Some hint would be appreciated, I am on same as others.
Is HTB filtering fun from their platform?
I know it is not goal that all users pwn all boxes, but we are here to have fun and learn not to compete .
Could I get a nudge? I've found the bcrypt hashes but pretty sure its a rabbithole as I was unable to rock it. Is there something else in the repo/dir I should be looking for? I checked versions of the webtool and everything but seem to be stuck. Checked both ports and don't really know which one to go after now.
Got user. Hint: when developing and deploying a software, how would you quickly make sure it's more-or-less secure? Sorry but I can't make more explicit hints I guess
Got user. Hint: when developing and deploying a software, how would you quickly make sure it's more-or-less secure? Sorry but I can't make more explicit hints I guess
So I'm about 91.6% sure about the path to a foothold, I just am having a hard time installing tooling. For those struggling, think of the name of the box and what app is running something like the name, and what we commonly look for to exploit apps.
Comments
I expect good things from @polarbearer
Always happy to help, DM me if you need anything!
Link to Profile
Oh... I think I'm onto something here
Always happy to help, DM me if you need anything!
Link to Profile
got some hashes can't crack them tho....
So i guess the update() thing is a rabbit hole
Always happy to help, DM me if you need anything!
Link to Profile
Type your comment> @LegendHacker said:
Me too! John is busy but still no result.
Any clues
Type your comment> @iWillBeFamous said:
I found that they are bcrypt hashes. I am currently trying to brute force it right now
Database Dump ????
Type your comment> @DancinHype said:
Rabbit hole
Always happy to help, DM me if you need anything!
Link to Profile
Type your comment> @LMAY75 said:
is that a dang rabbit hole
@LMAY75 check your dms
Type your comment> @DancinHype said:
I didn't get anything. Try sending it again maybe lol
Always happy to help, DM me if you need anything!
Link to Profile
Type your comment> @LMAY75 said:
You try to message me, I messaged you 3 times in total now
Update : I just messaged you through the forums now, I did message you through hackthebox website too.
someone message my instagram if they can help me with a hint. My instagram is DancinHype
can someone help me, i didn't get anything yet i am trying but.....no results....
and me pls help)) i have e**t in B*** but dnt know what do u need next)
got hashes but unable to crack. any hint?
I think cracking hashes is not what we need to do actually, gotta be smth with B*** i guess.
PM for nudges, will be glad to help you. But answering pretty slowly sometimes:P
Press "+ give respect" to pay respects.
Type your comment> @nopej0hnson said:
i think to, but i know 1 road and it E***, idk next steps..
@NeuronAlex said:
yep, same here..
PM for nudges, will be glad to help you. But answering pretty slowly sometimes:P
Press "+ give respect" to pay respects.
Some hint would be appreciated, I am on same as others.
.
Is HTB filtering fun from their platform?
I know it is not goal that all users pwn all boxes, but we are here to have fun and learn not to compete
Rooted. Good box, root part may be confuse us
OSCP | Sec+ | MCSE | VCP | CCNA
Type your comment> @jkana101 said:
Im stuck at the beginning. Where do I go to get login. I just need a simple hint. my pms are open to everyone.
Type your comment> @DancinHype said:
DM me
OSCP | Sec+ | MCSE | VCP | CCNA
Could I get a nudge? I've found the bcrypt hashes but pretty sure its a rabbithole as I was unable to rock it. Is there something else in the repo/dir I should be looking for? I checked versions of the webtool and everything but seem to be stuck. Checked both ports and don't really know which one to go after now.
@zweeden Stuck on same boat man
Got user. Hint: when developing and deploying a software, how would you quickly make sure it's more-or-less secure? Sorry but I can't make more explicit hints I guess
Now struggling with root...
Type your comment> @adamczi said:
Sent you a PM.
Does anyone know how to use the R*** for ****** I dont understand how to use it to get the foothold. If anyone can help please PM me.
So I'm about 91.6% sure about the path to a foothold, I just am having a hard time installing tooling. For those struggling, think of the name of the box and what app is running something like the name, and what we commonly look for to exploit apps.
Edit: hmm, maybe I don't need to install anything