SARGazer
SARGazer is an easy Linux web challenge based on a rushed internal monitoring server migration. The public web server looks like a normal Apache2 default page, but an old SAR report renderer is still exposed.
Players must enumerate the web service, discover the hidden monitoring path, identify unsafe command handling in the report renderer, and use it to gain command execution as the web user. After the first flag, players must enumerate local maintenance scripts and abuse a writable script executed by a root cron job to obtain the final flag.
Skills covered:
- Web enumeration
robots.txtdiscovery- Command injection
- Linux enumeration
- Cron job privilege escalation
- Writable script abuse
1
Initial Access & Privilege Escalation
Q1.
Which writable script is abused for privilege escalation?
Q2.
What user does the web command execution run as?
Q3.
What hidden directory is revealed by the web server metadata?
Q4.
Submit the user flag.
Submit Flag