Sand Castle

⚙️Sand Castle setup

If you didn't set up the sandcastle profile's infrastructure, please do so by running the command docker-compose --profile sandcastle up.

Access this link to interact with the application's web user interface. Use the ubuntu:ubuntu credentials for login.

Description

Sand Castle is a lightweight piece of software that runs on a Debian-based server and allows users to control it through their browsers. Furthermore, it allows anonymous Internet users to profit from a range of free actions, such as changing the format of an image.

Features

• Logging in with the credentials of the operating system
• Listing details of the user, such as the UID
• Accessing open utilities, which are distributed for free to Internet users
  • Converting the format of an image
• Exploring the file system by running commands from an allow list
• Uploading tar archives to the user's home
• Entering the recovery mode if the credentials were lost

Architecture

The following C4 diagram shows the application's general architecture:

Deployment

It should be deployed on-premise, on each host that wanted to be accessible and (partially) managed via a web interface.

Demo

note

In an August 2024 upgrade, the vulnerable codebase was renamed from Ubuntu Portrait to Sand Castle. The demos below have not been updated because the old and new features are not substantially different. They will be updated soon.