The Great Escape Tryhackme Writeup

This is a Writeup of Tryhackme room “The Great Escape”

Room link: https://tryhackme.com/room/malstrings
Note: This room is free

Docker, Networks, and Container Escapes; Oh My!

I wanted to explore the concept of a Docker Escape. Docker is an extremely useful tool which allows us to isolate applications from each other and the host OS without having to resort to virtual machines. Properly configured it can be very secure, though miscommunications can introduce massive security holes, which we shall soon see.

Enumeration

Let’s take a look at the web server for now.

On the homepage, we see an admin section. Clicking into it there’s a login form. Trying something like admin:password calls an api which returns a 401: Unauthorized response. Moreover, trying to register a new user throws an error saying signups are disabled.