Dynstr
Dynstr
Dynstr 352
Dynstr
RETIRED MACHINE

Dynstr

Dynstr - Linux Linux
Dynstr - Medium Medium

4.4

MACHINE RATING

3214

USER OWNS

3080

SYSTEM OWNS

12/06/2021

RELEASED
Created by jkr

Machine Synopsis

Dynstr is a medium difficulty Linux machine featuring a blog providing Dynamic DNS services. The application API is vulnerable to command injection using which a foothold can be gained. Enumerating one of the users folders leaks SSH private key. Updating DNS zone records allows SSH access which helps in lateral movement. By exploiting a wildcard injection in a bash script root access can be obtained.

Machine Matrix

Ready to start your
hacking journey?