adding more challenges

Author: guybarnhartmagen

dockerfiles/jailbreak/Dockerfile

@@ -0,0 +1,22 @@
+# Stage: UI
+FROM node:12.18-alpine as ui
+
+# Create app directory
+WORKDIR /app
+
+# Bundle app source
+COPY . /app/
+
+# Disable Source Map
+ENV GENERATE_SOURCEMAP=false
+
+# Install packages
+RUN npm install
+RUN npm run build
+
+
+# Stage: Core
+FROM nginx:1.19-alpine
+COPY nginx.conf /etc/nginx/conf.d/default.conf
+# Copy ui
+COPY --from=ui /app/build/ /usr/share/nginx/html

dockerfiles/jailbreak/lambda/lambda_admin.py

@@ -0,0 +1,75 @@
+import json
+import boto3
+import os
+
+PRISONERS = {
+    1: "Next time I see you, remind me not to talk to you.",
+    2: "I never forget a face, but in your case I'll be glad to make an exception.",
+    3: os.environ['Flag']
+}
+
+
+def get_user(access_key, prisoner=None):
+    client = boto3.client('cognito-idp')
+    try:
+        response = client.get_user(AccessToken=access_key)
+    except:
+        return wrap_response(299, {
+            'text': 'The server has accepted your request but thinks you can Try Harder!'
+        })
+    for name in response['UserAttributes']:
+        if 'iswarden' in name['Name'].lower():
+            if name['Value'] == '0':
+                return wrap_response(403, {
+                    'text': 'Only the warden is allowed!'
+                })
+            elif name['Value'] == '1':
+                if prisoner is not None:
+                    prisoner = dict((k.lower(), v) for k, v in json.loads(prisoner).items())
+                    if "prisoner" in prisoner and prisoner["prisoner"].isdigit():
+                        prisoner = int(prisoner["prisoner"])
+                        if 1 <= prisoner <= len(PRISONERS):
+                            return wrap_response(200,
+                                                 {'text': PRISONERS[prisoner]})
+                        return wrap_response(400, {
+                            'text': "Prisoner was not found"
+                        })
+                    return wrap_response(451, {
+                        'text': "Unavailable For Legal Reasons, Stop messing around!"
+                    })
+                return wrap_response(200, {
+                    "text": "Hello Warden"
+                })
+            return wrap_response(401, {
+                'text': 'Authentication Failed'
+            })
+
+
+def wrap_response(code, res=None):
+    return {
+        'statusCode': code,
+        'body': json.dumps(res) if res is not None else None,
+        'headers': {
+            "Content-Type": "application/json",
+            "Access-Control-Allow-Origin": "*",
+            "Access-Control-Allow-Methods": "OPTIONS, POST",
+            "Access-Control-Allow-Headers": "Access-Control-Allow-Origin, "
+                                            "Access-Control-Allow-Methods, Content-Type, authorization"
+        }
+    }
+
+
+def lambda_handler(event, _):
+    if event["httpMethod"] == "OPTIONS":
+        return wrap_response(200)
+    try:
+        if event["httpMethod"] == "POST":
+            headers = {k.lower(): v for k, v in event["headers"].items()}
+            if "body" in event:
+                return get_user(headers["authorization"], event["body"])
+            else:
+                return get_user(event["authorization"])
+    except:
+        return wrap_response(500, {
+            'text': 'Not Authorized!'
+        })

