Greatings. I saw you comment at forum about Mischief. I’m stucked at priv esc. While logged as loki at ssh I see the use of file ACL for this user in /use/bin/sudo and /bin/su, but I cannot remove them with setfacl because Loki is not the owner. Also noticed a couple journal files in /var/log with ACL allowing reading by Loki, but also didn't help. Suid won’t let me go further either. Could you put me in the correct path? Thanks in advance
I hope you can help me with priv esc on the teacher machine I got a reverse shell with www-data user but I'm stuck in the priv esc to user (& root). Through my priv esc guide, I could not find any "interesting" service, process, cronjob, suid or world-writeable file...
So could you please give me a hint?
try only the symbols in the numbers and you should get the password in 3rd attempt. - hint for teacher
Hey! About the irked box. I am struggling to get the inital foothold. I know that there is a IRC service running on 6697 but I can't seem to exploit it and spawn a shell. I followed this tutorial (https://www.hackingtutorials.org/metasploit-tutorials/hacking-unreal-ircd-3-2-8-1/) to do it either manually or with metasploit but it does not do anything. Metasploit says that Exploit completed but no session created.
I should get the shell using the unreal_ircd_3281_backdoor? I checked the version with hexchat so it makes sense but I can't get it to work....Can you give me some tips or is there another way to exploit the IRC service? I am not too familiar with this. Any help is most appreciated!
hello please help with the r***s command I have a month with this command tell me how can I use
It is my first computer.
I suggest you list the directories and texts of the page you will find a lot of information with the UDP port there are tools to read the information of that port .. google is your friend to look for the tool.
i am now working on the oz box...at the initial foothold i use the following wfuzz command to scan the directory...but with no luck...so any ideas here?thanks...
wfuzz -c -w /usr/share/dirbuster/wordlists/directory-list-2.3-medium.txt -t 100 --hc 404 --hl 0 --hw 141 http://10.10.10.96:8080/FUZZ
Hi i need little bit help i fond hidden string but i dont have username for web page i try admin ,administrator ,user,carrier ,but nothing work
Hi i need little bit help with String in Carrier , i dont know how to use
Hi i need little bit help in Carrie i am stuck with string , i dont know for what is it ?
Hi i need little bit help in Carrier ...i found UDP port open , but i dont have ideea what to do with him
Now I am stuck in the rbash shell Waldo. Do I need to use the commands in bash directory to breakout of rbash jail?
dr-xr-x--- 2 root monitor 4096 May 3 2018 .
drwxr-x--- 5 root monitor 4096 Jul 24 07:58 ..
lrwxrwxrwx 1 root root 7 May 3 2018 ls -> /bin/ls
lrwxrwxrwx 1 root root 13 May 3 2018 most -> /usr/bin/most
lrwxrwxrwx 1 root root 7 May 3 2018 red -> /bin/ed
lrwxrwxrwx 1 root root 9 May 3 2018 rnano -> /bin/nano
Hi i need little bit helpt with UDP port in Carrier ... i try to get more information but i dont know how