Registry

1246715

Comments

  • edited October 2019

    i'm sure that i have some of files needed to get to ******.registry.htb but i'm missing some key files .. i think :D

    do not know where to go from here ... any help?

    mitoOo

  • found that it's a d****r r******y but don't know what to do next, any hint for user plz ?

  • Finally rooted this sucker.

    For root, see the restrictions more as guard rails than frustrations.

  • WOOO! I did it.

    Longest one I've done for this noob.

    For your thoughts: When you realize you are trapped inside, ask yourself if you really need to leave?

  • just got user ... someone msgd me on active ssh session for hints on root :D :D

    mitoOo

  • Finally Rooted. Thanks @0xdaff for the initial hint.

  • edited October 2019

    some one can pm me ? i need some help with this box :/

    Edit.
    Now i got the user flag ...

  • edited October 2019

    .

  • edited October 2019

    @Rolesa Read the docks ...

  • Spoiler Removed

  • So many simple basic things I got stuck on, but:
    Last login: Mon Oct 21 09:53:48 2019
    [email protected]:~# whoami
    root
    [email protected]:~#

    Really liked this one.

    Blaudoom
    Discord: Blaudoom#1254

  • Can someone help me out? I got the c***** file, but I am not managed to decode it? Or am I going the wrong way? Please PM me

  • Finally finished this one thanks for the great box @thek

    CurioCT

  • Need help with this box.
    Stuck at d*****.registry.htb and bt/bt/

    PM Me anyone and hand me some hints pls.

  • Any idea why they changed quite a bit about this box's mechanisms? I tried giving some ideas to someone the other day and it turned out they changed A LOT. I'm not talking about the unintended k***** exploit, that obviously had to be removed / fixed

    rowra

  • Spoiler Removed

    Running for OSCP

  • I am stuck at user. Can someone help me out, please?

  • fun box.. liked all components of it.. few cheeky things in there but definitely had to be creative to get all correct access.. :) thanks @thek

  • I'm stuck trying to get user, my attempts to log in always give:

    Error response from daemon: Get https://d*****.r*****.h/v2/: dial tcp: lookup d*****.r*****.h on 8.8.8.8:53: no such host

    Any pointers would be appreciated, I just haven't been able to figure out what's wrong, or what I'm missing.

  • I am struck on root part.
    i got pawrd from b.d* file
    I successfully logged into webpage.
    But i can't get anything .
    Someone please help me.

  • Type your comment> @renbitarii said:

    I'm stuck trying to get user, my attempts to log in always give:

    Error response from daemon: Get https://d*****.r*****.h/v2/: dial tcp: lookup d*****.r*****.h on 8.8.8.8:53: no such host

    Any pointers would be appreciated, I just haven't been able to figure out what's wrong, or what I'm missing.

    Have you added it to vhosts?

    Consult d****r + machine_name API documentation more.

    halisha

    --- I reply faster on Telegram @halishasec and [Discord Tavi #6865]
    --- Please specify the machine you're working at when messaging

  • edited October 2019

    I have got the user.txt flag as b*** user. I have found the creds and logged into the login panel.

    I suppose I need to upload a rev shell, get w**-***a and then priv esc to root, right?

    Edit: I've got w******a user, is this the way? b**t -> w******a -> root?

    halisha

    --- I reply faster on Telegram @halishasec and [Discord Tavi #6865]
    --- Please specify the machine you're working at when messaging

  • Nice one ! I really liked it and learned a lot.

    image

  • Can someone help me for reverse shell ?maybe my code is wrong

    ghroot

  • edited November 2019

    Hint for those having problems with reverse shells/connections:
    If the direction you're going does not work, try going in the opposite direction.

    ¯\_(ツ)_/¯

  • Thank you @thek for this awesome box. This is one of my favorites!

    I enjoyed it very much to step down to root and I learned a lot. And thank you to @p3tj3v for nudging me to the double b.

  • Nice one. Liked it

  • Need some nudges... I've managed to find the /b/b/l***** page as well as the d**** version api page. Have read the docs and understand that I'm supposed to pull images. However I'm stuck at both sides without authentication creds. Am I supposed to be bruteforcing or am I simply looking in the wrong place?

    hackerB31

  • Type your comment> @hackerB31 said:

    Need some nudges... I've managed to find the /b/b/l***** page as well as the d**** version api page. Have read the docs and understand that I'm supposed to pull images. However I'm stuck at both sides without authentication creds. Am I supposed to be bruteforcing or am I simply looking in the wrong place?

    Have you tried any classic username/password combinations? I have maybe a few logins I try on every page I come across (as well as googling for the application's default creds).

    If you try that and are still stuck, maybe reset the box (people can be jerks). Bruteforcing should be avoided.

    Hack The Box

  • Currently stuck at bt user. From the hints provided here, I think I'm supposed to su to w-d*** and exploit r***c somehow? I've even gone through the php files but still can't find anything useful. Would appreciate it if someone could give me a nudge in the right direction ><

Sign In to comment.