Irked

feeling a moron atm, i know should be easy to understand this b***** file, but i just cant get it

@devanshll said:
feeling a moron atm, i know should be easy to understand this b***** file, but i just cant get it

Ever done any challenges on here?

Got root, was definitely overthinking it. Was anyone able to get a root shell? Gave up on cracking the hash after getting the flag…

i need nudge for user, there some things i see on the file but still blank maybe im overlooking, a pm would come handy =]

@th1rtytw0 said:
Got root, was definitely overthinking it. Was anyone able to get a root shell? Gave up on cracking the hash after getting the flag…

Yeah, I’m wondering how you did it if all you did was read the file, a shell is pretty simple to get. PM me and we can discuss.

I’m still in low priv, trying to get user and I’ve just found a file-pass that it is suppose to be from the user, damm dj, but when I try to connect doesn’t work.
I’m wondering if I’m doing something wrong… spending hours here trying to figure out.

Can you guys stop trying to dirty cow this box. It’s not the solution

@cbx said:
I’m still in low priv, trying to get user and I’ve just found a file-pass that it is suppose to be from the user, damm dj, but when I try to connect doesn’t work.
I’m wondering if I’m doing something wrong… spending hours here trying to figure out.

That’s not the actual password. Read above it. For what could it possibly be? :wink:

My fastest rooted machine until nowadays.

  • For the first entry is quite easy as has being said.
  • Once inside you can use a basic privesc method through some file that allows you to do whatever you want. It’s not necessary to get user in order to get root.

@cbx said:
I’m still in low priv, trying to get user and I’ve just found a file-pass that it is suppose to be from the user, damm dj, but when I try to connect doesn’t work.
I’m wondering if I’m doing something wrong… spending hours here trying to figure out.

PM me. You are on the wrong track buddy

Can anyone give me a hint for the initial foothold I think I have enumerated all ports etc but can’t find anything to get a foothold (I think I know what should be running based on the hints given but it doesn’t seem to be running?).

@nawespet said:
Can anyone give me a hint for the initial foothold I think I have enumerated all ports etc but can’t find anything to get a foothold (I think I know what should be running based on the hints given but it doesn’t seem to be running?).

Enumerate ALL again :slight_smile:

got root, thanks to @ChaDDeRs for the hint on user, that was way harder than root… got confused and deep in a rabbit hole because of a previous chall but each day learning something new right? about root, that was REALLY easy

If you’re not getting privesc while reading these “it was so easy!” posts then you (like me) are not familiar with every nuanced linux command.

Do your normal privesc routine. One of the steps will create a list of things. To help figure this out, compare your own system’s list with the list you get from this box. One of these things is not like the other. If you try to run it, does it work?

Additionally, while some people on here are complaining about CTF-style box, you don’t need to use it. It’s kind of a functional rabbit hole, but again, not necessary for a root shell (I feel like that’s an important distinction since a lot of people on here think getting root.txt is getting “root”. It’s not, even though some systems on HTB will only let you read the file but not get a shell).

Interesting machine… Taught myself a lesson of not over complicating things (for both user and root) and stick to the basics… Very easy to over look things if you arent being thorough.

Good box) easy

@drywaterv2 said:
Can you guys stop trying to dirty cow this box. It’s not the solution

This. Seriously. (Though, I have to admit, I was guilty of this as well at first.) But when you think about it, this is a 20 point box, no one in their right mind would make you resort to Dirty Cow on a 20 freaking point box.

@Skunkfoot said:

@devanshll said:
feeling a moron atm, i know should be easy to understand this b***** file, but i just cant get it

Ever done any challenges on here?

This is a pretty big hint. And if you HAVEN’T done the Stego challenge track on here, I highly recommend it. Doing a couple of these SHOULD arm you with enough knowledge on how to get the creds for the unprivileged user account on this box.

@nawespet said:
Can anyone give me a hint for the initial foothold I think I have enumerated all ports etc but can’t find anything to get a foothold (I think I know what should be running based on the hints given but it doesn’t seem to be running?).

There’s one service on here which you SHOULD find some interesting info on if you do a quick Exploit-DB search.

@snowman418 said:
If you’re not getting privesc while reading these “it was so easy!” posts then you (like me) are not familiar with every nuanced linux command.

Do your normal privesc routine. One of the steps will create a list of things. To help figure this out, compare your own system’s list with the list you get from this box. One of these things is not like the other. If you try to run it, does it work?

Additionally, while some people on here are complaining about CTF-style box, you don’t need to use it. It’s kind of a functional rabbit hole, but again, not necessary for a root shell (I feel like that’s an important distinction since a lot of people on here think getting root.txt is getting “root”. It’s not, even though some systems on HTB will only let you read the file but not get a shell).

To be fair, there was a recent box like this, but that box DID have a path to root shell as well though.