I’m wondering if there’s a bug with Oz. I’ve been enumerating a particular endpoint and everything works fine for awhile, but I notice it starts throwing 500s instead of the gibberish or correct info I’m looking for, and at that point the endpoint becomes useless.
Not sure if maybe it’s a side effect of someone getting user/root, or maybe someone messing with it once they get access, but it seems like an issue to me.
@chickenbit said:
I’m wondering if there’s a bug with Oz. I’ve been enumerating a particular endpoint and everything works fine for awhile, but I notice it starts throwing 500s instead of the gibberish or correct info I’m looking for, and at that point the endpoint becomes useless.
Not sure if maybe it’s a side effect of someone getting user/root, or maybe someone messing with it once they get access, but it seems like an issue to me.
I haven’t got the user flag yet, but if its the part in thinking of - look into the payload that caused a 500
Also getting 500 sometimes on things that clearly were working. Also system access dropped to read-only filesystem multiple times. Other times the access method won’t work either. Don’t know if it is part of the trolling. Fixed it with a reset.
@ganbaruTobi said:
Also getting 500 sometimes on things that clearly were working. Also system access dropped to read-only filesystem multiple times. Other times the access method won’t work either. Don’t know if it is part of the trolling. Fixed it with a reset.
The read-only issue I am attempting to resolve, this is what causes the 500 errors where there was a clear response. This is not a troll, just an issue with folks attempting bruteforce where there is no need to bruteforce. The read only issue can be resolved with a reset. For now that is the only resolution when that happens.
@incidrthreat@Mumbai You did an awesome job with the box, i have some question regarding the forwarding method that i used, or more like it’s a little bit of confused if some of you is still online on mm, i would like to know more about my " situation ". Further more good job, thanks for the anoying box Kek.
@waywardsun said:
Yeah, I have to wonder if it was tested.
100% was tested for 4-5 weeks before submission. All items and “rabbit holes” are working as intended. The box was tested again after submission by the HTB team not for rabbit holes or “unhackable” but does it have a flow, is it stable, are the steps logical to follow. Just gotta look a little harder and try different things. Never rely on a single tool for your enumeration or cracking.