Recent Activity
Activity List
-
-
-
-
-
hi Tyr4an7, may i ask you how you deal with the mariadb on whois service? ( on scavenger box)
12:46PM -
HEllo buddy , Can yu please help me with haystack.
Till now I was able to enumerate quotes and bank in EL and i was able to access Elastic searc on port 9200.
I was able to extract Security User. and I was able to do enumeration. I found that there are 2 crons. 0hourly related to 0anacron.
I am stuck and I don't know what to do with anything, i read Enurmeration report a lot and I couldn't find any loophole. is it okay to guide me ?
10:28AM -
-
Hi, for Freelancer Web challenge. I am stuck at the last stage of SQL. I don't know where to find the flag file as the current user don't have write permission I can't execute os commands. I have used dirb, dirb buster but nothing useful came by. I have dumped all the data but there also nothing useful, can you give a nudge.
7:16AM -
Sorry bothering you! i´m having this issue trying to decrypt the ConfCons.xml of Bastion with your code... do you have any idea how can I fix it? Thank you!
File "mremoteng_decrypt.py", line 49, in
main()
File "mremoteng_decrypt.py", line 45, in main
plaintext = cipher.decrypt_and_verify(ciphertext, tag)
File "/usr/lib/python3/dist-packages/Cryptodome/Cipher/_mode_gcm.py", line 504, in decrypt_and_verify
self.verify(received_mac_tag)
File "/usr/lib/python3/dist-packages/Cryptodome/Cipher/_mode_gcm.py", line 456, in verify
raise ValueError("MAC check failed")
ValueError: MAC check failed6:01AM -
-
-
Hi, any hint for user on haystack? I searched for pin, password, key, token on port 9200. I didn't find any useful information. What else should I search for? Is there any useful information for port 80 other than needle? Thanks.
1:30AM -
Hi, any hint for user on haystack? I searched for pin, password, key, token on port 9200. I didn't find any useful information. What else should I search for? Is there any useful information for port 80 other than needle? Thanks.
12:11AM -
-
-
pleas haystack help
my fb account
https://www.facebook.com/hamza1hafidAugust 17 -
-
-
Nevermind, I solved it, I missed the 2 character strings... Thanks, anyway!
August 17 -
Hi! Can you give me a hint please on Matrioshka challenge? I got the GPG encrypted binary. I can't crack it's password with rockyou. I say the false flag. I've also got the strings from matrioshka4 including the 3 characters long ones:
HTB{th1s_is_NOT_the_fl4g}
ZIP
PW:
SER
GEI
_Mal
tin
I thought there could be a ZIP with a password SERGEI_Maltin but couldn't found any other protected ZIP file. I think I'm stuck.
Thanks alot!
August 17 -
-
-
Hi
Need help with helpline, login to app as Administrator, how can i get shell?August 17 -
Hi
Need help with helpline, I log in as administrator but can't upload shell, how can I get shell.
thanksAugust 17 -
-
-
-
-
-
