Hint for Waldo

Got root.
Really interesting box, if you know and use this function of linux before, it would be really easy to solve it, but if not - you need spend some time to study.

Quick question - Were people about to get logged in / root shell? Or only able to view root.txt ?

@MarcosSGomes said:

@r0pSteev said:
hava a look at this website How to Bypassing Filter to Traversal Attacks ? | Hacking & Tricks

Hack The Box

Very thank you.

You’re welcome

Wow got root, got to say I will be updating my scan programs, so major kudos @strawman for the box, and thanks to @Fl337 & @Mcruz for the assists.

Rooted + Pro Hacker! This box was all types of mindbuggery. Definitely have somethings to research. Still confused on “why” my escape worked, if anyone has any good resources would appreciate it! If anyone needs some nudges feel free to PM me with what you’ve tried so far.

Finally…Root! Haven’t got root shell, but root.txt is what I needed.

soooo… got in, escaped… and still stuck on getting root, could I get a link or hint that may set me on the right path? thanks!

Ok got root… ? My tip is to read through this thread for root… Once you escape find out how to Spoiler Removed - Arrexel of a particular prog that may give out information then check to see what else might have those same capabilities… There’s easy way to check every file in a directory or sub directory you probably use every time you want to maybe see every file in a path or every file with a certain extension… Hopefully not too much of a spoiler

@mochan said:
Quick question - Were people about to get logged in / root shell? Or only able to view root.txt ?

I did it for getting access to root.txt, but also read that people get root shell.

Finally got root!

This is something I have definitely learned a lot from and will check in the future.

As a wise man once said ::rootdance::

Got root yesterday, Its a very nice box.

i rooted by using tik tok
anyone can pm how he cheked that we can use that thing to get root

Spoiler Removed - Arrexel

@3s073r1k said:
Ok got root… ? My tip is to read through this thread for root… Once you escape find out how to Spoiler Removed - Arrexel of a particular prog that may give out information then check to see what else might have those same capabilities… There’s easy way to check every file in a directory or sub directory you probably use every time you want to maybe see every file in a path or every file with a certain extension… Hopefully not too much of a spoiler

Thanks! finally got it, honestly… now I feel dumb hahaha

WOW!!! Just Wow! If it weren’t for this forum, I never would have completed this box. Thank you all for your helpful posts!

I was going to be upset about this box, but now after getting root, I actually enjoyed it.

It wasn’t so much a puzzle as having to solution be something that I’ve never seen/used before, which is one of the reasons I love these boxes.

I’d seen the different pieces of how to own this box before, but the way they were obfuscated and tweaked was really cool.

Thank you to those who helped me through it. :smile:

Good box.

And Rooted !

First off thanks to those for the tips - I’d say all the tips here are usefull without giving the game away

As for the Box

At first it irritated me but i reckon a lot of the problems i had with initial foothold were down to constant resets and i presume some bruteforcing going on. From what ive seen so far brute forcing and reverse shells arent often needed - the boxes are designed to test yous skills in other ways.

Once i got going - what a trip ! this one is a real learning curve and certainly made me think !

I cant add anymore hints as they have allready been posted in this thread, but feel free to PM for hints .

finally rooted
nice box
but i’m pretty curious now to know if and how theres a way to get a full root shell
if anyone know’s, PM me pls

I’m also close to the end. I can see the file, I can understand, how capable it is, but … I’m looking into the source and wondering, how is it possible to make it to read file of your choice (or at least root.txt)?

I have user.txt, i need some help to have root.