Blue Team Labs Online - PIE Walkthrough
Scenario: We’ve had reports from customers that their credit card details have been stolen! Some affected users have stated that we are the only company they have submitted these details to. Confirm if there has been a breach and collection key information – our reputation depends on it!
Tool: GNU/Linux CLI, Grep, PHPMyAdmin
Question 1: On which web page did the Attacker discovered the API?
Question 2: What is the name of the php file with the configured API?
Question 3: How many fields does the API return when a customer’s data is requested?
Question 4: List all public IP addresses that have abused this API functionality (List the IPs in ascending order, with the smallest initial octet first. Ex. 185.x.x.x, 197.x.x.x)
Question 5: What is the customer name of the first customer that had their data stolen?
Question 6: What is the customer name of the last customer that had their data stolen?
Question 7: How many unique customers data, based on customer IDs(cid), have been successfully accessed?
Question 8: How many customer entries within the database have NOT had their data accessed?
