@packetrider said:
!!! damnit! that was it… I had it from the beginning but someone / everyone changed the password.
This is basically typical problem of a small dXck. What can do a sad, rejected person with a small dXck? Spoiling others fun is the only option. I think you should demonstrate more empathy. Life of someone who always has to pay for ■■■ is not a piece of cake …
This box sucks. I’ve got the password, it works then when I try the next part of the exploit the password no longer works. Even after a reset, a few min later the password no longer works. Total waste of time.
@murp said:
This box sucks. I’ve got the password, it works then when I try the next part of the exploit the password no longer works. Even after a reset, a few min later the password no longer works. Total waste of time.
It’s because the password gets changed by someone everytime…
Well, I am able to login to manager/status, but when I try those creds to manager/html, I got 403 immediately. If I try other credentials I was asked for usr:pwd again, so I assume there is something going on. WTF:D
Where is the user.txt file it isn’t in public or admin desktop files, and they’re all that I can see.
Also people keep resetting my webshell, you cannot use it, goes to my lhost…
If it wasnt for the issues with logging in I would have solved this one in un der 10 minutes as many people have mentioned. Very easy box, all the answers are available through enumeration and quick google search if your not familiar.