Hi can you tell me how do you pass limit restriction for any rop chain in oldbridge challenge:
(magic_word(6)+1026)+canary(8)+rip(8) =1048 bytes and we can put only 1056 bytes. ?
So there is only possibility to directly jump to code but where ?
Hi, I'm completing the Jerry box.
Was just wondering if you mind giving me a nudge in the right direction?
I've been able to do the following:
My only thought is that there I could upload some type of WAR file that will give me some shell access?
Let me know if there's a simpler way (and a hint)
Any other hint for Keep Tryin ?
It will be greatly appreciated.
any tips to priv esc? I seem to be stuck in a restricted shell...
on Waldo I see the supervisord file, does the privesc have something to do with it? Also it seems like I'm in a locked shell (sudo can't be found and I can't execute binaries). Any nudge would help.
Was hoping you could help me out escalating on REEL.. I have the TOM user but can't figure out how to leverage powerview/bloodhound to attack the next step... I can't load the acls.csv file into my bloodhound it just always says "unrecognized file".. I'm assuming theres a version issue there.. can you provide a nudge? much appreciated!
How many days till a box is retired?
Hi P1g30n, i've sent you a pm.
I'm sorry for the late answer
Hello!! Please, can you give me some hint about tartarsauce?
I've found wordpress and monstra 3.0.4. In monstra there is an exploit for RCE but I cannot upload the file. I've just discovered wordpress installation but I don't know what to do :-(
I see that tomorrow machine will be retired. If you can give some hint to get the user I'll appreciate it. Thanks
Hii May i get some hint about bypassing the filter of dignostics to run commands on carrier