Dev0ops hints

11516182021

Comments

  • rooted, pm me for hints

  • edited September 2018

    @TheLegend said:

    @drywaterv2 said:
    This machine requires XML knowledge doesn't it?

    I dont think so, I didn't had any knowledge when i did the machine.

    Google bro, it has answer to almost everything

    Thought so myself, but wasn't sure what scripts to use. Tried some but I don't know how I can get around the internal server error. Sorry for the stupid remark

    drywaterv2

  • @drywaterv2 said:

    @TheLegend said:

    @drywaterv2 said:
    This machine requires XML knowledge doesn't it?

    I dont think so, I didn't had any knowledge when i did the machine.

    Google bro, it has answer to almost everything

    Thought so myself, but wasn't sure what scripts to use. Tried some but I don't know how I can get around the internal server error. Sorry for the stupid remark

    no question is ever stupid,

    TheLegend

  • The moment you think "No one is that stupid, could it really be that easy, maybe they just forgot..." you are exactly where you need to be. Got root and now I need to try harder at not trying so hard....

    cslatt05

  • Hi, i don't the way to insert some xml reverse or something like that, some hint pls.

  • @OroJackson said:
    Hi, i don't the way to insert some xml reverse or something like that, some hint pls.

    you're on the right way. find the right "Injection" point if you already found the page, read it carefully...and remember, "good family is a father with three sons".

  • @drywaterv2 said:

    @TheLegend said:

    @drywaterv2 said:
    This machine requires XML knowledge doesn't it?

    I dont think so, I didn't had any knowledge when i did the machine.

    Google bro, it has answer to almost everything

    Thought so myself, but wasn't sure what scripts to use. Tried some but I don't know how I can get around the internal server error. Sorry for the stupid remark

    no question is ever stupid,

    TheLegend

  • pls i need help on priv esc

  • @otaman can you help me pls? Now i tried upload msfvenom payload.xml and after that used burp suite forward but with *.php.xml but the page said INTERNAL SERVER ERROR.

  • Can someone PM me on the main website about the XML injection... Uploaded an xml script but I'm getting internal server error, tried curl but to no avail, I have no idea what to do

    drywaterv2

  • @drywaterv2 make sure the format is correct, try to upload a XML without malicious payload first. Also, read carefully.

    prutz

  • Got user, can someone PM how I should've found the place to upload? Did some random guess work. Maybe shouldve ran my buster a bit longer?

    prutz

  • @prutz said:
    Got user, can someone PM how I should've found the place to upload? Did some random guess work. Maybe shouldve ran my buster a bit longer?

    I ran dirbuster, gobuster and dirb, there are only 2 directories (f*** and u*****)

    drywaterv2

  • @drywaterv2 said:

    @prutz said:
    Got user, can someone PM how I should've found the place to upload? Did some random guess work. Maybe shouldve ran my buster a bit longer?

    I ran dirbuster, gobuster and dirb, there are only 2 directories (f*** and u*****)

    you are ritgh

    @prutz said:
    @drywaterv2 make sure the format is correct, try to upload a XML without malicious payload first. Also, read carefully.

    I have the same problem, i uploaded but the page don't say if the file load successfull or not. how do you know that is working?

  • Got root on the box. Thanks @lokori for the interesting challenge. Got stuck for quite a while on the initial entry into the system, but eventually figured it out :+1:

    Renegader

  • @OroJackson said:

    @drywaterv2 said:

    @prutz said:
    Got user, can someone PM how I should've found the place to upload? Did some random guess work. Maybe shouldve ran my buster a bit longer?

    I ran dirbuster, gobuster and dirb, there are only 2 directories (f*** and u*****)

    you are ritgh

    @prutz said:
    @drywaterv2 make sure the format is correct, try to upload a XML without malicious payload first. Also, read carefully.

    I have the same problem, i uploaded but the page don't say if the file load successfull or not. how do you know that is working?

    If you upload an XML it will always give the internal server error. You've got to look inside the page, but i haven't found anything useful myself

    drywaterv2

  • @drywaterv2 said:

    @OroJackson said:

    @drywaterv2 said:

    @prutz said:
    Got user, can someone PM how I should've found the place to upload? Did some random guess work. Maybe shouldve ran my buster a bit longer?

    I ran dirbuster, gobuster and dirb, there are only 2 directories (f*** and u*****)

    you are ritgh

    @prutz said:
    @drywaterv2 make sure the format is correct, try to upload a XML without malicious payload first. Also, read carefully.

    I have the same problem, i uploaded but the page don't say if the file load successfull or not. how do you know that is working?

    If you upload an XML it will always give the internal server error. You've got to look inside the page, but i haven't found anything useful myself

    You need read, was harder for me interpret but know we some help i have a user but i am stuck again.

  • got root... if you stuck feel free to pm me...

  • edited September 2018

    Yeah user.txt was a little hard but priv.esc??!! :open_mouth:

    When you start to enumerate files for priv.esc., you realize that there are lots of lots places and users(!) to look and you are saying "wow, hmm what is happening here??"

    Lets talk about time machine: I hope that you are not talking about the most basic past tense file at user folders, if it is, i rode that file aproximately 5-10 times, I am suprized about what is he doing again and again...

    And also no one is talking about .sh files(not run... ones), I spent my most time about those sh files, and searching about the very known command at that sh files, but always getting authentication errors.

    Now I am asking that am I at correct path or I should start all from the beginning?? :astonished:

    Edit: Answer to my question by myself :) Yes I was at right path but forget about .sh files. I realized that I was also reading that time machine file before getting user.txt. I just didnt think that comment was so much important !!! :open_mouth: Yess rooted !!! Thanks to @wilsonnkwan for the hint...

    Wainright

  • stuck at upload can anyone PM me getting internal server error

  • omg! Finally got the initial data exfiltration method.
    After spending hours on this. Its just feels great when you figure it out and understand the minute thing that you missed.

    If it wasnt for this box, I wouldnt have spent so much time on this vulnerability.

  • So found the upload method and can browse my results ..but cant seem to work out execution of commands ..anyone willing to PM me with a syntax nudge.

    Hack The Box

  • Finally got root.txt. This was an amazing box. Really learned a lot of things. Pm if anyone needs any hints.

    Draco123

  • Hello!
    I've the user.txt.... Is a reverse shell needed for get root?
    Regards

  • @SimVirus said:
    Hello!
    I've the user.txt.... Is a reverse shell needed for get root?
    Regards

    If you can read files on a server, what files would be really useful to gain initial foothold?

    From there it's straight forward, lots of people have given some really good hints. Just don't overthink it.

    blobbo

  • Can someone PM me a hint for priv esc? Not sure how to proceed..

    prutz

  • If you can read files on a server, what files would be really useful to gain initial foothold?

    Done! thank you! Now I'm starting with Priv Esc :-)

  • any hint for 500 internal server error cant able to upload the file

  • edited September 2018

    Any hint for xml format? I'm stuck. What I need to see if my xml works? On the inspect element section o where? Im really noob

Sign In to comment.