hmm I lost on firewall I think i have to jump to port 4* * 4 via FW onto vault (..*.2) I have a new ssh creds for d**e on the next upcoming server and saw networking config on DN* But no idea how to jump. From where.
anyone could give a me hint (not spoiler) in how to proceed with the G** file?
Do I need to copy that file to my machine or do everything at Vault box?
@bokanrb said:
anyone could give a me hint (not spoiler) in how to proceed with the G** file?
Do I need to copy that file to my machine or do everything at Vault box?
All the tools associated with text-based file transfer were missing in V???t. In the end, I'd to rely on snake language to encode the g?? file. Even so, the executable was partially hidden.
@limbernie said:
All the tools associated with text-based file transfer were missing in V???t. In the end, I'd to rely on snake language to encode the g?? file. Even so, the executable was partially hidden.
There's a secure way of transferring the g* file out from V.
Hey everyone, having trouble with the RCE in the o**n part. Tried everything I can think of.. Im clearly misunderstanding something. If someone could give me a slight nudge in the right direction please PM me
Hey Guys, I'm really stuck to go from D box to V box. I just don't find any path, I already read the discussions here but still stuck ...
Can someone PM me for a little nudge please ?
Finally rooted this box, I am addicted to this website, its so awesome and I get to learn new things daily.
This was really a 10/10 for me just because i had to learn a few concepts.
Feel free to PM me for help if needed as always. Cheers and good luck to everyone.
Rooted. This was a great VM! Every time I do one of these I get stuck on something that I kick myself afterwards for not knowing ahead of time. The biggest advice I can give to anyone doing these is to take notes of what you were stuck on in a document you can refer to for future CTF's. My notes have gotten pretty extensive since I started. My biggest takeaway from this VM was the long route to user and the cool pivoting techniques you had to perform, and then an added note to READ EVERYTHING YOU CAN! That was my "kick myself" moment.
Hey guys any help on initial web foothold lmao. I have enumerated all the way until what I believe to be the last directory. I am currently using gobuster and have tried multiple file extensions with no luck. I have enumerated headers and status codes just to be safe and I can't find what is the "upload" file.
So I'm in as d**e on the first machine, and I'm able to interact with the GUIs on the 5*** ports but not able to login. I've played with the o*****n page but can't seem to get a callback. Anybody able to nudge?
@voncount said:
So I'm in as d**e on the first machine, and I'm able to interact with the GUIs on the 5*** ports but not able to login. I've played with the o*****n page but can't seem to get a callback. Anybody able to nudge?
Can anyone tell me is there any chance to get root shell apart from having root.txt.??
Also if it was intended to have root.txt before having a root shell ?
Thanks @clmtn for the help! I am on the right track, but it seems that the website functionality to update the *.**pn file is not working properly (on eu-free)..frustrating.
Comments
hmm I lost on firewall I think i have to jump to port 4* * 4 via FW onto vault (..*.2) I have a new ssh creds for d**e on the next upcoming server and saw networking config on DN* But no idea how to jump. From where.
rooted. ykataky{HINT}I dont remember when was the last time I had to use so many tunnels
It was Fun thx creator
anyone could give a me hint (not spoiler) in how to proceed with the G** file?
Do I need to copy that file to my machine or do everything at Vault box?
Hi there, I have PM'd you.
All the tools associated with text-based file transfer were missing in V???t. In the end, I'd to rely on snake language to encode the g?? file. Even so, the executable was partially hidden.
Write-ups | Discord - limbernie#0386
There's a secure way of transferring the g* file out from V.
Write-ups | Discord - limbernie#0386
Very nice machine, just rooted it and so far this is one of the real life case scenario machines.
Hey everyone, having trouble with the RCE in the o**n part. Tried everything I can think of.. Im clearly misunderstanding something. If someone could give me a slight nudge in the right direction please PM me
Hey Guys, I'm really stuck to go from D box to V box. I just don't find any path, I already read the discussions here but still stuck ...
?
Can someone PM me for a little nudge please
EDIT: NVM got it after a reset of someone !!
i lived three days in "vault" to get root flag. thanks "nol0gz" for this maze
Got root..
Awesome machine and environment....
I just love this type of machine to jump from one to another.....
I think user is easy but root is super easy...
can some one give me a hint. I got the directory and login page. not able to guess the credentials. Any hint/nudge appreciated. Thanks.
Edit: Nvm got the directory and reverse shell. Looking for user.txt now.
Finally rooted this box, I am addicted to this website, its so awesome and I get to learn new things daily.
This was really a 10/10 for me just because i had to learn a few concepts.
Feel free to PM me for help if needed as always. Cheers and good luck to everyone.
Rooted! One of the best VM!
Rooted. This was a great VM! Every time I do one of these I get stuck on something that I kick myself afterwards for not knowing ahead of time. The biggest advice I can give to anyone doing these is to take notes of what you were stuck on in a document you can refer to for future CTF's. My notes have gotten pretty extensive since I started. My biggest takeaway from this VM was the long route to user and the cool pivoting techniques you had to perform, and then an added note to READ EVERYTHING YOU CAN! That was my "kick myself" moment.
can someone hint me in the last step of the root?
Got the port and password. But not able to move to the V**** from D**.
edit.1: Trying on wrong machines. So not able to move to V****
Now on to root.
Got root and now it's one of my favourites machines... Method to get root it's really interesting
Hey guys any help on initial web foothold lmao. I have enumerated all the way until what I believe to be the last directory. I am currently using gobuster and have tried multiple file extensions with no luck. I have enumerated headers and status codes just to be safe and I can't find what is the "upload" file.
Got root.txt.
thanks @Virgula and @1NC39T10N
hint: run the commands on right machines.
Any tips/hints? Enumerating atm and found /u*****s directory but getting a 403. DIrb big.txt doesn't find anything after that.
So I'm in as d**e on the first machine, and I'm able to interact with the GUIs on the 5*** ports but not able to login. I've played with the o*****n page but can't seem to get a callback. Anybody able to nudge?
I'll send you a PM to see if I can help you out.
Can anyone tell me is there any chance to get root shell apart from having root.txt.??
Also if it was intended to have root.txt before having a root shell ?
If anyone need help with machine feel free to pm
(13) 4 days journey of inception.
Learned about ssh port forwarding.
Hi there,
Could someone give me some directions or discuss (PM) about exploiting o*****n?
I was able to get a callback, but no way on getting a reverse shell.
I appreciate if someone could help me out.
Cheers
EDIT: NVM, already got root! Thanks for everyone that helped me.
PM me for hints!
Cheers
what an awesome box! thanks, @nol0gz!
hi all. why I cannot modify that *.**pn file?? i update it and it is still waiting waiting all the time.. someone please PM me
Thanks @clmtn for the help! I am on the right track, but it seems that the website functionality to update the *.**pn file is not working properly (on eu-free)..frustrating.