i kind of feel so dumb right now …still didn’t get the first access; although found the LFI and the encoded pass …but didn’t really know what to do …please some help
Using LFI you have the ability to view some important OS file , also , password is encrypted using an reversible algo . You can start from here …
Thanks for the answer,
I actually stuck in there …the decryption of the secret …what algo …
is it complicated or I’m really overthinking it !!!
Got user, unzipped folder, found the service that I need to use and I think I know how to go about it but I feel like im just running straight into a wall at this point. Nothing is working. Super frustrating.
I’m stuck on rooting, I know which service to use and almost how to use it but I’m getting something in the command wrong. Can anyone PM me for some help?
Hello fellow hackstronauts,
I am def a noob compared to most around here, but I was wondering if anyone would be willing to give some subtle guidance via DM…
I am more than willing to learn from guidance, and ofc do all of the necessary work myself. Not trying to be a help-vampire!
With that said, I think I have recovered enough data to be able to pop a root shell (if this certain peice of data is what I think it is…), but in order to do so I need to get the user pwnage first. Which I unfortunately still haven’t accomplished… I’ve enumerated in every way that I possibly know how but still no luck.
I have more confidence in my familiarity of linux systems than anything else. I am a late-start college student studying comp. sci. and IT with a concentration in cyber defense, so these kind of exersices really get me excited! Or is that bc of watching Hackers too many times as a teenager?
Not looking for a handout… only help in learning my future trade =)
Hi all,
I’ve just find user.txt, but after a while my ssh connection to the VM was closed, and the same password I used for the user now it’s refused, so I can’t enter again.
I can’t figure out this
I finally got root on this machine a few days ago, and this is my first ‘active’ machine on HackTheBox. Not much pentesting experience, so I’m still quite a noob, but this machine was definately an awesome learning experience.