Guys, someone please give me some direction...
I've got the user and now playing with input and listening...but don't know exactly what to look for...
PM or reply is really appreciate.
Hello profs, I need some hint to get root.txt without getting root shell. I know whats going on and which process are wirting input and report. But I can't figure out how to use this commands to get root.txt as user f...s. Any help via PM is welcome. Thanks in advance.
Hi! Stuck right before root. Same problem as @Schnuffi. I know what to do, but I don't know how. I just read c*rl manual, and didn't find any clues. Google didn't help me at all.
Any PM with help is welcome, hint, maybe an article, or link about this case.
Thanks to @L4mpje for stating something I easily discarded. Hint: You CAN edit some files, it's just a matter of how. I got root flag without privesc. Now, trying to do privesc, for the heck of it
It's a bit annoying that I have to say this but, just because I posted in this forum that I got root doesn't mean I was opening myself to DMs for hints. Please, if someone doesn't say "DM me for hints" do not spam that person for hints. I don't come ot HTB forums very often, that's why I didn't offer hints for this box, so please, stop DM'ing me.
Did something on this box change? I used a component on the website as my first entry point, stepped away for a bit, and came back and the component was no longer there. I even requested a reset on the box and it seemed to go down and back up, but the component is still not there. Anyone else know what I'm talking about?
> @skiamakhe said:
> Did something on this box change? I used a component on the website as my first entry point, stepped away for a bit, and came back and the component was no longer there. I even requested a reset on the box and it seemed to go down and back up, but the component is still not there. Anyone else know what I'm talking about?
Yeah same issue here. That functionality is just gone now lol.
I need a break anyway this p*******_****** file is driving me crazy
@r3dt0rnad0
Best I can tell, someone else had compromised the site and enabled this functionality for further compromise. I just got admin site login, so I'll probably be doing the same here shortly. lol
@skiamakhe said:
Did something on this box change? I used a component on the website as my first entry point, stepped away for a bit, and came back and the component was no longer there. I even requested a reset on the box and it seemed to go down and back up, but the component is still not there. Anyone else know what I'm talking about?
I enabled that functionality for my turtle back, as are other users. There is another way in.
I found a p******d_*****p. I search on google and I find out that is a b***2 file. I can't give anymore detailes because I can give spoilers. Can some one send a PM to discuss it?
@Tugzen said:
Hi Guys,I got the reverse shell but couldn't spawn the shell.I need change to other user to read the user.txt
Any hint will be appreciate.
Thanks
Look at the p.._b.. file
Yes there is something like a password inside it.But without spawn the shell,how I can use it?I can't use su commands.(Is it possible that I am missing some very easy points,ı am such a newbie in this area)
I got the root flag but I am very interested in how to get the root shell. Can anyone PM some tips? Would be greatly appreciated. I have tried uploading stuff with the "tool" but it does not seem to work. I kind of have the idea what i should be doing but I can't seem to make it work.
Alright, I'm at the p_b file, I've researched how to determine what it is exactly and supposedly how to open it, but I'm hitting a wall, could someone PM a tip/nudge in the right direction? Much appreciated.
Edit: Figured it out why I was getting permissions errors.
Feel free to PM me if you get stuck on the same part.
Great box. Seemed to be simple but turned out to be a little bit tough, at least for me.
Don't over think it, I know it sounds meaningless but I'm serious. If you're trying to log in to the blog, just look for the user name, it's in front of your eyes. Hint: People usually introduce themselves at the first time and tell their name and such. Same thing here. Just look through the posts of the blog.
Root is pretty simple, just look for the time of the files and see if something's strange. Try to figure out what command it uses then and read about the parameters it uses.
I would love someone to PM me with a hint with getting a root SHELL.
Hello, I have come to ask you for help if you can help me, I have used several scans in joomla but I have not met some php object injection but I have not been able to exploit it, if someone can give me a tool light or just the name of the vunerability can have because I'm already a long time in this challenge thank you can send by PM, God bless everyone.
Would very much appreciate any hints towards getting the root flag! I have foudn the files of interest and know the command i need to use, and have scoured the man page, and i think i know which option to use for it. but not getting anywhere. anyone able to PM me some pointers I would be very grateful
Comments
Guys, someone please give me some direction...
I've got the user and now playing with input and listening...but don't know exactly what to look for...
PM or reply is really appreciate.
Hello profs, I need some hint to get root.txt without getting root shell. I know whats going on and which process are wirting input and report. But I can't figure out how to use this commands to get root.txt as user f...s. Any help via PM is welcome. Thanks in advance.
