Fly Girls Final Payload Digital Playground 2 Work

| Item | Description | |------|-------------| | | The challenge is presented as a “digital playground” hosted on a sub‑domain playground2.flygirls.ctf . It mimics a simple web‑based “game” where you upload a payload that the server will execute in a sandbox. | | Goal | Obtain the flag that lives in /root/flag.txt on the remote machine. | | Key concepts | 1️⃣ File upload & server‑side execution 2️⃣ Mis‑configured sandbox (Docker/namespace escape) 3️⃣ Binary‑only payload (no source) 4️⃣ ROP + syscalls for privilege escalation. | | Typical path | Upload a staged ELF → break out of the sandbox → gain a low‑privileged shell → perform a namespace/CGroups escape → pivot to the host → read flag.txt . |

"I've got 'em," Sasha said, sliding into the rear gunner station. She waited for the perfect beat, the moment the drones moved into a tight formation to avoid the jet’s wake. Click-clack. She opened fire, the tracers lighting up the twilight sky. One drone spiraled into a canyon wall; the other veered off, smoking. fly girls final payload digital playground 2