This is a Dockerized GDB based CTF challenge written by kuilin for SIGPwny, released during UIUCTF 2020, that showcases the security implications of doing "target remote" to an untrusted endpoint, even with set remote system-call-allowed set to false.
Yes, the Dockerfile is the entire challenge, and should be distributed directly to the people.