Competing at the Collegiate Penetration Testing Competition was a great opportunity to experience realistic security work. UT placed second in the North East Regionals. I was responsible for working on the windows boxes. Finding an anonymous FTP server gave me access to windows back-ups. From these back-ups, I was able to extract ssh keys. The FTP server allowed the use of the PORT command, which allowed me to perform an FTP bounce attack. …