Allow anonymous in all networks, remove br with the flag in login

r4ulcl · Dec 16, 2024 · ab00efc · ab00efc
1 parent 6d176c5
commit ab00efc
Show file tree

Hide file tree

Showing 5 changed files with 16 additions and 26 deletions.
diff --git a/APs/config/html/login.php b/APs/config/html/login.php
@@ -79,53 +79,27 @@
 
   # Check IP from CONTOSOREG Relay
   if (strpos($_SERVER['REMOTE_ADDR'], '192.168.7.') !== false) {
-    #relay user
-    echo "<br><br>";
-    echo "<br><br>";
     echo "flag{3ddc7691df2591decd6ae75b30c4b917cedf6bd2}";
-    echo "<br><br>";
-    echo "<br><br>";
   }
 
   # Check IP from CONTOSOREG Tablets Relay
   if (strpos($_SERVER['REMOTE_ADDR'], '192.168.18.') !== false) {
-    #relay user
-    echo "<br><br>";
-    echo "<br><br>";
     echo "flag{de9d7be205df3a9422b7fe054995aac57c41bdbb}";
-    echo "<br><br>";
-    echo "<br><br>";
   }
 
   if (strpos($_SERVER['REMOTE_ADDR'], '192.168.1.') !== false) { #only WEP
-    #relay user
-    echo "<br><br>";
-    echo "<br><br>";
     echo "flag{c342fe657870020a1b164f2075f447564fdd1c3d}";
-    echo "<br><br>";
-    echo "<br><br>";
   }
 
   if (strpos($_SERVER['REMOTE_ADDR'], '192.168.14.') !== false) { #only SAE management
-    #relay user
-    echo "<br><br>";
-    echo "<br><br>";
     echo "flag{a192e7909455cb1ffd1d2355e70e2ef0f4ccc811}";
-    echo "<br><br>";
-    echo "<br><br>";
   }
 
   if (strpos($_SERVER['REMOTE_ADDR'], '192.168.15.') !== false) { #only SAE IT
-    #relay user
-    echo "<br><br>";
-    echo "<br><br>";
     echo "flag{f4629b4c22636fa0ae72eb5d1cf9caf88b4ecbee}";
-    echo "<br><br>";
-    echo "<br><br>";
   }
 
   if (strpos($_SERVER['REMOTE_ADDR'], '192.168.8.') !== false) { //only MGT TLS
-    echo "<br><br>";
     echo "Hello Global Admin:";
     echo "<br><br>";
     echo "Your pass is: SuperSuperSecure@!@";

diff --git a/APs/config/mgt/hostapd_wpe.eap_user b/APs/config/mgt/hostapd_wpe.eap_user
@@ -109,6 +109,13 @@
 *	PEAP,TTLS,TLS,FAST [ver=1]
 #"t"	GTC,TTLS-PAP,TTLS-CHAP,TTLS-MSCHAP,MSCHAPV2,MD5,GTC,TTLS,TTLS-MSCHAPV2 "password" [2]
 
+# Allow anonymous identity
+"CONTOSO\anonymous"		GTC
+"CONTOSO\anonymous"		MSCHAPV2
+"anonymous@CONTOSO"  GTC
+"anonymous@CONTOSO"  MSCHAPV2
+
+
 "CONTOSO\Administrator"			GTC			"SuperSecure@!@" [2]
 "CONTOSO\Administrator"			MSCHAPV2			"SuperSecure@!@" [2]
 "CONTOSO\juan.tr"			MSCHAPV2		"bulldogs1234" [2]

diff --git a/APs/config/mgt/hostapd_wpe_relay.eap_user b/APs/config/mgt/hostapd_wpe_relay.eap_user
@@ -111,5 +111,9 @@
 
 #"t"	GTC,TTLS-PAP,TTLS-CHAP,TTLS-MSCHAP,MSCHAPV2,MD5,GTC,TTLS,TTLS-MSCHAPV2 "password" [2]
 
+# Allow anonymous identity
+"CONTOSOREG\anonymous"		MSCHAPV2
+"anonymous@CONTOSOREG"  MSCHAPV2
+
 "CONTOSOREG\luis.da"			MSCHAPV2		"u89gh68!6fcv56ed" [2]
 "CORPO\god"			            MSCHAPV2		hash:cbdc3e5938885b7a507775cf22d56351 [2]
diff --git a/APs/config/mgt/hostapd_wpe_relay_tablets.eap_user b/APs/config/mgt/hostapd_wpe_relay_tablets.eap_user
@@ -111,4 +111,8 @@
 
 #"t"	GTC,TTLS-PAP,TTLS-CHAP,TTLS-MSCHAP,MSCHAPV2,MD5,GTC,TTLS,TTLS-MSCHAPV2 "password" [2]
 
+# Allow anonymous identity
+"CONTOSOREG\anonymous"		MSCHAPV2
+"anonymous@CONTOSOREG"  MSCHAPV2
+
 "CONTOSOREG\luis.da"			MSCHAPV2		"u89gh68!6fcv56ed" [2]
diff --git a/APs/config/mgt/hostapd_wpe_tls.eap_user b/APs/config/mgt/hostapd_wpe_tls.eap_user
@@ -109,6 +109,7 @@
 
 # Allow anonymous identity
 "GLOBAL\anonymous"		TLS
+"anonymous@GLOBAL"  TLS
 
 # Existing user identities
 "GLOBAL\GlobalAdmin"		TLS