Teacher

Hi mates, I got the credentials, but i have problems during the logging, i am continuously being disconnected, does anyone have the same problem? i cannot maintain the session open!!

Thanks @opt1kz !
R00ted… had a ■■■■ of a time with priv esc by making assumptions.

Could some one please help me out with the initial credentials, I must be missing something obvious. I don’t think I can bring my self to trawl through the dirbuster and skipfish outputs again…

Edit: as predicted, thank you @jkr

@numbfrank said:
Could some one please help me out with the initial credentials, I must be missing something obvious. I don’t think I can bring my self to trawl through the dirbuster and skipfish outputs again…

Same boat.

@tiger5tyle said:

@numbfrank said:
Could some one please help me out with the initial credentials, I must be missing something obvious. I don’t think I can bring my self to trawl through the dirbuster and skipfish outputs again…

Same boat.

PM me

still can’t figure out the password. what’s that last character? is brute-forcing really is the way to do this? tried all the clues i have found near the error…

EDIT: found it

Could someone pm me about the privesc? Im pretty sure I’m on the right track, but nothing seems to work.

While creating the box I was thinking whether to make the box realistic or original. So yes, I’m aware that the the way of finding the first password is highly unrealistic. But nonetheless, I hope people will learn something new.

After some enumeration and finding nothing useful, i came to get a nudge. It seems this is one machine to skip, because i prefer technical attack vectors that are at least close to “real world” situations. The moment i read that some guys are reading 2000+ files to find something hidden somewhere just putting me off instantly. I not blame the creator but it is just my 2cents.

@Warlord711 said:
After some enumeration and finding nothing useful, i came to get a nudge. It seems this is one machine to skip, because i prefer technical attack vectors that are at least close to “real world” situations. The moment i read that some guys are reading 2000+ files to find something hidden somewhere just putting me off instantly. I not blame the creator but it is just my 2cents.

These guys failed in first step of enumeration and jumped directly to step 3 or later. Because of that, they are missing step 2.

Many others failed in using tools properly. Don´t be skid bashing commands and try to understand what is your target, why some things are happening and why you see what you see.

@Laegir said:

@Warlord711 said:
After some enumeration and finding nothing useful, i came to get a nudge. It seems this is one machine to skip, because i prefer technical attack vectors that are at least close to “real world” situations. The moment i read that some guys are reading 2000+ files to find something hidden somewhere just putting me off instantly. I not blame the creator but it is just my 2cents.

These guys failed in first step of enumeration and jumped directly to step 3 or later. Because of that, they are missing step 2.

Many others failed in using tools properly. Don´t be skid bashing commands and try to understand what is your target, why some things are happening and why you see what you see.

Yea thats true.
I think if you look at what you see, you find the first hint very quick. Filesize is too small, maybe he should have picked another filename to make it more pointing out.

Awesome box. I definitely learned a couple things. I dont think the initial part was too bad. Certain tools will pick it up and point it out if you look through the output. There are enough hints in this thread at this pount that no one should be digging through 2000 files…

Holy ■■■■ what a ride, many thanks to those who lighted me up

@FNGCrysis said:
Thanks @opt1kz !
R00ted… had a ■■■■ of a time with priv esc by making assumptions.

any hints for root?

@takemyhand said:

@FNGCrysis said:
Thanks @opt1kz !
R00ted… had a ■■■■ of a time with priv esc by making assumptions.

any hints for root?

You know something odd is happening. The thing causing can be found by searching for something that would cause it, perhaps even the name of what is going on is a dead giveaway. When you see it, take a look at everything that is happening.

Replicate it on your local machine and you will realize what you actually need to do. When you get to this point, it is extremely important to understand what it is capable of doing.

PS: When you apply for a job, do you reference your own family members or do you list someone outside of your present home? We all do things differently, but one option is considered to be the better answer from a professional perspective :wink:

I’m missing something… Cant find where to log in. nmap isnt showing anything. cant see anything with spider. Anyone drop me a hint in pm? :smiley:

Ok, after all - nice way to get root.txt - i did not try to get root shell, anyone managed ? I was just after the flag and reverted the machine for others to have fun :wink:

@Warlord711 said:
Ok, after all - nice way to get root.txt - i did not try to get root shell, anyone managed ? I was just after the flag and reverted the machine for others to have fun :wink:

Yes root shell is possible, probably using similar method to that you used to get root.txt

can someone help me with getting root? :wink:

Followed the evil method, watched the video but still not working… Might be a permissions problem, please anyone pm me about RCE on this box. Need some hints