dockerfiles/jailbreak/lambda/lambda_login.py

@@ -0,0 +1,84 @@
+import os
+import hmac
+import json
+import boto3
+import base64
+import hashlib
+
+# Global Variables
+APP_CLIENT_ID = os.environ['APP_CLIENT_ID']
+APP_CLIENT_SECRET = os.environ['APP_CLIENT_SECRET']
+
+
+def get_secret_hash(username):
+    digest = hmac.new(
+        str(APP_CLIENT_SECRET).encode('utf-8'),
+        msg=str(username + APP_CLIENT_ID).encode('utf-8'),
+        digestmod=hashlib.sha256
+    ).digest()
+    return base64.b64encode(digest).decode()
+
+
+def wrap_response(status_code, res=None):
+    return {
+        'statusCode': status_code,
+        'body': json.dumps(res) if res is not None else None,
+        'headers': {
+            "Content-Type": "application/json",
+            "Access-Control-Allow-Origin": "*",
+            "Access-Control-Allow-Methods": "OPTIONS, POST",
+            "Access-Control-Allow-Headers": "Access-Control-Allow-Origin, Access-Control-Allow-Methods, Content-Type"
+        }
+    }
+
+
+def authenticate_user(username, password):
+    credentials = {
+        'USERNAME': username.lower(),
+        'SECRET_HASH': get_secret_hash(username.lower()),
+        'PASSWORD': password
+    }
+    try:
+        client = boto3.client('cognito-idp', region_name=os.environ['AWS_REGION'])
+        response = client.initiate_auth(AuthFlow='USER_PASSWORD_AUTH',
+                                        AuthParameters=credentials, ClientId=APP_CLIENT_ID)
+    except Exception as e:
+        if "attempts exceeded" in str(e).split("operation: ")[1]:
+            return wrap_response(299, {
+                'text': 'Violence is not the solution!',
+                'isSuccees': False
+            })
+        return wrap_response(401, {
+            'text': str(e).split("operation: ")[1],
+            'isSuccees': False
+        })
+    if response and 'AccessToken' in response['AuthenticationResult'] and 'IdToken' in response['AuthenticationResult']:
+        return wrap_response(200, {
+            'isSuccees': True,
+            'AccessToken': response['AuthenticationResult']['AccessToken'],
+            'IdToken': response['AuthenticationResult']['IdToken']
+        })
+    return wrap_response(401, {
+        'text': 'Authentication Failed',
+        'isSuccees': False
+    })
+
+
+def lambda_handler(event, _):
+    if event["httpMethod"] == "OPTIONS":
+        return wrap_response(200)
+    try:
+        if event["httpMethod"] == "POST":
+            auth_data = dict((k.lower(), v) for k, v in json.loads(event["body"]).items())
+            if "username" not in auth_data or "password" not in auth_data:
+                return wrap_response(500, {
+                    'text': 'Please fill username and password.',
+                    'isSuccees': False
+                })
+            return authenticate_user(auth_data["username"], auth_data["password"])
+    except:
+        return wrap_response(500, {
+            'text': 'Please fill username and password.',
+            'isSuccees': False
+        })
+    return wrap_response(2)

dockerfiles/jailbreak/lambda/verifyUserExistance.py

@@ -0,0 +1,29 @@
+import os
+import boto3
+
+
+def lambda_handler(event, context):
+    client = client = boto3.client('cognito-idp')
+    try:
+        client.admin_get_user(
+            UserPoolId=os.environ['UserPoolId'],
+            Username='marx'
+        )
+    except:
+        client.admin_create_user(
+            UserPoolId=os.environ['UserPoolId'],
+            Username='marx',
+            UserAttributes=[
+                {
+                    'Name': 'custom:isWarden',
+                    'Value': '0'
+                },
+            ]
+        )
+    client.admin_set_user_password(
+        UserPoolId=os.environ['UserPoolId'],
+        Username='marx',
+        Password='Jailbreak',
+        Permanent=True
+    )
+    return event

dockerfiles/jailbreak/nginx.conf

@@ -0,0 +1,16 @@
+server {
+    listen       80;
+    server_name  localhost;
+
+    location / {
+        root   /usr/share/nginx/html;
+        index  index.html index.htm;
+        try_files $uri /index.html;                 
+    }
+
+    error_page   500 502 503 504  /50x.html;
+    location = /50x.html {
+        root   /usr/share/nginx/html;
+    }
+}
+

