Cache

1679111217

Comments

  • Hmmmm found other vhost. Wondering if par**** por*** should be turned off by default? 🤔

    or where i should go from here?

    any tips?

    zweeden

  • Any Hints on foothold. I just have username and can see n**.h*** page so far. I tried the h*s in author page as vhost but didn't found.

    s1lv3rst4r

  • edited May 13

    Type your comment> @tilznit said:

    Type your comment> @syn4ps said:

    I have the pass and salt from the table but is it normal that the former is that short?

    I have the same issue. Rabbit hole maybe? I dunno what to think anymore with the portal getting turned off so often.

    ah, so when it is off, it is not really intented? It can be on sometimes? oO

    I don't think it is a rabbit hole as people here got it with the metasploit module. I have'nt changed the script, I just checked what it does through Burp and applied the same for the interesting table.

    EDIT: OK, after reset the portal is available... Got everything I need

  • Type your comment> @ic3x64 said:

    Rooted, need help, let me know.

    I got two users, stuck on root

  • Turning off the portal has no effect in getting foothold as long as you know which page to go. If you want to see the portal, although there's nothing much to see, reset the machine. I'd suggest visiting the official wiki. Tons of information there. Remember, it's about having fun in learning and expanding your knowledge, not how fast you can root the machine.

    Cheers

    limbernie
    Write-ups | Discord - limbernie#0386

  • finally rooted. thanks @itachi982 @calipendula for your hints

  • rooted this yesterday DM me if you get stuck
  • Rooted !! very funny box, shame about the constant resets, Thanks for nudges @sk4 @Centip3d3 @zard @davihack @jiggle @limelight

    Hack The Box

  • I couldn't access the portal yesterday so I decided to do it today .It is turned off today also. I reseted it a few times by now.what do I do.
  • edited May 13
    I have a problem, I cant transfer files to box(this one and oouch), wget curl nc scp just stops at 33% or so. I've reloaded my router regenerate connection pack, plz send help:D
  • edited May 13

    Hm, I got user and root flags in one go. Is that the intended way?

    Fun box, I enjoyed it a lot. Thank you, @ASHacker

  • edited May 13
    Finally!

    [email protected]:/# whoami && id
    root
    uid=0(root) gid=0(root) groups=0(root)
    [email protected]:/#

    Nice job on the box! bout time we got a privesc like that, the first bit was a needle in a haystack!

    Hack The Box

    More than happy to help out and give hints - sorry if you've messaged me on forum.htb and I haven't got back, I might be more reachable via discord: CRYP70🇦🇺#8985

  • Rooted.
    If anyone needs a little nudge, PM me. I'd love to help!

  • Nice & easy box
    Thank you, @ASHacker

  • Type your comment> @traut said:

    Hm, I got user and root flags in one go. Is that the intended way?

    Fun box, I enjoyed it a lot. Thank you, @ASHacker

    I don't think so :D but you would have missed on a couple of interesting things if you skipped all the privesc.

    lebutter
    eCPPT | OSCP

  • Rooted.
    Interesting box. I could learn some new things.

  • @traut said:

    Hm, I got user and root flags in one go. Is that the intended way?

    I don't think so but I can certainly see how it would be possible and if you haven't done the early enumeration properly, it is by far the easiest path.

    TazWake

    Happy to help people but PLEASE explain your problem in as much detail as possible!

    Also: https://www.nohello.com/

  • Thanks to @ASHacker for this awesome machine, the hardest part is the initial foothold, everything else is absolutly easy.

    My Hints:

    Initial Foothold

    • Approach that he talks about himself
    • Investigate about this new service and how you can approach it (CVE)

    User

    • Looks like they aren't useless

    Lateral-Movement

    • Memorize things is not always good

    Root

    • Your crew is more powerful than you think

    Hope my hints are not spoiling the machine, if they are doing it remove the post

  • edited May 14

    Rooted just now. This was a fun box, nothing super new but tests a bunch of essential skills.

    PM me if you want a nudge but be prepared to tell me what you've tried first.

    Hack The Box

  • Finally rooted.

    The most tricky part for me was de passwd to encadenated exploiting.
    To people in this place a hint could be use another tool (it was not common for me) . to go to the place i change mi foots to the sky.

    Way to root was easy.

    Funny box, thank the author.

  • Got past the first login page and went down a steg rabbit hole on the image. I have found the reference the author was talking about but need a nudge on where to start looking. PM please, no spoilers ;)

    pHuR1u5

  • some nudge to h** ? lot of cve but cant work it :neutral:

  • edited May 14

    This machine is pissing off me, i found s****j but when i tried i got connection time out and what i found is (c...d=.) not working(not be inj). Also pinging it sometimes connection lost. Only thing what i need to do is wait and trust my luck?

  • Found stuff after much messing and hints on here.
    Is the "gateway" meant to be running?

  • @bobthebadger said:

    Found stuff after much messing and hints on here.
    Is the "gateway" meant to be running?

    Not sure what it exactly is meant to be, but:
    I anything tells you it was disabled, then someone broke the service, again, and you need to reset the machine (there should really be some kind of cronjob that periodically fixes the broken config file).


    Hack The Box
    GREM | OSCE | GASF | eJPT

  • Type your comment> @HomeSen said:

    @bobthebadger said:

    Found stuff after much messing and hints on here.
    Is the "gateway" meant to be running?

    Not sure what it exactly is meant to be, but:
    I anything tells you it was disabled, then someone broke the service, again, and you need to reset the machine (there should really be some kind of cronjob that periodically fixes the broken config file).

    Thanks, I try to avoid resets where possible, as I know how annoying they can be to everyone, but it it's broken.....I'll have to "turn it off and on again".

  • I try to avoid them, too. But it took me quite a long time to realize (or rather get pointed to the fact) that something that said it were disabled, should actually be enabled/available.
    And when people follow a certain guide and use a certain readily available script, then things will break for everyone ;)


    Hack The Box
    GREM | OSCE | GASF | eJPT

  • Interesting box. Renew many things I thought I knew, but actually, I'm not :-).

  • Type your comment> @HomeSen said:

    @bobthebadger said:

    Found stuff after much messing and hints on here.
    Is the "gateway" meant to be running?

    Not sure what it exactly is meant to be, but:
    I anything tells you it was disabled, then someone broke the service, again, and you need to reset the machine (there should really be some kind of cronjob that periodically fixes the broken config file).

    Definitely agree! This machine is pissing me off like anything else before! :-(

  • rooted the box, got root then user. thanks to creators for this great box.
    pm me for help if you needed.

Sign In to comment.