Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Remote Range Access
#1
Hello,

It has been a few months, just checking to see if the range is up? I know I had some issues today, I can get granted access. But can not reach any of the intermediate boxes.

Thanks.
Reply Purge Spammer
#2
In doing a little exploration for the online range I have found that all of the IP addresses have been locked down to https:// only.
Unfortunately, all of the ctfs are made to run as http:// so since port 80 is unavailable so are all of the ctfs.

If we have these items locked down in this manner the only target I've found that is available in AZ01 is bwapp.

This could explain the lack of use of the range by remote means. I have sent over 20 people from outside AZ to the range and a few have mentioned not being able to participate in the ctf challenges.
"Those who cannot remember the past are condemned to repeat it." ~ George Santayana
Reply
#3
Since it had been awhile since I checked I tried again yesterday and today.
The same thing still bwapp is the only available remote target.
a quick zenmap of the mr. robot target gets the Mr.Robot_Scan.png result.
If I do that same scan on my own vm of mr. robot the myvm.png result is shown.

Without the port 80 access the target doesn't work.


Attached Files Thumbnail(s)
       
"Those who cannot remember the past are condemned to repeat it." ~ George Santayana
Reply
#4
(2019-12-21, 01:07 PM)JackH Wrote: Since it had been awhile since I checked I tried again yesterday and today.
The same thing still bwapp is the only available remote target.
a quick zenmap of the mr. robot target gets the Mr.Robot_Scan.png result.
If I do that same scan on my own vm of mr. robot the myvm.png result is shown.

Without the port 80 access the target doesn't work.

I'm new and trying to access assets on AZ01 (Beginner)... Am I correct is reading here that due to possibly the recent changes to https that remote access to this environment is now substantially hindered?

Best Regards,
Jason
Reply Purge Spammer
#5
No. The targets are being attacked all the time by non-student learners. Honestly, it is likely to cause students to try other "online" targets like the ones we host. The main one is in China. Go figure.

We are about to release a new solution that their little hi-jinx will be unable to top. We appreciate your patience.

"I drank what?"--Socrates
Reply
#6
Thanks for the updates!
ISSA Member
Twitter: @steve_surprise
Reply


Forum Jump: