Got root.txt but still lingering thoughts/questions. My take away from this box is to not have a config file for a service running as root be writable by a non root user.
I’d like to know how people a getting a shell but I still want to figure this rather than be told
so my question is,
what service is updating the ad**-ar** files?
edit:
I tried putting in the location of shell in the same format as root and got binary as output.
Any care to explain in a pm?
stuck at p****_b***p. The magic number shows it as bz. I decompress it and it gives still hexdecimal data. FILE $FILE says its ASCII. Any nudges please
Got root. I really liked this box to be honest. I know there’s a lot of talk about it being easy, and I get that the techniques used for user/root aren’t super complex, but it was still a nice little challenge.
What’s most important is that I learned a few things on this box. Very nice.
Hi Guys, any hints on user and root? I have a shell, and can get into the use folder but cannot read the .txt. the other p*******_b***** file seems to not open? Checked out the file signatures etc, cant seem to find what i need to do to get it to open.
There is one post in this thread in regards to that b***** file which imo gave away exactly what you needed to do. The poster gave away some info you could google.
Any hint for decompressing the file b**** i tested a lot of thing but without success. I find the extension of the file but can’t extract any information
Got a shell via upload, and the pass file. However have no idea what to do with it. The thread give a good clue but not really sure how use it… Any hints or PMs welcome!
UPDATE: Followed the steps from a hint in this thread, dont understand what I did, or how i did it, but I have user…