Recent Activity

Activity List

  • jorgebsh changed their profile picture.
    Thumbnail
    May 6
  • Samrat78781

    hi

    May 6
  • Kariminal

    Hi I'm working on the notebook your box, and wanted to sanity check whether my approach to priv escalating to root is correct. I'm using this exploit: https://github.com/Frichetten/CVE-2019-5736-PoC, I changed the payload multiple times e.g. /bin/bash or rev shell bash etc. However when I use it, it successfully run but I get no shell back or commands actually executed, instead just the no /bin/sh error (when running it with /bin/sh to trigger the exploit. Ty in advance

    May 5
  • Welcome Aboard!
    May 4
  • MrNiceGuy

    Cereal Help:
    I'm starting to think I'm in over my head but I'm still working on this one.
    I found the jwt secret and can make a jwt to use but I am not seeing how to use it. The source doesn't create it until after a successful login. I don't know if this is the right direction....if it is I am stuck.

    May 4
  • kaustuvP changed their profile picture.
    Thumbnail
    May 4
  • Grenada changed their profile picture.
    Thumbnail
    May 4
  • Welcome Aboard!
    May 3
  • systemcheater

    can you help me with the love machine ?

    May 4
  • Skills Assessment - Web Fuzzing.

    Stuck in the last question of the assessment.

    Try fuzzing the parameters you identified for working values. One of them should return a flag. What is the content of the flag?

    I have user and username parameters but can't find out the values to work with. Need help please.

    May 4
  • zeroPrince

    Hi. Could you give me a hint for the Toxic web problem? I'm new at this.

    May 4
  • Alexal changed their profile picture.
    Thumbnail
    May 4
  • Dreadless changed their profile picture.
    Thumbnail
    May 4
  • EVIL5OUL

    Bro in final assignment of file inclusion . I got the source code(appends php at the end, ".. "not possible.
    i tried to get /var/log/nginx/access.log using php wrapper but no luck. Can you help to complete this challenge

    May 3
  • Welcome Aboard!
    May 2
  • Angeldragon99 changed their profile picture.
    Thumbnail
    May 3
  • Jier changed their profile picture.
    Thumbnail
    May 3
  • AlchemistDobby changed their profile picture.
    Thumbnail
    May 2
  • Flecart

    hello could you help me with toxic challenge?

    I know that the flag is in some format like /flag_AAAAA but i don't know how to get it.
    I tried like some ../../../flag_sometext but the website always answers200

    May 2
  • stealthbeat, 0rb0rus, r007u53r, mercer98, nmohcen and 27 others joined.
    Welcome Aboard!
    May 1
  • Hurr1cane

    Hello i'm working on htb love machine and I found file scanner which allow read some local file but i can't figure out which file i need to read? can you pls give a nudge

    May 2
  • mostwantedduck changed their profile picture.
    Thumbnail
    May 1
  • Legion changed their profile picture.
    Thumbnail
    May 1
  • Legion changed their profile picture.
    Thumbnail
    May 1
  • nferocious76 changed their profile picture.
    Thumbnail
    May 1
  • HACKYME, CyberLiX, OjMambo, jwb4k3r, PandHacker and 12 others joined.
    Welcome Aboard!
    April 30
  • 7Rocky changed their profile picture.
    Thumbnail
    April 30
  • TheKilt

    I just finished tenet... What'cha got for foothold?

    April 30
  • DarkRaider007

    can you please help me with the question...Submit the contents of the flag.txt file located in the /exercise directory.

    April 30
  • SiranJivi

    howdy!!!, i saw your comment that you told you get an error saying "/bin/bash: 1#.nmap: ambiguous redirect
    " for scriptkiddie box, and i found out the solution

    you just gotta make sure you add a HRI after before the ";/bin/bash" and leave a space between ; and bash.
    And also at the last leave a space between the hash(#) and the single quote ('),

    I don't know how to reply in public, tried but can't figure out a way to reply inside the thread itself, hope it would be helpful if you still haven't got the flag

    April 30

Howdy, Stranger!

Click here to create an account.