further streamline

pwncollege · Sep 28, 2024 · db8d761 · db8d761
1 parent 4e2e614
commit db8d761
Show file tree

Hide file tree

Showing 12 changed files with 45 additions and 69 deletions.
diff --git a/web-security/csrf-reflected-alert/victim b/web-security/csrf-reflected-alert/victim
@@ -26,13 +26,11 @@ browser = webdriver.Firefox(service=service, options=options)
 atexit.register(browser.quit)
 
 open_ports = { s.laddr.port for s in psutil.net_connections(kind="inet") if s.status == 'LISTEN' }
-if 80 in open_ports:
-    print("Port 80 is open. Will connect to the service there.")
-    challenge_url = "http://challenge.localhost:80/"
-    flag = open("/flag").read().strip()
-else:
-    print("Services don't seem to be running?")
+if 80 not in open_ports:
+    print("Service doesn't seem to be running?")
     sys.exit(1)
+challenge_url = "http://challenge.localhost:80/"
+flag = open("/flag").read().strip()
 
 print(f"Visiting {challenge_url}")
 browser.get(challenge_url)

diff --git a/web-security/level-10/victim b/web-security/level-10/victim
@@ -26,13 +26,11 @@ browser = webdriver.Firefox(service=service, options=options)
 atexit.register(browser.quit)
 
 open_ports = { s.laddr.port for s in psutil.net_connections(kind="inet") if s.status == 'LISTEN' }
-if 80 in open_ports:
-    print("Port 80 is open. Will connect to the service there.")
-    challenge_url = "http://challenge.localhost:80/"
-    flag = open("/flag").read().strip()
-else:
-    print("Services don't seem to be running?")
+if 80 not in open_ports:
+    print("Service doesn't seem to be running?")
     sys.exit(1)
+challenge_url = "http://challenge.localhost:80/"
+flag = open("/flag").read().strip()
 
 print(f"Visiting {challenge_url}")
 browser.get(challenge_url)

diff --git a/web-security/level-11/victim b/web-security/level-11/victim
@@ -26,13 +26,11 @@ browser = webdriver.Firefox(service=service, options=options)
 atexit.register(browser.quit)
 
 open_ports = { s.laddr.port for s in psutil.net_connections(kind="inet") if s.status == 'LISTEN' }
-if 80 in open_ports:
-    print("Port 80 is open. Will connect to the service there.")
-    challenge_url = "http://challenge.localhost:80/"
-    flag = open("/flag").read().strip()
-else:
-    print("Services don't seem to be running?")
+if 80 not in open_ports:
+    print("Service doesn't seem to be running?")
     sys.exit(1)
+challenge_url = "http://challenge.localhost:80/"
+flag = open("/flag").read().strip()
 
 print(f"Visiting {challenge_url}")
 browser.get(challenge_url)

diff --git a/web-security/level-12/victim b/web-security/level-12/victim
@@ -26,13 +26,11 @@ browser = webdriver.Firefox(service=service, options=options)
 atexit.register(browser.quit)
 
 open_ports = { s.laddr.port for s in psutil.net_connections(kind="inet") if s.status == 'LISTEN' }
-if 80 in open_ports:
-    print("Port 80 is open. Will connect to the service there.")
-    challenge_url = "http://challenge.localhost:80/"
-    flag = open("/flag").read().strip()
-else:
-    print("Services don't seem to be running?")
+if 80 not in open_ports:
+    print("Service doesn't seem to be running?")
     sys.exit(1)
+challenge_url = "http://challenge.localhost:80/"
+flag = open("/flag").read().strip()
 
 print(f"Visiting {challenge_url}")
 browser.get(challenge_url)

diff --git a/web-security/level-13/victim b/web-security/level-13/victim
@@ -26,13 +26,11 @@ browser = webdriver.Firefox(service=service, options=options)
 atexit.register(browser.quit)
 
 open_ports = { s.laddr.port for s in psutil.net_connections(kind="inet") if s.status == 'LISTEN' }
-if 80 in open_ports:
-    print("Port 80 is open. Will connect to the service there.")
-    challenge_url = "http://challenge.localhost:80/"
-    flag = open("/flag").read().strip()
-else:
-    print("Services don't seem to be running?")
+if 80 not in open_ports:
+    print("Service doesn't seem to be running?")
     sys.exit(1)
+challenge_url = "http://challenge.localhost:80/"
+flag = open("/flag").read().strip()
 
 print(f"Visiting {challenge_url}")
 browser.get(challenge_url)

diff --git a/web-security/level-14/victim b/web-security/level-14/victim
@@ -26,13 +26,11 @@ browser = webdriver.Firefox(service=service, options=options)
 atexit.register(browser.quit)
 
 open_ports = { s.laddr.port for s in psutil.net_connections(kind="inet") if s.status == 'LISTEN' }
-if 80 in open_ports:
-    print("Port 80 is open. Will connect to the service there.")
-    challenge_url = "http://challenge.localhost:80/"
-    flag = open("/flag").read().strip()
-else:
-    print("Services don't seem to be running?")
+if 80 not in open_ports:
+    print("Service doesn't seem to be running?")
     sys.exit(1)
+challenge_url = "http://challenge.localhost:80/"
+flag = open("/flag").read().strip()
 
 print(f"Visiting {challenge_url}")
 browser.get(challenge_url)

diff --git a/web-security/level-8/victim b/web-security/level-8/victim
@@ -34,9 +34,7 @@ url_parsed = urllib.parse.urlparse(challenge_url)
 if url_parsed.hostname != "challenge.localhost":
     print("Hostname should be 'challenge.localhost'.")
     sys.exit(2)
-if url_parsed.port in {None, 80}:
-    reward = open("/flag").read()
-else:
+if url_parsed.port not in {None, 80}:
     print("Port should be 80.")
     sys.exit(3)
 
