Wargames! Right?
Psst! This article is not about video games, stop thinking about guns and action racing
So what are Wargames? These are series of challenges that are meant to facilitate learning and practicing on a specific domain. They offer a fun, gamefied learning process that keeps the learner engaged and hence effective.
UnderTheWire is a wargame that designed to help security professionals (or anyone interested) learn and practice how to use the Windows Powershell. The complexity of the challenges graduate in each level.
Without much ado, Lets jump right in.
Head over to https://underthewire.tech/wargames where you’ll find some instructions as stressed below.
For this article, I will be using PUTTY to SSH to the servers. Get it here
Century 1
This is the beginning point. We need to ssh to the server century.underthewire.tech and find the level goal.
Username: century1
Password: century1
So the goal is to obtain the build version of the powershell instance installed.
We use the command below
1
2
$PSVersionTable.BuildVersion
If we were to get the powershell version, we would have used the command below
1
2
$PSVersionTable.PSVersion
So the Password for century 2 is 10.0.14393.5127
Century 2
Host → century.underthewire.tech
username → century2
password → 10.0.14393.5127
Goal:
Solution:
Name of the file → 443
The Name of the built-in cmdlet that performs the wget like functions within Powershell is Invoke-WebRequest
So the Solution will be → invoke-webrequest443
So the password for century 3 is invoke-webrequest443
Century 3
Host → century.underthewire.tech
username → century3
password → invoke-webrequest443
Goal: → Getting the number of files on the desktop
To obtain this, we need the Powershell command equivalent for wc -l in Linux.
Solution: We use the command while in the desktop directory
1
(dir *).count
And the password for century 4 is 123
This is fun, right?
Let us catch up in my next article for century 4 through century 7.