Ok you have to use injection to the database
I was wondering if you could help me find the hashes you found in rabbit? I keep coming back to this stupid box lol. Any help would be great.
Hello, Newb question here. First box I got into. I have shell access with system rights. How do I summit to HTB i got in or what am looking for now?
maybe you can help me, where did you find the hash for user sammy that you want to crack? Maybe I can help you to crack it.
I'm doing the sunday box. I'm loged in as sunny, after some enumeration I have no clue on how to priv esc to become sammy. Maybe you can give me a hint on how to become sammy.
Thank you very much
Any chance I could get a nudge on Rabbit - tried uploading all sorts of different doc/odt files but nothing seems to give me shell. I can get NTLM hashes and a username - but not shell.
Is it payload related perhaps?
Hey saw your post on olympus. Can you give me a nudge in the right direction? I've got the cap file and decrypted it. Though I'm stuck as to where I go next. Thanks
Hey FFEJ , i'm little bit stuck to get the user flag . my xxe injection file does not work at all , could you give me a little help please ?
I'm doing the sunday box. I'm loged in as sunny, can you give me a hint on how to become user. I'm doing some enumeration but cant find something, maybe I miss something
I am unchecking some checkboxs.
Any help with initial access to webportal on hawk. FTP has literally nothing in it.... wtf. Also website itself has no vulnerabilities. without loggin in first
Hey bro! I need help with Hawk lmaoooo you said i have to look at the ftp service. their is literally nothing their other than a folder called messages.
Thats it no .enc file nothing.
can you give me any hint for creds on 2nd web app in mischeif box
i try a common creds but noway
Hello i need your help on Smasher box. I know this is smash the stack exploitation but mine doesnt seem to work. I need your help Please