@@ -49,4 +47,4 @@ except TimeoutException:
     sys.exit(3)
 else:
     print("Alert triggered! Your reward:")
-    print(reward)
+    print(open("/flag").read())
diff --git a/web-security/level-9/victim b/web-security/level-9/victim
@@ -34,10 +34,8 @@ url_parsed = urllib.parse.urlparse(challenge_url)
 if url_parsed.hostname != "challenge.localhost":
     print("Hostname should be 'challenge.localhost'.")
     sys.exit(2)
-if url_parsed.port in {None, 80}:
-    reward = open("/flag").read()
-else:
-    print("Port should be 80 (real service).")
+if url_parsed.port not in {None, 80}:
+    print("Port should be 80.")
     sys.exit(3)
 
 print(f"Visiting {challenge_url}")
@@ -49,4 +47,4 @@ except TimeoutException:
     sys.exit(3)
 else:
     print("Alert triggered! Your reward:")
-    print(reward)
+    print(open("/flag").read())
diff --git a/web-security/xss-exfil-cookie/victim b/web-security/xss-exfil-cookie/victim
@@ -26,13 +26,11 @@ browser = webdriver.Firefox(service=service, options=options)
 atexit.register(browser.quit)
 
 open_ports = { s.laddr.port for s in psutil.net_connections(kind="inet") if s.status == 'LISTEN' }
-if 80 in open_ports:
-    print("Port 80 is open. Will connect to the service there.")
-    challenge_url = "http://challenge.localhost:80/"
-    flag = open("/flag").read().strip()
-else:
-    print("Services don't seem to be running?")
+if 80 not in open_ports:
+    print("Service doesn't seem to be running?")
     sys.exit(1)
+challenge_url = "http://challenge.localhost:80/"
+flag = open("/flag").read().strip()
 
 print(f"Visiting {challenge_url}")
 browser.get(challenge_url)

diff --git a/web-security/xss-rf-post/victim b/web-security/xss-rf-post/victim
@@ -26,13 +26,11 @@ browser = webdriver.Firefox(service=service, options=options)
 atexit.register(browser.quit)
 
 open_ports = { s.laddr.port for s in psutil.net_connections(kind="inet") if s.status == 'LISTEN' }
-if 80 in open_ports:
-    print("Port 80 is open. Will connect to the service there.")
-    challenge_url = "http://challenge.localhost:80/"
-    flag = open("/flag").read().strip()
-else:
-    print("Services don't seem to be running?")
+if 80 not in open_ports:
+    print("Service doesn't seem to be running?")
     sys.exit(1)
+challenge_url = "http://challenge.localhost:80/"
+flag = open("/flag").read().strip()
 
 print(f"Visiting {challenge_url}")
 browser.get(challenge_url)

diff --git a/web-security/xss-stored-alert/victim b/web-security/xss-stored-alert/victim
@@ -26,13 +26,11 @@ browser = webdriver.Firefox(service=service, options=options)
 atexit.register(browser.quit)
 
 open_ports = { s.laddr.port for s in psutil.net_connections(kind="inet") if s.status == 'LISTEN' }
-if 80 in open_ports:
-    print("Port 80 is open. Will connect to the service there.")
-    challenge_url = "http://challenge.localhost:80/"
-    flag = open("/flag").read().strip()
-else:
-    print("Services don't seem to be running?")
+if 80 not in open_ports:
+    print("Service doesn't seem to be running?")
     sys.exit(1)
+challenge_url = "http://challenge.localhost:80/"
+flag = open("/flag").read().strip()
 
 print(f"Visiting {challenge_url}")
 browser.get(challenge_url)

diff --git a/web-security/xss-stored-html/victim b/web-security/xss-stored-html/victim
@@ -6,13 +6,11 @@ import sys
 import re
 
 open_ports = { s.laddr.port for s in psutil.net_connections(kind="inet") if s.status == 'LISTEN' }
-if 80 in open_ports:
-    print("Port 80 is open. Will connect to the service there.")
-    challenge_url = "http://challenge.localhost:80/"
-    flag = open("/flag").read().strip()
-else:
-    print("Services don't seem to be running?")
+if 80 not in open_ports:
+    print("Service doesn't seem to be running?")
     sys.exit(1)
+challenge_url = "http://challenge.localhost:80/"
+flag = open("/flag").read().strip()
 
 print(f"Visiting {challenge_url}...")
 try: