{"id":19874196,"url":"https://github.com/pythoninthegrass/ctf_snyk","last_synced_at":"2025-03-01T01:23:15.704Z","repository":{"id":203809547,"uuid":"621035139","full_name":"pythoninthegrass/ctf_snyk","owner":"pythoninthegrass","description":"https://101.ctf-snyk.io/challenges","archived":false,"fork":false,"pushed_at":"2023-10-28T18:36:40.000Z","size":116,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-01-11T16:50:31.164Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Just","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"unlicense","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/pythoninthegrass.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-03-29T21:33:14.000Z","updated_at":"2023-03-31T04:55:42.000Z","dependencies_parsed_at":null,"dependency_job_id":"74e1e824-cadd-4acc-a516-530d64e6c449","html_url":"https://github.com/pythoninthegrass/ctf_snyk","commit_stats":null,"previous_names":["pythoninthegrass/ctf_snyk"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pythoninthegrass%2Fctf_snyk","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pythoninthegrass%2Fctf_snyk/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pythoninthegrass%2Fctf_snyk/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pythoninthegrass%2Fctf_snyk/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/pythoninthegrass","download_url":"https://codeload.github.com/pythoninthegrass/ctf_snyk/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":241301880,"owners_count":19940726,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-12T16:22:17.169Z","updated_at":"2025-03-01T01:23:15.682Z","avatar_url":"https://github.com/pythoninthegrass.png","language":"Just","readme":"# ctf_snyk\n\n## Pre-requisites\n### Minimum Requirements\n* [nodejs](https://nodejs.org/en/download/)\n* [python3](https://www.python.org/downloads/)\n\n### Recommended Requirements\n* [docker](https://docs.docker.com/get-docker/)\n* [parrot os - docker](hhttps://parrotsec.org/docs/cloud/parrot-on-docker/)\n    ```bash\n    docker run --rm -it --network host -v $PWD/work:/work parrotsec/security\n    ```\n\n### 101\n\u003e In order to solve the challenges, please complete the following requisites\n\u003e * [Register](https://101.ctf-snyk.io/register) to access the challenges\n\u003e * Create a free [Snyk account](https://snyk.co/ctf101portal)\n\n### Fetch the Flag (Oct 27, 2023)\n* [CTF](https://snyk.ctf.games/)\n\n## What is Snyk?\n\u003e Snyk finds and automatically fixes vulnerabilities in your projects for free. You can use Snyk to detect vulnerabilities in CTF challenges, so you can uncover hidden flags faster. Check out the docs to learn how to run Snyk in your CLI.\n\n## Challenges\n[Invisible Ink](http://invisible-ink.c.ctf-snyk.io/)\n\n[Sauerkraut](http://sauerkraut.c.ctf-snyk.io/)\n\n## TODO\n* [Issues?](https://github.com/pythoninthegrass/ctf_snyk/issues)\n* Dockerize repo. Maybe\n\n## Further Reading\n[Snyk CTF-101](https://101.ctf-snyk.io/prerequisites)\n\n[Free developer security education lessons | Snyk Learn](https://learn.snyk.io/lessons/)\n\n\u003cp\u003e\n\u003cdetails\u003e\n\u003csummary\u003eHints\u003c/summary\u003e\n\n[What is prototype pollution? | Tutorial \u0026 examples | Snyk Learn](https://learn.snyk.io/lessons/prototype-pollution/javascript/)\n\n[Exploiting Python pickles - David Hamann](https://davidhamann.de/2020/04/05/exploiting-python-pickle/)\n\n[Exploit Notes](https://exploit-notes.hdks.org/)\n\n[HackTricks](https://book.hacktricks.xyz/welcome/readme)\n\n\u003c/details\u003e\n\u003c/p\u003e\n\n\u003cp\u003e\n\u003cdetails\u003e\n\u003csummary\u003eSpoilers\u003c/summary\u003e\n\n[SnykCon CTF - \"Invisible Ink\" Prototype Pollution - YouTube](https://www.youtube.com/watch?v=ycbRA_Ipq1U)\n\n[SnykCon CTF - Sauerkraut - Python Pickle Vulnerabilities - YouTube](https://www.youtube.com/watch?v=snVokteaKG8)\n\n[SynthWave '84 - Visual Studio Marketplace](https://marketplace.visualstudio.com/items?itemName=RobbOwen.synthwave-vscode)\n\n\u003c/details\u003e\n\u003c/p\u003e\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpythoninthegrass%2Fctf_snyk","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fpythoninthegrass%2Fctf_snyk","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpythoninthegrass%2Fctf_snyk/lists"}