn/Goldenwing/Dockerfile

@@ -0,0 +1,30 @@
+FROM ubuntu:22.04
+
+RUN sed -i "s/http:\/\/archive.ubuntu.com/http:\/\/mirrors.tuna.tsinghua.edu.cn/g" /etc/apt/sources.list && \
+    apt-get update && apt-get -y dist-upgrade && \
+    apt-get install -y lib32z1 xinetd
+
+RUN useradd -m ctf
+
+WORKDIR /home/ctf
+
+RUN cp -R /usr/lib* /home/ctf
+
+RUN mkdir /home/ctf/bin && \
+    cp /bin/sh /home/ctf/bin && \
+    cp /bin/ls /home/ctf/bin && \
+    cp /bin/cat /home/ctf/bin
+
+COPY ./ctf.xinetd /etc/xinetd.d/ctf
+COPY ./start.sh /start.sh
+RUN echo "Blocked by ctf_xinetd" > /etc/banner_fail
+
+RUN chmod +x /start.sh
+
+COPY ./pwn /home/ctf/
+RUN chown -R root:ctf /home/ctf && \
+    chmod -R 750 /home/ctf
+
+CMD ["/start.sh"]
+
+EXPOSE 9999

Challenges/Pwn/Goldenwing/ctf.xinetd

@@ -0,0 +1,20 @@
+service ctf
+{
+    disable = no
+    socket_type = stream
+    protocol    = tcp
+    wait        = no
+    user        = root
+    type        = UNLISTED
+    port        = 9999
+    bind        = 0.0.0.0
+    server      = /usr/sbin/chroot
+    # replace helloworld to your program
+    server_args = --userspec=1000:1000 /home/ctf ./pwn
+    banner_fail = /etc/banner_fail
+    # safety options
+    per_source	= 10 # the maximum instances of this service per source IP address
+    rlimit_cpu	= 20 # the maximum number of CPU seconds that the service may use
+    #rlimit_as  = 1024M # the Address Space resource limit for the service
+    #access_times = 2:00-9:00 12:00-24:00
+}

Challenges/Pwn/Goldenwing/start.sh

@@ -0,0 +1,7 @@
+#!/bin/sh
+# Add your startup script
+echo $FLAG > /home/ctf/flag && export FLAG=""
+
+# DO NOT DELETE
+/etc/init.d/xinetd start;
+sleep infinity;

Challenges/Pwn/GotIt/Dockerfile

@@ -0,0 +1,30 @@
+FROM ubuntu:22.04
+
+RUN sed -i "s/http:\/\/archive.ubuntu.com/http:\/\/mirrors.tuna.tsinghua.edu.cn/g" /etc/apt/sources.list && \
+    apt-get update && apt-get -y dist-upgrade && \
+    apt-get install -y lib32z1 xinetd
+
+RUN useradd -m ctf
+
+WORKDIR /home/ctf
+
+RUN cp -R /usr/lib* /home/ctf
+
+RUN mkdir /home/ctf/bin && \
+    cp /bin/sh /home/ctf/bin && \
+    cp /bin/ls /home/ctf/bin && \
+    cp /bin/cat /home/ctf/bin
+
+COPY ./ctf.xinetd /etc/xinetd.d/ctf
+COPY ./start.sh /start.sh
+RUN echo "Blocked by ctf_xinetd" > /etc/banner_fail
+
+RUN chmod +x /start.sh
+
+COPY ./pwn /home/ctf/
+RUN chown -R root:ctf /home/ctf && \
+    chmod -R 750 /home/ctf
+
+CMD ["/start.sh"]
+
+EXPOSE 9999

Challenges/Pwn/GotIt/ctf.xinetd

@@ -0,0 +1,20 @@
+service ctf
+{
+    disable = no
+    socket_type = stream
+    protocol    = tcp
+    wait        = no
+    user        = root
+    type        = UNLISTED
+    port        = 9999
+    bind        = 0.0.0.0
+    server      = /usr/sbin/chroot
+    # replace helloworld to your program
+    server_args = --userspec=1000:1000 /home/ctf ./pwn
+    banner_fail = /etc/banner_fail
+    # safety options
+    per_source	= 10 # the maximum instances of this service per source IP address
+    rlimit_cpu	= 20 # the maximum number of CPU seconds that the service may use
+    #rlimit_as  = 1024M # the Address Space resource limit for the service
+    #access_times = 2:00-9:00 12:00-24:00
+}

Challenges/Pwn/GotIt/start.sh

@@ -0,0 +1,7 @@
+#!/bin/sh
+# Add your startup script
+echo $FLAG > /home/ctf/flag && export FLAG=""
+
+# DO NOT DELETE
+/etc/init.d/xinetd start;
+sleep infinity;

Challenges/Pwn/LoginSystem/Dockerfile

@@ -0,0 +1,32 @@
+FROM ubuntu:22.04
+
+RUN sed -i "s/http:\/\/archive.ubuntu.com/http:\/\/mirrors.tuna.tsinghua.edu.cn/g" /etc/apt/sources.list && \
+    apt-get update && apt-get -y dist-upgrade && \
+    apt-get install -y lib32z1 xinetd
+
+RUN useradd -m ctf
+
+WORKDIR /home/ctf
+
+RUN cp -R /usr/lib* /home/ctf
+
+RUN mkdir /home/ctf/bin && \
+    cp /bin/sh /home/ctf/bin && \
+    cp /bin/ls /home/ctf/bin && \
+    cp /bin/cat /home/ctf/bin
+
+RUN mkdir /home/ctf/dev
+
+COPY ./ctf.xinetd /etc/xinetd.d/ctf
+COPY ./start.sh /start.sh
+RUN echo "Blocked by ctf_xinetd" > /etc/banner_fail
+
+RUN chmod +x /start.sh
+
+COPY ./pwn /home/ctf/
+RUN chown -R root:ctf /home/ctf && \
+    chmod -R 750 /home/ctf
+
+CMD ["/start.sh"]
+
+EXPOSE 9999

Challenges/Pwn/LoginSystem/ctf.xinetd

@@ -0,0 +1,20 @@
+service ctf
+{
+    disable = no
+    socket_type = stream
+    protocol    = tcp
+    wait        = no
+    user        = root
+    type        = UNLISTED
+    port        = 9999
+    bind        = 0.0.0.0
+    server      = /usr/sbin/chroot
+    # replace helloworld to your program
+    server_args = --userspec=1000:1000 /home/ctf ./pwn
+    banner_fail = /etc/banner_fail
+    # safety options
+    per_source	= 10 # the maximum instances of this service per source IP address
+    rlimit_cpu	= 20 # the maximum number of CPU seconds that the service may use
+    #rlimit_as  = 1024M # the Address Space resource limit for the service
+    #access_times = 2:00-9:00 12:00-24:00
+}

Challenges/Pwn/LoginSystem/start.sh

@@ -0,0 +1,9 @@
+#!/bin/sh
+# Add your startup script
+echo $FLAG > /home/ctf/flag && export FLAG=""
+
+head -c8 /dev/urandom > /home/ctf/dev/urandom
+
+# DO NOT DELETE
+/etc/init.d/xinetd start;
+sleep infinity;

