IOT login u have to scan all all ports
so after scanning “ALL” the ports I am at another login page… now what to do there…
Whats with this box, found the credentials, logged in, tried stego on the image, tried couple of things to be honest, what is this, should i consult the oracle or something ?
Its one of those type of boxes that “requires more enumeration i guess”
@avetamine said:
Whats with this box, found the credentials, logged in, tried stego on the image, tried couple of things to be honest, what is this, should i consult the oracle or something ?
Its one of those type of boxes that “requires more enumeration i guess”
yep… enumerate more…
did you look at the snmp info very good? any processes the pop out?
That was a fun box… learned quite a few things…
Not sure if I rooted it correctly… but did find the flag
thank you @trickster0
@p3tj3v said:
That was a fun box… learned quite a few things…
Not sure if I rooted it correctly… but did find the flag
thank you @trickster0
There was a previous box which had the exact same technique to get root. Ippsec made a nice and informative video about that, I suggest you take a look.
@artikrh said:
@p3tj3v said:
That was a fun box… learned quite a few things…
Not sure if I rooted it correctly… but did find the flag
thank you @trickster0There was a previous box which had the exact same technique to get root. Ippsec made a nice and informative video about that, I suggest you take a look.
And another one still active with almost the same technic (well, same principle, different program)
I’m at work, but yeah so far lots of fun with this box, cant wait to get home tonight and follow up with what I found.
root flag got a cryptic message that got me confused… PM me please
EDIT: Perhaps that reflects the name of the box though…nice one @trickster0
So I got the creds which none work on ssh I have tried dirbuster as an authenticated user… No Luck… Tried a couple more angles put haven’t found anything to more forward any kicks would be great.
weird have not seen an apache service running on that box but I will keep digging
@cgrenier said:
@dajuiceyone615 you need to contact the apache server
I saw it running in the UDP enumeration but couldn’t fine that it was bound to any port number
@dajuiceyone615 said:
@cgrenier said:
@dajuiceyone615 you need to contact the apache serverI saw it running in the UDP enumeration but couldn’t fine that it was bound to any port number
same thing here
Fun!
Also, please don’t delete files people. SMH
Rooted. Fun box.
I can read all lot of stuff from the port mentioned above but nothing for creds tried to walk through a lot of things but no luck, can anyone show me a path forward pls