Nginx in the Dark

Forensics 200 pts standard

Challenge Description

A public-facing Nginx server was compromised and used as an internal pivot. Some logs were tampered with. Reconstruct what happened.

Files

↓ auth.log ↓ cron_dump.txt ↓ decoy_webshells.txt ↓ mixed_case_telemetry.log ↓ nginx_access.log ↓ noise.log ↓ noise_expanded.log ↓ timeline.csv

Submit Flag

Login to submit a flag.

← All Challenges