Sand Castle
⚙️Sand Castle setup
If you didn't set up the
Access this link to interact with the application's web user interface. Use the
sandcastle
profile's infrastructure, please do so by running the command docker-compose --profile sandcastle up
.Access this link to interact with the application's web user interface. Use the
ubuntu:ubuntu
credentials for login.Description
Sand Castle is a lightweight piece of software that runs on a Debian-based server and allows users to control it through their browsers. Furthermore, it allows anonymous Internet users to profit from a range of free actions, such as changing the format of an image.
Features
- Logging in with the credentials of the operating system
- Listing details of the user, such as the UID
- Accessing open utilities, which are distributed for free to Internet users
- Converting the format of an image
- Exploring the file system by running commands from an allow list
- Uploading tar archives to the user's home
- Entering the recovery mode if the credentials were lost
Architecture
The following C4 diagram shows the application's general architecture:
Deployment
It should be deployed on-premise, on each host that wanted to be accessible and (partially) managed via a web interface.
Demo
note
In an August 2024 upgrade, the vulnerable codebase was renamed from Ubuntu Portrait to Sand Castle. The demos below have not been updated because the old and new features are not substantially different. They will be updated soon.