I have created payload and can successfully browse through the website, but where the ■■■■ is user.txt?
Hello,
Guys could you pls give me a hint.
I ran dirb, nikto and gobuster with different wordlists (common.txt, big.txt, something.medium.txt). Have found two directories to which I do not have access “Forbidden”. Would appreciate a hint.
I keep getting internal error 500 .Tried a lot of combinations nothing worked .Please help
The box seems so unstable, getting different responses all the time… Is this correct?
@WillIWas said:
The box seems so unstable, getting different responses all the time… Is this correct?
yea that box can seem unstable, at times and a bit temperamental . do you have any shell access etc?
@mizzion said:
@WillIWas said:
The box seems so unstable, getting different responses all the time… Is this correct?yea that box can seem unstable, at times and a bit temperamental . do you have any shell access etc?
No, I just started, found som gui, but it disappeared and I can’t get it back
Messed up my dirb search aswell… annoying
@WillIWas said:
Messed up my dirb search aswell… annoying
if you read all the posts on this thread you will work out what scans to run for a successful recon phase which will lead to your foothold
@mizzion said:
@WillIWas said:
Messed up my dirb search aswell… annoyingif you read all the posts on this thread you will work out what scans to run for a successful recon phase which will lead to your foothold
Well, I’ll go read then, thx
@Razzty said:
I have created payload and can successfully browse through the website, but where the ■■■■ is user.txt?
You can’t see the air but…
@sodomak said:
@Razzty said:
I have created payload and can successfully browse through the website, but where the ■■■■ is user.txt?You can’t see the air but…
Yeah, you’re right Now I’m on priv esc, since I got user shell. Any hints?
Bounty is wildly unstable - same file that worked four hours ago, from the same computer, now throws a 404. Makes no sense.
Not even trying RCE - just trying to view text.
after much work and many dead ends i finally got system on this box. the box’s instability definitely threw me off at both the user and system stage. it was good fun though and i learned a lot in the process.
tried many extensions, almost every language i can think of! this is nasty !
Edit: nevermind, I’m dumb xD
finally got root, if someone needs help, just PM me…
Rooted, Fun box, but priv esc was kinda dull
So, I’ve been trying to run this powershell reverse shell using the ;. method. Not working. It used to work using the ;. method, but now it’s not. I’ve reset the box and still no dice. This box has been the bane of my existence for days now. What am I doing wrong? I don’t care if it’s a spoiler at this point. I just want this ■■■■■■ box done.
So, Finally got the correct file type, but still working on the right payload