Official Ready Discussion

16791112

Comments

  • Type your comment> @Shad0wQu35t said:
    > Type your comment> @Raskul82 said:
    >
    > (Quote)
    > Passed it as in bro ? Where ur stuck at

    No man I completed the box.
  • edited January 12

    Type your comment> @TazWake said:

    Struggling on the initial shell which seems odd as I was 99.999% confident I had the right path. I just get stuck on import in progress. I assume this is the "unintended path" which got patched, so back to google...

    Do we know if this path has been patched? I am having the same issue and keep getting "Import in progress" forever. Tried it through Burp as well with no luck.

    CrackerMan

  • @CrackerMan said:

    Type your comment> @TazWake said:

    Struggling on the initial shell which seems odd as I was 99.999% confident I had the right path. I just get stuck on import in progress. I assume this is the "unintended path" which got patched, so back to google...

    Do we know if this path has been patched? I am having the same issue and keep getting "Import in progress" forever. Tried it through Burp as well with no luck.

    I ended up using a python exploit.

    Note: I am not going to be available much in September.

    TazWake

    Note: https://www.nohello.com/

    Happy to help people but PLEASE explain your problem in as much detail as possible! If you say vague things like "It's not working", I cant help. This isn't Twitter so my DMs are always open.

  • Type your comment> @TazWake said:

    @CrackerMan said:

    Type your comment> @TazWake said:

    Struggling on the initial shell which seems odd as I was 99.999% confident I had the right path. I just get stuck on import in progress. I assume this is the "unintended path" which got patched, so back to google...

    Do we know if this path has been patched? I am having the same issue and keep getting "Import in progress" forever. Tried it through Burp as well with no luck.

    I ended up using a python exploit.

    Update, got user working on root. Turns out I need to get my eyes tested!

    CrackerMan

  • Type your comment> @CrackerMan said:
    > Type your comment> @TazWake said:
    >
    > (Quote)
    > Update, got user working on root. Turns out I need to get my eyes tested!

    Yup man I over look shit all the time. If you need help hmu
  • I really need a hint. I got user, but struggling to get root. Pretty sure that it has something to do with dk, but it is not running.

  • Rooted! This is definitely a funny machine.
    User: Just enumeration
    Root1: Find it
    Root2: Escape
    If you need help, you can write me PM for advice.:smile:

  • rooted thanks @clure !

  • already rooted this one.
    hint for root2 :

    you can do it manually and it's a very simple tricks, please don't make it hard!!
    
  • edited January 18

    i̶v̶e̶ ̶g̶o̶t̶ ̶u̶s̶e̶r̶,̶n̶e̶e̶d̶ ̶h̶e̶l̶p̶ ̶w̶i̶t̶h̶ ̶d̶*̶ ̶u̶s̶e̶r̶.̶ ̶n̶u̶d̶g̶e̶s̶ ̶a̶r̶e̶ ̶a̶p̶p̶r̶e̶c̶i̶a̶t̶e̶d̶.̶
    rooted

  • Made a note of the root password 4 separate times without following up on it *facepalm* finally got root though.
  • @Arty0m same... I really need to get into the habit to take proper notes and automate this stuff so I won't push it back for "later". Because "later" apparently means a month to me.

    Anyhow, I am so glad I didn't go through the effort to read up on, compile and run l**r****n, wait about an hour and realize it doesn't work in this env anyway just because it's like the 2nd google result for ****** privesc :wink:

    rm -rf /tmp/htb_nomad

  • edited January 21

    Can anyone help out with the py script, The script says runs successfully but I donot get a shell, Can I DM anyone ??

    [EDIT]* Got the shell :wink:

  • Rooted :)

    Learned a few things in the way, including how to read tool output :P

  • any help with root please?

  • @k01n said:

    any help with root please?

    Enumerate, find loot, privesc, escape, get root on box.

    Note: I am not going to be available much in September.

    TazWake

    Note: https://www.nohello.com/

    Happy to help people but PLEASE explain your problem in as much detail as possible! If you say vague things like "It's not working", I cant help. This isn't Twitter so my DMs are always open.

  • Type your comment> @TazWake said:

    @k01n said:

    any help with root please?

    Enumerate, find loot, privesc, escape, get root on box.

    Rooted! :)

  • edited January 22

    Is something going on with this box? I'm getting a HTTP 502 error where, login was loading fine earlier. Back up.

  • anyone can PM me i cann't get the reverse shell.

  • edited January 22

    Easy and fun box, here are my hints

    Foothold

    Versions are important, you should do nothing more than run a cmd to get the initial shell

    Co******r Root

    There is a fantastic hint that I should have listen before spending a lot of time in enumeration... page5, @blacViking (thanks man !)

    Actual Root

    What can you do and what is your goal ? Google it and you'll be free.

    If you need help, feel free to PM

  • Rooted, thanks to @Shubhamz007 and @DarkRider88

    If i helped you, i would like to receive a respect
    Hack The Box

  • Rooted. Fun box.

  • Rooted, pretty fun and easy box.

    PM me if needed :)

  • I keep getting a connection to my nc listener, but I can't run anything after the initial connection. anyone have advice/solution?

  • I'm don't receiving connections on my nc listener. I'm normal exploit from edb, any suggestions? I've read that i need to do some tunning but i don't know where (i've tried using another reverse shell). Any minimum help would be appreciated

  • I'm don't receiving connections on my nc listener. I'm normal exploit from edb, any suggestions?> @BoWyatt said:

    I'm don't receiving connections on my nc listener. I'm normal exploit from edb, any suggestions? I've read that i need to do some tunning but i don't know where (i've tried using another reverse shell). Any minimum help would be appreciated

    I got a shell with another script but i want to understand the most popular ones. Still figuring out why im not receiving with the other script.

  • I'm stuck on how to get du** user. Enumeration and linpeas did'nt get me useful things, any hint ?

  • @UVision said:

    I'm stuck on how to get du** user.

    Double check you need to get this user account.

    Enumeration and linpeas did'nt get me useful things, any hint ?

    Yes, enumerate more. To steal a phrase from PWK/OSCP, it really is a "try harder" here.

    Your enumeration needs to look at an unusual folder which might hold things people use to store stuff.

    Note: I am not going to be available much in September.

    TazWake

    Note: https://www.nohello.com/

    Happy to help people but PLEASE explain your problem in as much detail as possible! If you say vague things like "It's not working", I cant help. This isn't Twitter so my DMs are always open.

  • @TazWake I have for now listed the directories accessible for writing without having seen an interesting info, I guess I must have missed it.

  • @UVision said:

    @TazWake I have for now listed the directories accessible for writing without having seen an interesting info, I guess I must have missed it.

    just to check, did you also include ones you could read rather than just write access?

    Note: I am not going to be available much in September.

    TazWake

    Note: https://www.nohello.com/

    Happy to help people but PLEASE explain your problem in as much detail as possible! If you say vague things like "It's not working", I cant help. This isn't Twitter so my DMs are always open.

Sign In to comment.