Challenges/Pwn/OneChance/Dockerfile

@@ -0,0 +1,30 @@
+FROM ubuntu:22.04
+
+RUN sed -i "s/http:\/\/archive.ubuntu.com/http:\/\/mirrors.tuna.tsinghua.edu.cn/g" /etc/apt/sources.list && \
+    apt-get update && apt-get -y dist-upgrade && \
+    apt-get install -y lib32z1 xinetd
+
+RUN useradd -m ctf
+
+WORKDIR /home/ctf
+
+RUN cp -R /usr/lib* /home/ctf
+
+RUN mkdir /home/ctf/bin && \
+    cp /bin/sh /home/ctf/bin && \
+    cp /bin/ls /home/ctf/bin && \
+    cp /bin/cat /home/ctf/bin
+
+COPY ./ctf.xinetd /etc/xinetd.d/ctf
+COPY ./start.sh /start.sh
+RUN echo "Blocked by ctf_xinetd" > /etc/banner_fail
+
+RUN chmod +x /start.sh
+
+COPY ./pwn /home/ctf/
+RUN chown -R root:ctf /home/ctf && \
+    chmod -R 750 /home/ctf
+
+CMD ["/start.sh"]
+
+EXPOSE 9999

Challenges/Pwn/OneChance/ctf.xinetd

@@ -0,0 +1,20 @@
+service ctf
+{
+    disable = no
+    socket_type = stream
+    protocol    = tcp
+    wait        = no
+    user        = root
+    type        = UNLISTED
+    port        = 9999
+    bind        = 0.0.0.0
+    server      = /usr/sbin/chroot
+    # replace helloworld to your program
+    server_args = --userspec=1000:1000 /home/ctf ./pwn
+    banner_fail = /etc/banner_fail
+    # safety options
+    per_source	= 10 # the maximum instances of this service per source IP address
+    rlimit_cpu	= 20 # the maximum number of CPU seconds that the service may use
+    #rlimit_as  = 1024M # the Address Space resource limit for the service
+    #access_times = 2:00-9:00 12:00-24:00
+}

Challenges/Pwn/OneChance/start.sh

@@ -0,0 +1,7 @@
+#!/bin/sh
+# Add your startup script
+echo $FLAG > /home/ctf/flag && export FLAG=""
+
+# DO NOT DELETE
+/etc/init.d/xinetd start;
+sleep infinity;

Challenges/Pwn/WhereIsFmt/Dockerfile

@@ -0,0 +1,30 @@
+FROM ubuntu:22.04
+
+RUN sed -i "s/http:\/\/archive.ubuntu.com/http:\/\/mirrors.tuna.tsinghua.edu.cn/g" /etc/apt/sources.list && \
+    apt-get update && apt-get -y dist-upgrade && \
+    apt-get install -y lib32z1 xinetd
+
+RUN useradd -m ctf
+
+WORKDIR /home/ctf
+
+RUN cp -R /usr/lib* /home/ctf
+
+RUN mkdir /home/ctf/bin && \
+    cp /bin/sh /home/ctf/bin && \
+    cp /bin/ls /home/ctf/bin && \
+    cp /bin/cat /home/ctf/bin
+
+COPY ./ctf.xinetd /etc/xinetd.d/ctf
+COPY ./start.sh /start.sh
+RUN echo "Blocked by ctf_xinetd" > /etc/banner_fail
+
+RUN chmod +x /start.sh
+
+COPY ./pwn /home/ctf/
+RUN chown -R root:ctf /home/ctf && \
+    chmod -R 750 /home/ctf
+
+CMD ["/start.sh"]
+
+EXPOSE 9999

Challenges/Pwn/WhereIsFmt/ctf.xinetd

@@ -0,0 +1,20 @@
+service ctf
+{
+    disable = no
+    socket_type = stream
+    protocol    = tcp
+    wait        = no
+    user        = root
+    type        = UNLISTED
+    port        = 9999
+    bind        = 0.0.0.0
+    server      = /usr/sbin/chroot
+    # replace helloworld to your program
+    server_args = --userspec=1000:1000 /home/ctf ./pwn
+    banner_fail = /etc/banner_fail
+    # safety options
+    per_source	= 10 # the maximum instances of this service per source IP address
+    rlimit_cpu	= 20 # the maximum number of CPU seconds that the service may use
+    #rlimit_as  = 1024M # the Address Space resource limit for the service
+    #access_times = 2:00-9:00 12:00-24:00
+}

