Carrier

nvm got it

I can not get burp to send anything worthwhile to the server, is there someone who can PM me if they can assist. Been at this almost all day. Thanks

Guys … after getting user.txt … what i need to do … I’m stuck … can someone help me please :slight_smile:

Can some one give me a hint for priv esc…how to go with B** H*******g , how to use digram found during enumeration help??

@MrB00tz said:
I can not get burp to send anything worthwhile to the server, is there someone who can PM me if they can assist. Been at this almost all day. Thanks

Do you have user flag?

@MrB00tz said:
I managed to get into the admin panel, does getting the user account have anything to do with the guy who was recently terminated? Or does it have to do with the wolf guy who reported the security issue?

Edit: Oh wait, I think it`s the extinct animal from South Africa?

I’ve seen people discussing that guy in this forum. But for getting user flag, I don’t think we need him lol. Getting user is pretty straightforward.

Just managed to get the user.txt. I am having fun just messing with this part of the box. It forces you to use Burp’s other features then just the proxy. I have not moved on to the root.txt yet, but if you want some pointers on the user, PM me and I will be glad to guide you.

after getting helped by like 5 people… finally rooted this crazy box. PM if you need hints, happy to return the favor :slight_smile:

@0xINT3 said:

@MrB00tz said:
I can not get burp to send anything worthwhile to the server, is there someone who can PM me if they can assist. Been at this almost all day. Thanks

Do you have user flag?

I don`t have it yet :frowning:

@0xINT3 said:
Getting user is pretty straightforward.

In that case I am going the wrong way with this

Hack The Box

Getting to user was pretty straight forward, I think.
However, I am stuck with the PrivEsc part. I found the respective service, used vth to change stuff. T***p does not yield any results on any interface whatsoever.

Anyone able to give me a hint?

Im loosing my mind over here! All this B** Hg stuff is not making it easier.
Got the user, got the shell on the box! And im prette sure that i have to change something in the b
.c
*f file and prehaps somethinh with the IPtables!
Can anyone PM me if im on the right path.

Great box! Had done an exercise previously on this technique, but only after suffering here for several hours I finally learned and properly understood how the attack can be used.

Cool…I am relieved closing my bP now got root. I’ve learned new many thing on this box and how this b works. I cannot make it without the guidance of those guys. They helped me a lot . by the way does S******.txt can be used for flag on root? Thank you guys and the creator of this box.

This is the best box I have EVER done. Thanks so much. Great for us network engineers.

@MrB00tz said:

@0xINT3 said:

@MrB00tz said:
I can not get burp to send anything worthwhile to the server, is there someone who can PM me if they can assist. Been at this almost all day. Thanks

Do you have user flag?

I don`t have it yet :frowning:

PM :slight_smile:

can anyone help me? i found doc and 2 other ports too but i cant enemurate 161 port , so if anyone has discord please add me eth0#4415

Hey, I need help about the b** h*j*****g. I understand how the bgp protocol works and the purpose of the attack. I try to modify the b** config and I see some interesting traffics with t*p***p. Anyone can help me ?

Best regards,
bar0z.h

I am returning the favor so if anyone need some tips. dm me happy to help.?