Poison

1131416181923

Comments

  • r00ted.. pm for hints !!
    Don't overthink just enumerate and there it is right in front of you.

    thank you @sazouki @ajchristiano91 with ur hints :)

  • Can somebody please PM me on the priv-esc i have read the secret file but don't know i can use it with.. i have read this entire forum multiple times :anguished:

  • Hello I can’t figure out how to unzip the file can someone pm me I’m so close just need to unzip that file
  • This box is all about enum. PM me if you need more hints.

  • Yes! Rooted. PM for hints.

  • Rooted, PM if you need a hint.

  • edited July 2018

    .

  • Hello. Is anyone willing to help me via PM? I'm actually very close to root.txt, but I guess I'm a little confused with the commands. Thanks in advance.

    Elio

  • Please Some One help me with the box. I need a hint

  • i need a hint . Any one can help

  • @elio said:
    Hello. Is anyone willing to help me via PM? I'm actually very close to root.txt, but I guess I'm a little confused with the commands. Thanks in advance.

    I am Stuck can't Find way in can you help

  • Rooted. Advise. For initial access, I built a like VM and followed blogs on the perceived issue. The practice paid off and I had a simple shell script that spawned a shell every single time. For privilege escalation, I found the unusual files were there for a reason and it was a matter of leveraging your previous step, to complete the next step.

  • Hello. I don't know what to do with the password. COuld you please give me a hint (or PM)?
    I tried many many websites and inserted the encoded password into it, however no success.

  • Rooted. If you are greeted with a grey screen. Hold left click down. There might be something useful there.

  • Rooted suited and booted, hmu if your hopelessly stuck
  • Hint: There's a light at the end of the tunnel.
  • @z7Zz7ZzZ said:
    Hint: There's a light at the end of the tunnel.

    But unless you know what you're doing, that light ends up being a train ;)

  • Can someone pm me the tips? currently stuck after extracting the .zip and don't know what to do

  • Where are you people getting the .zip file from ? I have only found some kind of encoded password file and nothing else.

  • PM me for hints.

    Hack The Box

  • @Cli3nt said:
    Hello. I don't know what to do with the password. COuld you please give me a hint (or PM)?
    I tried many many websites and inserted the encoded password into it, however no success.

    I can't help you with root on this one, still trying to get it myself, but look at what ports are open, services are running. There is a very common port open.

  • @Cli3nt said:
    Hello. I don't know what to do with the password. COuld you please give me a hint (or PM)?
    I tried many many websites and inserted the encoded password into it, however no success.

    Did you get the final password? The directory where it's found gives you a few hints. Just running it through something once won't give you what you need.

  • Extracted secret and got a crazy string of symbols... I know what I need to do and the secret is the final piece but I think something's going wrong on my end. Any tips, or anyone experience the same thing and figure it out?

  • I got the User.
    Logged in to VNC but nothing more.
    I am not even sure if I have extracted the zip files.
    Can anyone plz help me to ger root?
  • ok so feel kinda dumb but more frustrated. I had a bad snapshot of my kali. Deleted it, realized after coming back I lost all my info on Poison. My fault I know. I have user and submitted that.. But if anyone can DM me to help me get back on priv exec, I'd appreciate it. No answsers just a discussion if you have time and if not its ok, I just get to learn TWO lessons :)

  • this box was truly difficult for me as a Total NOOB... for those of you that are stuck on the priv esc... keep reading its easy to skim past important information... for those stuck trying to get the foothold... make sure to enumerate the crap out of this thing. With everyone and their dog resetting the box it was very difficult to get a good scan... A GOOD SCAN MAKES ALL THE DIFFERENCE

  • What about grey screen with that process ?

  • edited July 2018

    @NoireMouton said:
    What about grey screen with that process ?

    Google the grey screen to fix it.And for the secret file, it's not actually empty.And there is a way to use it with that service without encrypting it.Google it and u will see what i mean.
    Just rooted.Pm if you want any help.

  • getting user was fun. Getting root - had to really think outside the box on this one. what frustrated me was i already use the method almost daily for other stuff. nothing fancy, just a lot of ENUMERATION as always (i hate seeing that word every time i get stuck)

  • Everything to solve the machine is already written here. It's really easy.
    If you read the posts here carefully you have kinda a step-by-step guide on how to solve this box.
    If you are still asking, maybe you should continue to learn basics of networking and how UNIX based machines work.
    This would make other boxes also easier for you.

    The box was kinda fun :)

    wirehack7

Sign In to comment.