@Skunkfoot said:
Do some research on how to bypass file upload extension filters. Once you figure out what types of files you can upload, the rest should be pretty simple.
Yep. Anyway I tested all the techniques with no success
@Skunkfoot said:
Do some research on how to bypass file upload extension filters. Once you figure out what types of files you can upload, the rest should be pretty simple.
Yep. Anyway I tested all the techniques with no success
Hm, any hints for lateral movement?
Got a shell as d**e, I found some creds aswell, got some interesting ips, yet I am not quite sure how to access those and the password I found does not work with the “DNS + Configurator” server.
@avoidy said:
Hm, any hints for lateral movement?
Got a shell as d**e, I found some creds aswell, got some interesting ips, yet I am not quite sure how to access those and the password I found does not work with the “DNS + Configurator” server.
@Skunkfoot said:
Do some research on how to bypass file upload extension filters. Once you figure out what types of files you can upload, the rest should be pretty simple.
Yep. Anyway I tested all the techniques with no success
I’m betting you missed one. Try harder.
Finally I discovered it was a misunderstanding between whitelisted and blacklisted
@avoidy said:
Hm, any hints for lateral movement?
Got a shell as d**e, I found some creds aswell, got some interesting ips, yet I am not quite sure how to access those and the password I found does not work with the “DNS + Configurator” server.
Did I skip anything worth looking at?
Have you done Poison yet?
Nope, but I guess I need to do some tunneling to access said “configuration tester”?
Nevertheless, I will look into it.
I enumerated as far as i think i can go, common.text isnt finding anything after /u****ds/. Im completly stumped from here though. I did some searching and found some documentation on optionsbleed but im not able to get anything to work.
@Opaque said:
I enumerated as far as i think i can go, common.text isnt finding anything after /u****ds/. Im completly stumped from here though. I did some searching and found some documentation on optionsbleed but im not able to get anything to work.
You might read back through previous posts on here. If you only look for directories you may not always find everything interesting.
@Opaque said:
I enumerated as far as i think i can go, common.text isnt finding anything after /u****ds/. Im completly stumped from here though. I did some searching and found some documentation on optionsbleed but im not able to get anything to work.
You might read back through previous posts on here. If you only look for directories you may not always find everything interesting.
i havent just been looking for directories. i have looked for php,txt,and html in all directories that i have gone through.
@Opaque said:
I enumerated as far as i think i can go, common.text isnt finding anything after /u****ds/. Im completly stumped from here though. I did some searching and found some documentation on optionsbleed but im not able to get anything to work.
You might read back through previous posts on here. If you only look for directories you may not always find everything interesting.
i havent just been looking for directories. i have looked for php,txt,and html in all directories that i have gone through.
Gotta find the first directory first, or you’ll never find anything
@Opaque said:
I enumerated as far as i think i can go, common.text isnt finding anything after /u****ds/. Im completly stumped from here though. I did some searching and found some documentation on optionsbleed but im not able to get anything to work.
You might read back through previous posts on here. If you only look for directories you may not always find everything interesting.
i havent just been looking for directories. i have looked for php,txt,and html in all directories that i have gone through.
Gotta find the first directory first, or you’ll never find anything
i have found the first directory…and the second…and the third… but im not able to find anything in the /u****ds/ folder
@Opaque said:
I enumerated as far as i think i can go, common.text isnt finding anything after /u****ds/. Im completly stumped from here though. I did some searching and found some documentation on optionsbleed but im not able to get anything to work.
You might read back through previous posts on here. If you only look for directories you may not always find everything interesting.
i havent just been looking for directories. i have looked for php,txt,and html in all directories that i have gone through.
Gotta find the first directory first, or you’ll never find anything
i have found the first directory…and the second…and the third… but im not able to find anything in the /u****ds/ folder
Yeah. Basically if you just go back and do what you’re saying that you’ve already done, you’ll find what you’re looking for.
@Opaque said:
I enumerated as far as i think i can go, common.text isnt finding anything after /u****ds/. Im completly stumped from here though. I did some searching and found some documentation on optionsbleed but im not able to get anything to work.
You might read back through previous posts on here. If you only look for directories you may not always find everything interesting.
i havent just been looking for directories. i have looked for php,txt,and html in all directories that i have gone through.
Gotta find the first directory first, or you’ll never find anything
i have found the first directory…and the second…and the third… but im not able to find anything in the /u****ds/ folder
Except the folder you talked about, isn’t something else there ? Spoiler Removed - Arrexel
@Opaque said:
I enumerated as far as i think i can go, common.text isnt finding anything after /u****ds/. Im completly stumped from here though. I did some searching and found some documentation on optionsbleed but im not able to get anything to work.
You might read back through previous posts on here. If you only look for directories you may not always find everything interesting.
i havent just been looking for directories. i have looked for php,txt,and html in all directories that i have gone through.
Gotta find the first directory first, or you’ll never find anything
i have found the first directory…and the second…and the third… but im not able to find anything in the /u****ds/ folder
Except the folder you talked about, isn’t something else there ? Like a .html file ?
this box is killing me. i cant figure out how to get the payload converted. i have tried to just cat the payload files together, and also tried to use fakeimageexploiter…im completely taped on ideas.