Challenges/Pwn/WhereIsFmt/start.sh

@@ -0,0 +1,7 @@
+#!/bin/sh
+# Add your startup script
+echo $FLAG > /home/ctf/flag && export FLAG=""
+
+# DO NOT DELETE
+/etc/init.d/xinetd start;
+sleep infinity;

Challenges/Pwn/luosh/Dockerfile

@@ -0,0 +1,30 @@
+FROM ubuntu:22.04
+
+RUN sed -i "s/http:\/\/archive.ubuntu.com/http:\/\/mirrors.tuna.tsinghua.edu.cn/g" /etc/apt/sources.list && \
+    apt-get update && apt-get -y dist-upgrade && \
+    apt-get install -y lib32z1 xinetd
+
+RUN useradd -m ctf
+
+WORKDIR /home/ctf
+
+RUN cp -R /usr/lib* /home/ctf
+
+RUN mkdir /home/ctf/bin && \
+    cp /bin/sh /home/ctf/bin && \
+    cp /bin/ls /home/ctf/bin && \
+    cp /bin/cat /home/ctf/bin
+
+COPY ./ctf.xinetd /etc/xinetd.d/ctf
+COPY ./start.sh /start.sh
+RUN echo "Blocked by ctf_xinetd" > /etc/banner_fail
+
+RUN chmod +x /start.sh
+
+COPY ./pwn /home/ctf/
+RUN chown -R root:ctf /home/ctf && \
+    chmod -R 750 /home/ctf
+
+CMD ["/start.sh"]
+
+EXPOSE 9999

Challenges/Pwn/luosh/ctf.xinetd

@@ -0,0 +1,20 @@
+service ctf
+{
+    disable = no
+    socket_type = stream
+    protocol    = tcp
+    wait        = no
+    user        = root
+    type        = UNLISTED
+    port        = 9999
+    bind        = 0.0.0.0
+    server      = /usr/sbin/chroot
+    # replace helloworld to your program
+    server_args = --userspec=1000:1000 /home/ctf ./pwn
+    banner_fail = /etc/banner_fail
+    # safety options
+    per_source	= 10 # the maximum instances of this service per source IP address
+    rlimit_cpu	= 20 # the maximum number of CPU seconds that the service may use
+    #rlimit_as  = 1024M # the Address Space resource limit for the service
+    #access_times = 2:00-9:00 12:00-24:00
+}

Challenges/Pwn/luosh/start.sh

@@ -0,0 +1,7 @@
+#!/bin/sh
+# Add your startup script
+echo $FLAG > /home/ctf/flag && export FLAG=""
+
+# DO NOT DELETE
+/etc/init.d/xinetd start;
+sleep infinity;

Challenges/Pwn/return15/Dockerfile

@@ -0,0 +1,30 @@
+FROM ubuntu:22.04
+
+RUN sed -i "s/http:\/\/archive.ubuntu.com/http:\/\/mirrors.tuna.tsinghua.edu.cn/g" /etc/apt/sources.list && \
+    apt-get update && apt-get -y dist-upgrade && \
+    apt-get install -y lib32z1 xinetd
+
+RUN useradd -m ctf
+
+WORKDIR /home/ctf
+
+RUN cp -R /usr/lib* /home/ctf
+
+RUN mkdir /home/ctf/bin && \
+    cp /bin/sh /home/ctf/bin && \
+    cp /bin/ls /home/ctf/bin && \
+    cp /bin/cat /home/ctf/bin
+
+COPY ./ctf.xinetd /etc/xinetd.d/ctf
+COPY ./start.sh /start.sh
+RUN echo "Blocked by ctf_xinetd" > /etc/banner_fail
+
+RUN chmod +x /start.sh
+
+COPY ./pwn /home/ctf/
+RUN chown -R root:ctf /home/ctf && \
+    chmod -R 750 /home/ctf
+
+CMD ["/start.sh"]
+
+EXPOSE 9999