@Randsec said:
@wilsonnkwan said:
This… is… one… of… the… boxes… that… lives… up… to… its… name…trickster0 , you really made us work for the flags man!!!
Anyway, guys, give you guys some directions.
On the initial foothold, if you realised you only have 2 ports, try all ports including the ones we don’t usually scan.
Once you discover that port, go dig it, there’s useful info there. (Skip Sitting by the dock of the bay, that’s wastin’ time).
You will discover there’s some service that is running that you can’t find where it connects, think of an internet standard was established on 14 July 2017
Once you connect to the service, you need to think what commands to run to show certain files at certain directories.
When you try to privesc, try to run certain command to understand what certain users cant do and what other users can do.Browsing the author’s github may help in one step of the process.
Good Luck!!!
So, after second login, I need to get the file the webpage is telling you?
yes!!!