I need someone to build Docker boxes that has a flag (just a random generated code) that hackers can fetch and share to prove they got access.
- The docker image must work without an internet connection - since I do not want hackers to be able to use the docker instance for any outgoing requests.
- All docker images must be provided with a command that can update the flag code, like: docker exec name_of_box echo "newFlagCode" > /[login to view URL]
- All docker images must come with an easy to understand step-by-step guide on how to access the flag without knowing where it is or how to gain access to it
- All docker images must use a known vulnerability or be accessible through common penetration.
I am willing to pay per Docker image that is created. All rights to the images, guides and such, will be owned by me after payment is done.
I am willing to pay a price per image.
An example of a docker box would be the Gitea version that is vulnerable to remote code execution, which can allow anyone to make an SSH tunnel and accessing the box through that tunnel.
However, I have built this box already but was unable to get it to work without an internet connection.
Guide for basic understanding: [login to view URL]
Looking forward to talking more with you developers, penetration testers, and security researchers.