Teacher

Hey just started this discussion. :)

«13456

Comments

  • This is very annoying
    I can't find anything

    0xRick

  • a hint, if u have been to uni then u will see it and all first u need is pass then do math quiz

  • edited December 2

    Spoiler Removed - egre55

  • @Ahm3dH3sham said:
    This is very annoying
    I can't find anything

    I find way too much, but 99% is useless, haven't found the 1% yet either

  • @salute101 said:
    a hint, if u have been to uni then u will see it and all first u need is pass then do math quiz

    I think I have several things to try ONCE I get creds , that's what I'm having trouble with , can't seem to extract any ...

    Hack The Box

  • I have 14/15 of creds, but cant find 15/15 part :( Some trickery there!

  • @Laegir said:
    I have 14/15 of creds, but cant find 15/15 part :( Some trickery there!

    are they valid creds? can you login with them?

  • I have been searching for creds for a while only have a possible user name

    0xRick

  • edited December 1

    I also am seeing the (most likely) intended vuln, and a potential user, but not sure how to get that users creds. already tried the obvious first name last name, first name initial last name, or just last name, plus all the regular default passwords (admin, password, username) etc. do I need to resort to brute forcing all these possible usernames against a larger list (maybe custom word list)? i always leave brute forcing for last but it seems pretty obvious what the vuln is, just need the creds.

  • @0xEA31 dude tell us some hints

  • I got a very small passwordlist. One of them should be the right pass. Just searching for the right user name.

  • Managed to get low priv shell - hint F12

  • I managed to find the password "Th4*******", and it says I need to find the last character. I tried bruteforcing the login using "Gio****" as the username. Am I on the right lines?

  • @f1ndm3 said:
    I managed to find the password "Th4*******", and it says I need to find the last character. I tried bruteforcing the login using "Gio****" as the username. Am I on the right lines?

    Yes.

  • Has anyone gotten around the "Cannot get the specified dataset...." issue when trying to RCE?

  • Has anyone gotten around the "Cannot get the specified dataset...." issue when trying to RCE?

    I too would LOVE to know how to fix this dataset thing

  • edited December 2

    oh man that was a lame way to get user password. its just a game of hide and seek that doesnt make any real world sense.

    hint look at every file on every site. if a file doesnt open when you expect it to, find out why not.

  • edited December 2

    Hint for user - don't be like me and don't ignore common things during priv esc
    Edit Rooted!

  • I cannot for the life of me figure out what the username is and it's probably something very obvious that I'm just not seeing...

  • Hint for Root:

  • @ChillPenguin said:

    Has anyone gotten around the "Cannot get the specified dataset...." issue when trying to RCE?

    I too would LOVE to know how to fix this dataset thing

    I didnt get that error. if you have the right POC its just a matter of reading the writeup and then using the right sequence of events. made pretty clear in the POC video

    I'm working on getting user. if I have a shell that doesnt mean I have user.txt right? or am I just not seeing it?

  • @SW4gb3JkZXIgdG said:

    @ChillPenguin said:

    Has anyone gotten around the "Cannot get the specified dataset...." issue when trying to RCE?

    I too would LOVE to know how to fix this dataset thing

    I didnt get that error. if you have the right POC its just a matter of reading the writeup and then using the right sequence of events. made pretty clear in the POC video

    I'm having sort of the opposite issue. No errors, but also no execution. I know exactly which video you're talking about and did everything the same.

  • Cannot seem to find any hint of a password on the teacher site. I've looked through every little obscure folder that gobuster found, no luck. A tip would be appreciated

  • edited December 2

    @opt1kz said:

    @SW4gb3JkZXIgdG said:

    @ChillPenguin said:

    Has anyone gotten around the "Cannot get the specified dataset...." issue when trying to RCE?

    I too would LOVE to know how to fix this dataset thing

    I didnt get that error. if you have the right POC its just a matter of reading the writeup and then using the right sequence of events. made pretty clear in the POC video

    I'm having sort of the opposite issue. No errors, but also no execution. I know exactly which video you're talking about and did everything the same.

    You may need to reset the box and try again. It's possible maybe somebody else ran a command that hosed it? Always run and confirm ping works first before you get crazy with RCE. Dont forget to limit ping to 1 (or else it runs forever).

    @legerdemain said:
    Cannot seem to find any hint of a password on the teacher site. I've looked through every little obscure folder that gobuster found, no luck. A tip would be appreciated

    Look again. Open every file you find. If you cant open it, try to find out why you can't (or try to open it another way). Dont limit your search to the teachers site either.

    I'm working on getting user. if I have a shell that doesnt mean I have user.txt right? or am I just not seeing it?

    Answering my own question; having a shell doesnt imply user. More digging gets you what you need.

  • Rooted last night. Fun box, although the user creds thing was a little unrealistic.

    Thanks @Gioo!

  • edited December 2

    enumerating from almost 2 hours, still failed to get password, where it is hidden? some comments says password is hidden somewhere on a file so i opened every file but most of them are not accessable, tried those files in another way but still BLANK :( who says this is easy machine it could be but it is really confusing machine just it seems easy...

    EDIT :- really weird machine just look all directories thanks to @salute101 and @tvgdb :) now it seems very easy


    Leaning From Cracking......

  • @Laegir said:
    Hint for Root:

    I just rooted this box and i don't get this hint at all...

  • I have been enumerating since yesterday. There's a ton of files which I looked at. Still can't find any credentials. Can anyone give a hint?

  • @shortdevil101 said:
    I have been enumerating since yesterday. There's a ton of files which I looked at. Still can't find any credentials. Can anyone give a hint?

    In the same boat, any hints?

  • @Phrenesis2k said:

    @Laegir said:
    Hint for Root:

    I just rooted this box and i don't get this hint at all...

    Well, it depends. If you just want to read the flag then you don't need to use the hint, so I think this is meant for those who are going for the root shell, which took me a while to figure the right steps.

Sign In or Register to comment.