iCTF 2018 - Hack The Planet

hack_the_planet.py

#!/usr/bin/env python2

# This code was written 10 hours before the competition, yikes
# Any bugs are your problem

import socks # pip install PySocks
import socket
socks.setdefaultproxy(socks.PROXY_TYPE_SOCKS5, '127.0.0.1', 4444)
socket.socket = socks.socksocket

from pwn import * # pip install pwntools
from swpag_client import Team # pip install swpag_client
import time

team = Team(None, "YOUR_SWPAG_TEAM_FLAG_TOKEN_HERE")

def team_ip(team_host):
    # 172.31.129.1 (team1) ... 172.31.129.254 (team254) ... 172.31.130.1 (team255) ...
    team_number = int(team_host[4:])
    minor = ((team_number - 1) % 254) + 1
    major = (team_number / 255) + 129
    return '172.31.{major}.{minor}'.format(major=major, minor=minor)

services = team.get_service_list()

service_flag_ids = dict()

while True:
    for service in services:
        print("Going to attack", service['service_name'])
        if service['service_name'] not in service_flag_ids:
            service_flag_ids[service['service_name']] = set()
        targets = team.get_targets(service['service_id'])
        for target in targets['targets']:
            flag_id = target['flag_id']
            ip = team_ip(target['hostname'])
            port = target['port']
            if flag_id not in service_flag_ids[service['service_name']]:
                try:
                    conn = remote(ip, port, timeout=3)
                    # insert pwnage here
                    conn.close()
                    flag = "GET_THE_FLAG"
                    # result = team.submit_flag(flag)
                    # print(result)
                    print("HACKED")
                except Exception as e:
                    print("Error connecting to", target['team_name'], target['hostname'], ip, port)
                    print(e)
                service_flag_ids[service['service_name']].add(flag_id)

    time.sleep(10) # DOS is against the rules

ssh -D 4444 -q -C -N -f