🎉 Welcome to Chisel 🎉
🌟 Description
Welcome to the Advanced Security path with your third year project : Chisel
In the previous year you learned a vast array of topics :
- Binary Security with the Obsidian project, with reverse engineering, buffer overflow and format string bug
- Web Security with the Burp and Hydra projects, notably exploits like File Upload, SQLi, JWT and Front-End exploits.
This project will be very much different, with an emphasis on Web-Security.
The module starts with a Kick-Off, is accompanied by a Bootstrap and will end up on a Defense.
The Chisel project is composed of several boot2root challenges on virtual machines hosted on TryHackMe.
The challenges are more difficult than the previous years but still progressive, and axed mainly around privilege escalation exploiting internal port and SSH Tunneling.
The final Defense will be a mandatory review were you will have to explain a couple of challenges that you manage to exploit.
Some theoretical questions will be asked to be sure that you fully understand the core concepts of SSH tunneling and port forwarding.
📅 Event Dates
- Start Date: 2025-11-17T10:00:00Z
- End Date: 2025-12-07T22:42:00Z
🔮 Hint
If you're stuck, you can look up hints for free on a flag !
That will give you the different tools that you could use to resolve the flag
🚀 Join the Competition
Put your cybersecurity skills to the test, solve exciting challenges, and climb the leaderboard!
🔗 Quick Actions
📢 About
© 2025 - Epitech. All rights reserved.
Good luck and have fun! 🎯