Rooted! Getting a shell was ok with MSF, but then … the very first thing I do on a *nix box for priv-esc enum and I OVERLOOKED it COMPLETELY! Tip: Read every line of output, line-by-line, again. Easy to miss this.
@sx02089 said:
Rooted! Getting a shell was ok with MSF, but then … the very first thing I do on a *nix box for priv-esc enum and I OVERLOOKED it COMPLETELY! Tip: Read every line of output, line-by-line, again. Easy to miss this.
good on ya! Still struggling with priv esc, probably missing something from the enum as you mention…
Anybody have some time to help? I’m looking to get root. I think I’ve found something that’s not usually on Linux machines (not an easy task for me yet), but I’m worried I’m creating my own rabbit hole :).
Done! Get user flag is very cool, root flag without privilege escalation, is needed lot of patience and attention with unusual binaries. Anyone got root with privilege escalation?
@sx02089 said:
Rooted! Getting a shell was ok with MSF, but then … the very first thing I do on a *nix box for priv-esc enum and I OVERLOOKED it COMPLETELY! Tip: Read every line of output, line-by-line, again. Easy to miss this.
The same happened to me! It’s tricky because the clue looks like something standard.
@galoryber said:
Anybody have some time to help? I’m looking to get root. I think I’ve found something that’s not usually on Linux machines (not an easy task for me yet), but I’m worried I’m creating my own rabbit hole :).
@galoryber said:
Anybody have some time to help? I’m looking to get root. I think I’ve found something that’s not usually on Linux machines (not an easy task for me yet), but I’m worried I’m creating my own rabbit hole :).
If you found it, it should work right away.
It depends if someone else has done the dirty work for you yet or not
@galoryber said:
Anybody have some time to help? I’m looking to get root. I think I’ve found something that’s not usually on Linux machines (not an easy task for me yet), but I’m worried I’m creating my own rabbit hole :).
If you found it, it should work right away.
It depends if someone else has done the dirty work for you yet or not
Oh, interesting. Then maybe the previous user forgot to reset the machine before I got in… Sending a PM.
Hello, I’m new to HTB. Been reading the forums, writeups, watching IppSec, trying challenges and several boxes.
Obtained user successfully, but am struggling with root. Things I’ve tried so far:
re-read this thread for clues
carefully went line by line through list of binaries (running and not) as suggested
tried enum scripts and read through the output multiple times
Googled for common enum techniques, read through several blogs, tried the suggestions
tried comparing box and files to typical Linux box and files
tried looking for the “b” and “v” files explicitly mentioned in this thread
Kind of feels like if you know it, you’ll get it, and if you don’t, you won’t.
Similar to how if you’re color blind, no matter how hard you try, you won’t be able to see the hidden numbers amongst the dots.
Not sure what to try next. Any clues as to what I’m missing here?