I have written up a three step plan on how to get root, and I dont see why it isnt working.
Start the server of the service in question on my local machine. Set it to be :1
Create tube to securely transmit information through from localhost to poison, collecting from the port that :1 will be transmitting on on my machine to the same port on poison.
Connect to the service running on localhost:1
Sit and watch as the terminal cursor blinks at me and nothing happens. It does not ask me for a password like it does if I connect to localhost:2 (which is NOT being pumped out the tunnel fyi)
What am I missing here?
Also on the file from the zip; I can see it is a passwd file for a special service, but does it go on my machine, or on poison?
Can someone help me with root? I already unzipped the secret file and I think I also found the right command to use it with. But I always get “Authentication failed”. Can someone send me a pm?
got user access and also learned a lot about service running to get root access but through that service also I am getting user access and not root access.please PM …
If you look at the running processes, there are likely a few instances of that running. Be concerned about the one running on root and how you ‘get’ to that one.
@Bear said:
Are you sure you’re using the right user?
I assume its the right user since the username was part of the file I decoded. I had seen the same user in the passwd file. I’ll try a reset and see if that helps.
Rooted. I learned a couple of things from this box. First, one of my go-to recon tools doesn’t produce all the output I want on this particular OS so I googled a little and found another tool that provides the right information. Second, how certain services handle credentials (I am simply shocked, shocked I tell you).
I had already in the past spent a long time learning about how to see the light at both ends of the tunnel going in both directions, and I tell you that week was TOTALLY worth it. It has been a lifesaver and a huge timesaver over and over again.