4.8 KiB
Before disabling any content in relation to this takedown notice, GitHub
- contacted the owners of some or all of the affected repositories to give them an opportunity to make changes.
- provided information on how to submit a DMCA Counter Notice.
To learn about when and why GitHub may process some notices this way, please visit our README.
Are you the copyright holder or authorized to act on the copyright owner's behalf?
Yes, I am the copyright holder.
Are you submitting a revised DMCA notice after GitHub Trust & Safety requested you make changes to your original notice?
No
Does your claim involve content on GitHub or npm.js?
GitHub
Please describe the nature of your copyright ownership or authorization to act on the owner's behalf.
My name is [private] and I'm the the [private] of the foundation Root-Me.
Please provide a detailed description of the original copyrighted work that has allegedly been infringed. If possible, include a URL to where it is posted online.
https://www.root-me.org/ : The foundation Root-Me is publishing/maintaining the portal root-me.org which is dedicated to information security learning through practical exercises and challenges. All those materials are under copyright, our legal information that users have to accept are available there :
https://www.root-me.org/?page=structure&inc=page-mentions_legales&lang=en
It is clearly forbidden (and penalized) to post exercise solution publicly. All those solutions use statement, code, URL, code of our exercises. We already propose to publish solution on our platform.
What files should be taken down? Please provide URLs for each file, or if the entire repository, the repository’s URL.
As we do not consider publishing solution as a student work or a simple mention. We found out that the Github user 'tooothl3ss' have leaked Root-Me owned exercise:
https://github.com/tooothl3ss/root-me-solvers/
Each file in the repository is a python script that automatically solves the challenge. For example, https://github.com/tooothl3ss/root-me-solvers/blob/master/blind_xpath.py send a http request for [private] which is the public URL for the challenge [private]. Another example is https://github.com/tooothl3ss/root-me-solvers/blob/master/blind_ldap.py which is for the challenge [private]. At the end of the script, the passw value contains the password that led to the challenge's success. Each player can access and solve the challenges listed in this repository without having to search for the solution on his own.
If you take a look at the repository, you will understand that the entire repository without exception contains Root-Me foundation properties that need to be deleted or at least made private.
According to your DMCA reporting guide.
Do you claim to have any technological measures in place to control access to your copyrighted content? Please see our Complaints about Anti-Circumvention Technology if you are unsure.
No
Have you searched for any forks of the allegedly infringing files or repositories? Each fork is a distinct repository and must be identified separately if you believe it is infringing and wish to have it taken down.
Yes and no fork is referenced in the repository.
Is the work licensed under an open source license?
No
What would be the best solution for the alleged infringement?
Reported content must be removed
Do you have the alleged infringer’s contact information? If so, please provide it.
No
I have a good faith belief that use of the copyrighted materials described above on the infringing web pages is not authorized by the copyright owner, or its agent, or the law.
I have taken fair use into consideration.
I swear, under penalty of perjury, that the information in this notification is accurate and that I am the copyright owner, or am authorized to act on behalf of the owner, of an exclusive right that is allegedly infringed.
I have read and understand GitHub's Guide to Submitting a DMCA Takedown Notice.
So that we can get back to you, please provide either your telephone number or physical address.
ROOT-ME PRO - [private] - [private] - [private]
Please type your full legal name below to sign this request.
[private]