Poison

Hey guys I’m stuck on the privesc to get to root. My “program” to use for privesc isnt working need help with the cmds. PM me!

I’m also stuck on pw decoding, I feel like I’m missing somic real obvious…

rooted, if anyone needs a shove it the right direction give us a PM.

Same, feel free to ping me if you’re stuck.

Hi, as I am new to this box, I have found the LFI and lost to where next, can someone DM/PM me for tips/next step on how to move through? THanks!! ahaha.

Wow!! “Lightbulb!” Got root and omfg after this all time.

can anyone PM me on how to get priv esc? I’m not able to crack the zip file.

@J0ckr , often, when you try to crack a password, you have a wordlist, right ? So, what wordlist could you build with what you learned about the box ? Think about informations you already have.

Any hints on priv escalation? stuck here!!

Finally! Got r00t?

stuck on unzipping - getting error: “event not found” when trying to unzip with password

@xaqhary said:
rooted, if anyone needs a shove it the right direction give us a PM.

Hey i can’t unzip the file, I tried the default password list “rockyou.txt”. it didn’t give me any output. Can you plz help…

@Ethic said:
@J0ckr , often, when you try to crack a password, you have a wordlist, right ? So, what wordlist could you build with what you learned about the box ? Think about informations you already have.

hey i tried to unzip using the default password “rockyou.txt” but not luck. Can you help me …

Any hints on priv escalation? stuck here!!

@J0ckr , I have sent you a PM.
@DarthVaper , try to unzip on your local machine.

@newhacker96 , I try to gain access to root too. I think I am close.
First, you need to enumerate. You can use LinEnum.sh or just use some commands and see informations you get. If you are new in pentest, read about what enumeration is and how you can do it. Then, you will find something you can use. At this point, you need to think how a sysadmin could use what you found.

I need some help…found usernames and decoded the code, ssh does not work that decoded password…Dont know what to do…somebody help…

someone PM me how to use the secret file . I was able to unzip it but no clue how to proceed further.

Hi, used lfi, got some files… I have the usernames and the encryptet code.
I’m now struggeling with the decryption. Tried several algorithms, but it doesn’t work. It would be great if somebody could give me a hint. Just a hint, not the solution… (:

stuck in the same place

Done and glad for it!

Two things to keep in mind for this box

  1. You don’t need to bruteforce the zip file because the password is probably within the first 10 you should try manually

  2. Once you have the zip unzipped then the contents purpose will become obvious once you have have worked out the priv esc.