Json

Get ready for this... :-D

v1p3r0u5
If you need some help => 1) Your findings so far? 2) Your conclusions? 3) Your further ideas?
RESPECT++ if I was able to help you! => https://www.hackthebox.eu/home/users/profile/139772

Tagged:
«134

Comments

  • Any progress?
    I've only been trolled by a file which sounded promising until now.

    trollzorftw

  • Yep - Got nothing amazing so far, I had a lead but not sure yet if valid.
    Also got some worthless creds but i guess they are an hint

  • i take it you guys get results from nmap. For some reason i cannot even ping

  • Type your comment> @j3wker said:

    Yep - Got nothing amazing so far, I had a lead but not sure yet if valid.
    Also got some worthless creds but i guess they are an hint

    Found /a** but can't get it to do very much...

  • All sorted, Box needed a reset

  • If anyone knows anything about that .N** pm me
    maybe De***ial****** ?

  • Really enjoyed this box. I'm not sure that I did root the intended way. Likely multiple paths forward there. Tip for user: the box is named JSON for a reason. Find it. Make it talk back.

  • One of the nice boxes that I actually enjoyed a lot!

    For user, you might need to google a lot if you have no experience in this subject. I used a tool for PoC (Proof of Concept) then modified to fit my own needs.
    For root, it really is a breeze as long as you know basic windows privescs. I even have a github repo for it specifically.

    Not too many rabbit holes, pretty stable box IMO and straight to the point. Loved this box!

  • Rooted and hour ago or so :)
    Liked it a lot ! Nice machine - i learned a thing or two ! and its really real life applicable !

    Tips for user?
    Cant really give any - its either you know about it or you dont.

    Tips for root?
    Meterpreter is your best friend - but it wont work first try

  • edited September 29

    P

  • Rooted. Tips:

    • User: Watch the requests, and remember the name of the box
    • Root: Pretty simple, but the first thing you try probably won't work

    Hack The Box
    If you need help with something, PM me how far you've got already, what you've tried etc (I won't respond to profile comments). And remember to +respect me if I helped you ; )

  • rooted. funny box. Tips:

    User: Just look at the name of the box and listen to all requests; then use google
    Root: Check all open ports.

  • edited September 29

    quick box but fun and enjoyable non the less :)

    User: Google is your friend, when it works, its easier then you would have expected.
    Root: I might have taken the "harder" which required a bit of picking things apart and sorta putting them back together again. after that it was just a few commands away.

    @Cyb3rb0b thanks for giving me enjoyable sunday

    *seems i did take one of the harder routes, thanks @ratone

    -All hail the Potato-

  • edited September 29

    quick box but fun and enjoyable non the less :)

    User: Google is your friend, when it works, its easier then you would have expected.
    Root: I might have taken the "harder" which required a bit of picking things apart and sorta putting them back together again. after that it was just a few commands away.

    @Cyb3rb0b thanks for giving me enjoyable sunday

    *seems i did take one of the harder routes, thanks @ratone

    i have rooted the box in the lazy way (5 mins or so). Can you give me some hints what the harder way is?

  • Type your comment> @arcc said:

    quick box but fun and enjoyable non the less :)

    User: Google is your friend, when it works, its easier then you would have expected.
    Root: I might have taken the "harder" which required a bit of picking things apart and sorta putting them back together again. after that it was just a few commands away.

    @Cyb3rb0b thanks for giving me enjoyable sunday

    *seems i did take one of the harder routes, thanks @ratone

    i have rooted the box in the lazy way (5 mins or so). Can you give me some hints what the harder way is?

    If this is to much of a spoiler, please delete this.
    -> homemade is never ideal <-

    -All hail the Potato-

  • Type your comment> @j3wker said:

    Yep - Got nothing amazing so far, I had a lead but not sure yet if valid.
    Also got some worthless creds but i guess they are an hint

    Working my way through atm.

    Did those creds end up being as useless as they have seemed, with the exception of a bit of guidance?

  • i did not use any creds for this target to get root...but maybe there are other ways to get into this box.

  • rooted - nice box, I really appreciate that the box was stable and could be exploited without stumbling over spoilers from others (being on the free server, often that's an issue). Now I know what people meant with "its easier than expected if you know it" (for getting user). Hint for user: Use the name of the box for an INITIAL pointer for where to take a closer look at, nothing more. First, I had the right idea but wasted some time because I somehow got misled by those "look at the name of the box" posts (my fault, I know...). root was easy, guess I did it the lazy way.

    Hack The Box

  • If anyone is around that I can hit up about the initial entry, let me know. I've found a few things I think might be useful, but I have no idea what to Google at this point to find any sort of information to learn from as everything I've tried didn't appear applicable to this. I'm sort of week on the javascript/json/api side of things and would really like to strengthen that, but it's hard to do when you have no idea where to start.

  • Type your comment> @wizliz said:

    If anyone is around that I can hit up about the initial entry, let me know. I've found a few things I think might be useful, but I have no idea what to Google at this point to find any sort of information to learn from as everything I've tried didn't appear applicable to this. I'm sort of week on the javascript/json/api side of things and would really like to strengthen that, but it's hard to do when you have no idea where to start.

    I'm in the same boat. I know what I need to do (roughly) but based on talking to some other people, I don't know if I have the tools to do it. :/

  • edited September 30

    I'm trying to get user.
    I have found a** / a****** and a** / t**** is there any other endpoint or I have to work with the other 2? Or has nothing to do with that?
    Found too the creds but seems worthless

  • no idea whats going on haha

     / __| | | | '_ ` _ \ 
    | (__| |_| | | | | | |
     \___|\__,_|_| |_| |_|
    

    Hack The Box

  • Nice work @Cyb3rb0b. Straightforward and Pretty stable box. That obfuscation was kinda uh but overall it was good.

    MrR3boot
    Learn | Hack | Have Fun

  • edited October 1

    Hints for foothold: e-mail field is really confusing, dont trust it.

  • Thanks a lot @Cyb3rb0b for such a nice box.
    Got root using both lazy (Thanks @TsukiCTF for mentioning his repo. It actually took more than 5 minutes, but who counts :)) and the slow (intended? way)
    Loved the slow way much better as it requires you to actually do something :)
    Had fun
    PM/DM for hints (although everything was already told here)

  • Pretty sure I know what needs to be done in terms of giving it that special kind of t***n, but I can't find any creds to discover what that thing should look like before I make some special modifications..

    Mech

  • edited September 30

    Can I please get help for the json part?

  • Type your comment> @mech said:

    Pretty sure I know what needs to be done in terms of giving it that special kind of t***n, but I can't find any creds to discover what that thing should look like before I make some special modifications..

    Nevermind.. T.T don't neglect the basics..

    Mech

  • edited October 3

    Can someone confirm the initial part is related to d************n ?
    I read some realy interesting things on /a**/A****** but cant exploit it.

    Edit : I confirm, check if your command works (even if you have errors)

  • keep going on and inspect every http request after login

Sign In to comment.