Haystack

1246723

Comments

  • Rooted ! What a fun box.

    I don't get why people are calling the box frustrating or "Too CTF-style for my taste". If you read the documentation properly, it's all there in front of your eyes. Has a satisfying root !
    Beautiful !

    Also, the EU servers are toxic. I don't get why people think it's a good idea to troll over broadcast.

  • very frustrating box!!! not able to get the user no clue either with elastic search i've used all possible ways

  • Don't you just love it when people copy the root flag into /tmp and leave it there?

    Hack The Box

  • I feel like that just ignores the purpose. I feel like elevating permissions is more satisfying then just getting the root flag and calling it done.

  • edited July 2019

    I'm also having a hard time with the node port. I'm reading the documentation but it's a lot and I'm not sure where to look.

    I did find a username and password, but they do not seem to work.

    EDIT:

    Ok, the box was reset and those supposed username and password are gone so that's not it. The only thing I managed to find are "banking" details.

    Vex20k

  • I can't believe there isn't any tools that automatically dump all the data from the stack, do you guys know any?
    Go query by query is cumbersome...

    Uvemode
    OSCP | eCPPT |

  • @Uvemode search Gtihub. You'll find one.

  • edited July 2019

    So close to root, I can taste it ... >.<

    /e: Got it.

    Hack The Box

  • Hey,
    Please PM me any nudges for root...
    got stuck with l******h, not able to make anything useful out of it.

  • Rooted !

    Nice box, not that CTF-like after all (only user part).
    I really liked the privesc though.

    PM me if needed :)

  • Type your comment> @adam12 said:

    @Uvemode search Gtihub. You'll find one.

    Right, I thought it was only for local stacks, don't ask me why.

    Uvemode
    OSCP | eCPPT |

  • i found some information in b*** and q***** but i dont know what i have to do now , anybody can help me ?

  • Please stop using the WALL command to ask questions inside the box... Use these forums for help. Stop assuming people using the box want the answer....don't spoil it for everyone else.

  • Spanish or Vanish..!!..Lol

    I Love Ice Creams

  • just got root

  • Type your comment> @adam12 said:

    @Uvemode search Gtihub. You'll find one.

    Depending on your syntax, you can actually do it all without the tool anyways.


    Hack The Box
    defarbs.com | Retired Machine Writeups! - "Let me just quote the late, great Colonel Sanders, who said, 'I'm too drunk... to taste this chicken.'”

  • Spoiler Removed

  • Lol this box has probably the lowest upvote-to-downvote ratio of all the released machines.

    At least the privesc is not too bad haha, but wow.

  • If anybody's willing to help me on root privesc please DM me I'm so close but I'm tearing my elephant hair out.

    Thank you

  • edited July 2019

    I got user from 22 but now can't connect to s*h why?I already got s***** and s****..y.

  • i'm stuck here in enumeration part, any nudge would be helpful.

  • nice privesc. learned a lot about elk

  • edited July 2019

    I went from s******y user to being the k****a user, but not sure how to get root from here. Is this a rabbit hole?

  • Finally Rooted.
    I agree with the fact that root is much more fun than user ;)

  • Type your comment> @zxctypo said:

    I went from s******y user to being the k****a user, but not sure how to get root from here. Is this a rabbit hole?

    I think it is not.

  • I can only seem to find "s******y", but not the password. I managed to dump all the data, should I keep looking within this data?

    Vex20k

  • edited July 2019

    Type your comment> @Vex20k said:

    I can only seem to find "s******y", but not the password. I managed to dump all the data, should I keep looking within this data?

    Username is not far away from password :) Look at the data carefully.

  • Frustrating... I cannot even run a simple 'ls' cuz the ssh freezes. :-1:

  • I got user now I have access as someone else (k)... could someone drop me a hint on root at this point? The enumeration I've done isn't getting me anywhere with priv esc so far.

Sign In to comment.