Vault

145791013

Comments

  • Like I said, I escaped probably a second after getting on the box. It's trivial. Less than trivial.

    LegendarySpork

    LegendarySpork

  • very cool box. thanks.

    ReK2

  • I need little bit help with g** decrypt ....PM because i dont what to put spoiler here

  • Finally rooted.
    Very nice box, thank you @nol0gz

    dionero

  • Can anyone please PM me about root? Found a file in the vault but stuck working out what to do with it

  • @Waffles943 said:
    Can anyone please PM me about root? Found a file in the vault but stuck working out what to do with it

    Don't recognize that file extension, huh? Maybe you should google it and learn about what it is and how to use it ;)

    --Skunkfoot

  • i already have the user flag .. i am now d*** in 192****4 .. struggling for root ... any hints on root will be appreciated :)

  • @achayan said:
    i already have the user flag .. i am now d*** in 192****4 .. struggling for root ... any hints on root will be appreciated :)

    look into log files, maybe hint is there

  • I'm root in x.x.x.4. Stucked in a hole... I discovered an IP with no services listening.

  • how to move from dave to vault, need hint

    banteng999

  • edited November 2018

    Rooted. I enjoyed this box en learned new things again. I really like the multiple server ones. To bad this one has a step that can be a fair bit harder if you have multiple people trying to hack it.

    Anyway, for all the people asking for hints, everything needed has been said in this topic.

  • I've just rooted the box and I am a bit confused. Most of the people found the rooting hard-ish and I actually found it even a bit easy (for sure way easier than user flag). I am wondering if I rooted the box in the right way or in an unintended way, could anyone send me a PM to discuss the rooting? Thanks!


    image
                         HTB Profile


  • @0xd1360b said:
    I've just rooted the box and I am a bit confused. Most of the people found the rooting hard-ish and I actually found it even a bit easy (for sure way easier than user flag). I am wondering if I rooted the box in the right way or in an unintended way, could anyone send me a PM to discuss the rooting? Thanks!

    Yeah PM me, I'm curious how you did it

    --Skunkfoot

  • It was kind of nice to have something discovered so early be so important so late. That was tough, but I'm glad I did it.

    noahcain

  • edited November 2018

    Just FYI the poison hint is only for tunneling....

  • I had to use proxychains to get it to work on mine

    --Skunkfoot

  • edited November 2018

    [removed]

  • Ah sorry I must've misunderstood where you were at. The proxychains ssh port forward was used on my own box to open up access to a certain service accessible via local web browser. Not sure if the proxy part is actually required, but it worked for me.

    --Skunkfoot

  • Errr..I'm feeling a bit surprised about the location of the user flag. I was plotting my next step in what I believed to be a much longer game when I sort of stumbled on it.

    Regardless, nice box and which taught me a thing or two about a particular method of digging deeper. Thanks!

  • edited November 2018

    Spoiler Removed - egre55

  • edited November 2018

    Neat box. As a general hint, the admin of these machines has a TERRIBLE memory and writes everything down.

    Also, you can do the entire maneuver using resources on the boxes. You can tunnel if you want to but there are ways around it. For root, check out the logs to give you an idea of the trick to use to get SSH into doing something it doesn't normally.

    There are approximately six concepts to understand for this machine, making it more complex than most machines.

  • Got user flag, fight for root flag, need nudge

    banteng999

  • Been going at this box for 24 hrs now , I've "vaulted" over the first hurdle , broke out of Jail and "tunneled" my way to the host on the other side. I've tried LFI / RFI and even considered "shocking" the other reachable host but the tool that can do that is just a dummy ....

    I'm probably going to kick myself at some point but would really appreciate some help with this one ...

    Hack The Box

  • Don't shock anything lol. PM me and I'll see if I can help out.

    --Skunkfoot

  • edited November 2018

    I might need a little help for priv esc
    Edit: gotcha

  • Already in vault machine, need hint to decrypt PG* file

    banteng999

  • Is Vault meant to be unreachable ? I've managed to determine 2 open ports on it but can't 'initiate' a connection to them

    Hack The Box

  • Rooted , /tiphat @Skunkfoot for the nudge

    Hack The Box

  • edited November 2018

    Got root.txt without getting into Vault (Even before user.txt). I don't feel it is intended and maybe someone placed it there by mistake while doing the machine alongside me. Can I PM someone to discuss?

    Hack The Box - flash

  • @flash said:
    Got root.txt without getting into Vault (Even before user.txt). I don't feel it is intended and maybe someone placed it there by mistake while doing the machine alongside me. Can I PM someone to discuss?

    Yeah PM me, I'd definitely be interested to hear how you did it

    --Skunkfoot

Sign In to comment.