Got a shell via upload, and the pass file. However have no idea what to do with it. The thread give a good clue but not really sure how use itā¦ Any hints or PMs welcome!
UPDATE: Followed the steps from a hint in this thread, dont understand what I did, or how i did it, but I have userā¦
Trying to solve my first machine here. Managed o get a shell as www-data. Found three files user.txt, a***-a***, p*******_b*****. No clue how to move ahead from here. cant read user.txt. Could someone help or give and hint on how work on p*******_b*****.
P.S : newbie here.
Thanks.
@WickSec said:
I got user but Iām stuck on root. I see that the key itās either c*** or w**** but nothing I try works. Can I get a hint from anyone?
try looking at the enumeration result carefully ā¦
anything out of the ordinary ā¦check it out
Also there is a reason why the box is named CURLing
Hi guys, so this is my second box in HTB. Iāve got user, and i see two files in the a****-area, but i am not sure how to check which program is updating them, can anyone give me a hint please? Thanks!
Tried scanning with joomscan, joomlavs, nmapā¦ browsed directories as a result of joomscanā¦ got the username too on blog i.e. F***** ,saw s*****.*** on the page source at the bottom of page. tried many combinations of usernames and password but unable to access. first time trying on joomlaā¦ also people commenting overthewire level 12, i have completed it upto level 20 or something so that would be easy then. please help , message me.
Hey all, I have a reverse shell as w**-d***. I see the p*******_b***** file. I ran āfileā on it, looked up the magic bytes. File says it is a**i, and the magic bytes says b2. Iām stuck at figuring this file out. Can someone PM me with a hint or point me in the right direction? Thanks!
Hello. Please help on on curl options. Iāve got user fl___s creds, sshād to the machine, enumerated the a****-*a and found how the two files are being constantly edited, but Iām not sure how to get cl to work the way I want it to. Please DM me. Thanks