Hint for HELP

I’m trying the **** port way and stuck trying to get the creds?? Anyone want to offer advice?

Hey, folks,

Someone can give me a tip with the user of this box. I understand that the server date with my PC is not coordinated but I don’t know where to go from here.

Greetings

anyone out there have time to break down the query syntax?

NVM got it !

I’m stuck rooting this box.
I found some credentials, tried some kernel and application exploits but nothing worked so far.

If someone has another hint for me just PM me.

I’m banging my head against a brick wall … I have found the user injection point, I have found the folder for t*****s, and I have tested with a jpg and txt. I just can’t get past the extension filter. Can someone PM me with a hint

rooted via code execution… I found some passwords but couldnt use them for privesc. Can anyone send me a nudge? I’d like to learn the intended way.

i NEED HELP plz , i stuck with the upload shell, i found the creds from port XXXX, and i logged into the main web site and found out that the upload direction would be easier than to get admin by b**** s*** , but i couldn’t upload the shell, btw i read the source code and i tried harder, all the ways that i know to bypass the upload mechanism, any hint for that point plz.

Enjoyed owning this box. It’s tricky, but I think it is fair. Root is particularly easy. I went the easy-mode route, but perhaps there is another way to get there that takes some more effort.

PM me if you need are stuck, tell me where you’re at and what you’ve uncovered so far and I will try to give you a nudge in the right direction.

Did b**** si and got user and pass but I am unable to use them to gain further foothold, can anyone pm me for more information? I even tried to s1(password) to use for lower port

Type your comment> @t4a1 said:

Did b**** si and got user and pass but I am unable to use them to gain further foothold, can anyone pm me for more information? I even tried to s1(password) to use for lower port

So I am able to login to admin area, however I have no clue how to further my foothold, am I going to use the same vul everyone is using? How did those that did using b**** s**i managed to get the user other than admin?

Hi,
I have this question bugging me , If time() in python returns epoch. how would timezone make a difference.?

Rooted Done and dusted a lot of false rabbit holes in this discussion the box was a piece of cake

Type your comment> @Hashbyte said:

Hi,
I have this question bugging me , If time() in python returns epoch. how would timezone make a difference.?

Asking that myself. Really strange behavior. But it also seems that PHP time() is timezone relevant.

EDIT:
But as I understand from time — Time access and conversions — Python 3.12.0 documentation epoch just says January 1st 1970 00:00. So it could be timezone based as this date may differ.

Well in this instance theres now to worry about i read some of the hints and was sweating as i needed this box for elite hacker and when i read the hints i thought oh wow nope was the easiest box on the active machines in my humble opinion

not too easy for noobs though as theres definately some gotchas right at the beginning

remember dont always believe what you read

So lovely to do a machine without Metasploit oh how i hate that program many thanks to the creators of this box i loved it

nvm

Got root, nice machine.

Some hints :

##User
if you find a tool/CMS,program,… that is opensource, try to download it to :

  • search for files that are useful to get version
  • install on a local area with full log and with your config

Now you can test all sort of attack and see if it work, or understand why not.
Other advice : if you find an exploit, read and understand it fully, modify it to get it work on your local area, many exploits don’t work out of the box, but if you are correctly enumerate, you can guess that you are on the right way.

root

Take some time to get a ‘real’ shell (in a ‘real’ shell you can enter a password to sudo, use interactives commands, etc.). If you can’t enter a password when you type sudo, its not a real tty shell.
I think I Can’t give some hint without spoil. As usual enumerate your system and you will get the solution.
If you are lost on priv esc, maybe you need to work on a checklist, a good starting point : Basic Linux Privilege Escalation - g0tmi1k.

Feel free to PM me if you want some hint.

I have rooted Help. However i set the time on my machine in order to do that thing. If someone has done that thing without setting the time on their machine would you mind sharing that knowledge with me

I did not set any time it was not needed that threw me for a bit when i initially did my recon on this box but i ignored that hint and it proved to be a basic but very enjoyable box