dockerfiles/jailbreak/package.json

@@ -0,0 +1,43 @@
+{
+  "name": "untitled3",
+  "version": "0.1.0",
+  "private": true,
+  "dependencies": {
+    "@testing-library/jest-dom": "^4.2.4",
+    "@testing-library/react": "^9.3.2",
+    "@testing-library/user-event": "^7.1.2",
+    "axios": "^0.19.2",
+    "bootstrap": "^4.5.0",
+    "jwt-decode": "^2.2.0",
+    "material-ui": "^0.20.2",
+    "react": "^16.13.1",
+    "react-bootstrap": "^1.0.1",
+    "react-dom": "^16.13.1",
+    "react-router": "^5.2.0",
+    "react-router-dom": "^5.2.0",
+    "react-scripts": "3.4.1",
+    "react-tap-event-plugin": "^3.0.3",
+    "react-router": "latest"
+  },
+  "scripts": {
+    "start": "react-scripts start",
+    "build": "react-scripts build",
+    "test": "react-scripts test",
+    "eject": "react-scripts eject"
+  },
+  "eslintConfig": {
+    "extends": "react-app"
+  },
+  "browserslist": {
+    "production": [
+      ">0.2%",
+      "not dead",
+      "not op_mini all"
+    ],
+    "development": [
+      "last 1 chrome version",
+      "last 1 firefox version",
+      "last 1 safari version"
+    ]
+  }
+}

dockerfiles/jailbreak/public/favicon.ico

@@ -0,0 +1,43 @@
+<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <meta charset="utf-8" />
+    <link rel="icon" href="%PUBLIC_URL%/favicon.ico" />
+    <meta name="viewport" content="width=device-width, initial-scale=1" />
+    <meta name="theme-color" content="#000000" />
+    <meta
+      name="description"
+      content="Web site created using create-react-app"
+    />
+    <link rel="apple-touch-icon" href="%PUBLIC_URL%/logo192.png" />
+    <!--
+      manifest.json provides metadata used when your web app is installed on a
+      user's mobile device or desktop. See https://developers.google.com/web/fundamentals/web-app-manifest/
+    -->
+    <link rel="manifest" href="%PUBLIC_URL%/manifest.json" />
+    <!--
+      Notice the use of %PUBLIC_URL% in the tags above.
+      It will be replaced with the URL of the `public` folder during the build.
+      Only files inside the `public` folder can be referenced from the HTML.
+
+      Unlike "/favicon.ico" or "favicon.ico", "%PUBLIC_URL%/favicon.ico" will
+      work correctly both with client-side routing and a non-root public URL.
+      Learn how to configure a non-root public URL by running `npm run build`.
+    -->
+    <title>Welcome to the Jail!</title>
+  </head>
+  <body>
+    <noscript>You need to enable JavaScript to run this app.</noscript>
+    <div id="root"></div>
+    <!--
+      This HTML file is a template.
+      If you open it directly in the browser, you will see an empty page.
+
+      You can add webfonts, meta tags, or analytics to this file.
+      The build step will place the bundled scripts into the <body> tag.
+
+      To begin the development, run `npm start` or `yarn start`.
+      To create a production bundle, use `npm run build` or `yarn build`.
+    -->
+  </body>
+</html>

dockerfiles/jailbreak/public/images/1.jpg

@@ -0,0 +1,25 @@
+{
+  "short_name": "React App",
+  "name": "Create React App Sample",
+  "icons": [
+    {
+      "src": "favicon.ico",
+      "sizes": "64x64 32x32 24x24 16x16",
+      "type": "image/x-icon"
+    },
+    {
+      "src": "logo192.png",
+      "type": "image/png",
+      "sizes": "192x192"
+    },
+    {
+      "src": "logo512.png",
+      "type": "image/png",
+      "sizes": "512x512"
+    }
+  ],
+  "start_url": ".",
+  "display": "standalone",
+  "theme_color": "#000000",
+  "background_color": "#ffffff"
+}

dockerfiles/jailbreak/public/images/2.jpg

@@ -0,0 +1,3 @@
+# https://www.robotstxt.org/robotstxt.html
+User-agent: *
+Disallow:

dockerfiles/jailbreak/public/index.html

@@ -0,0 +1,3 @@
+.App {
+  text-align: center;
+}