Hi! Stuck right before root. Same problem as @Schnuffi. I know what to do, but I don't know how. I just read c*rl manual, and didn't find any clues. Google didn't help me at all.
Any PM with help is welcome, hint, maybe an article, or link about this case.
anyone can give a heads up regarding root? i think i maybe know what's going on but could use some advice
Thanks to @L4mpje for stating something I easily discarded. Hint: You CAN edit some files, it's just a matter of how. I got root flag without privesc. Now, trying to do privesc, for the heck of it
New here on HTB; thought I'd try an easy box; user was doable but root access is hard - for me. Appreciate any hints on how to continue via DM. Tx.
It's a bit annoying that I have to say this but, just because I posted in this forum that I got root doesn't mean I was opening myself to DMs for hints. Please, if someone doesn't say "DM me for hints" do not spam that person for hints. I don't come ot HTB forums very often, that's why I didn't offer hints for this box, so please, stop DM'ing me.
any help on root would be helpful, im not sure how i what to change the i**** file
Did something on this box change? I used a component on the website as my first entry point, stepped away for a bit, and came back and the component was no longer there. I even requested a reset on the box and it seemed to go down and back up, but the component is still not there. Anyone else know what I'm talking about?
> Did something on this box change? I used a component on the website as my first entry point, stepped away for a bit, and came back and the component was no longer there. I even requested a reset on the box and it seemed to go down and back up, but the component is still not there. Anyone else know what I'm talking about?
Yeah same issue here. That functionality is just gone now lol.
I need a break anyway this p*******_****** file is driving me crazy
@r3dt0rnad0
Best I can tell, someone else had compromised the site and enabled this functionality for further compromise. I just got admin site login, so I'll probably be doing the same here shortly. lol
User was pretty easy. DM if you need a hint. Working on root
I enabled that functionality for my turtle back, as are other users. There is another way in.
any hints for getting root?
please pm me if possible
Done.
Thanks for the hints about the "middle part".
Feel free to send me a message, if you need a nudge.
I found a p******d_*****p. I search on google and I find out that is a b***2 file. I can't give anymore detailes because I can give spoilers. Can some one send a PM to discuss it?
rooted, thanks @resiliencia90 for the help.. if anyone want a hint just pm me
Hi Guys,I got the reverse shell but couldn't spawn the shell.I need change to other user to read the user.txt
Any hint will be appreciate.
Thanks
Look at the p.._b.. file
Yes there is something like a password inside it.But without spawn the shell,how I can use it?I can't use su commands.(Is it possible that I am missing some very easy points,ı am such a newbie in this area)
Spoiler Removed - egre55
Spoiler Removed - egre55
I got the root flag but I am very interested in how to get the root shell. Can anyone PM some tips? Would be greatly appreciated. I have tried uploading stuff with the "tool" but it does not seem to work. I kind of have the idea what i should be doing but I can't seem to make it work.
Alright, I'm at the p_b file, I've researched how to determine what it is exactly and supposedly how to open it, but I'm hitting a wall, could someone PM a tip/nudge in the right direction? Much appreciated.
Edit: Figured it out why I was getting permissions errors.
Feel free to PM me if you get stuck on the same part.
I'm working on root.txt? could someone PM a tip? Thank You
Can someone help me for the user login please . I searched in the source page but couldn't find any clue . I get the password in s*****.txt
Great box. Seemed to be simple but turned out to be a little bit tough, at least for me.
Don't over think it, I know it sounds meaningless but I'm serious. If you're trying to log in to the blog, just look for the user name, it's in front of your eyes. Hint: People usually introduce themselves at the first time and tell their name and such. Same thing here. Just look through the posts of the blog.
Root is pretty simple, just look for the time of the files and see if something's strange. Try to figure out what command it uses then and read about the parameters it uses.
I would love someone to PM me with a hint with getting a root SHELL.
Hello, I have come to ask you for help if you can help me, I have used several scans in joomla but I have not met some php object injection but I have not been able to exploit it, if someone can give me a tool light or just the name of the vunerability can have because I'm already a long time in this challenge thank you can send by PM, God bless everyone.
Decent box. Solutions seemed a bit contrived. The principles behind them are solid, though. I had fun.
PM me if you need help.
Would very much appreciate any hints towards getting the root flag! I have foudn the files of interest and know the command i need to use, and have scoured the man page, and i think i know which option to use for it. but not getting anywhere. anyone able to PM me some pointers I would be very grateful