Scratching my head to get the root. I hate binary exploitation.
Can anybody PM me and give me nudge?
You better learn basics of reverse engineering and debugging. I donāt think the binary exploitation part requires something much more than basics. So, thatās going to be good for you. Donāt rush, FBās been already taken. But thatās only an advice, do whatever you like to.
so i have p**** int access, able to to view files, move directories, upload files, I still canāt manage to get a shell to pop back. I was wondering if i needed to continue with this path or if I should be attempting to access more legitimately on the lower port.
Just got started - enumeration still going; found W***z**g while doing stuff manually is this the right path? Can we get RCE this way through debug or do I need to look harder at some errors?
EDIT: Yup, now have shell as technoweenie, working on getting user. Canāt seem to find anything pertinent to privesc. I must be missing something. Iāve run a few enumeration scripts and monitored processes to no avail.
EDIT 2: Well I got user.txt from the one with the God complex. Iāve seen g****** and b*****e*********** mentioned in this thread much to my chagrin. I might give it a crack when Iām feeling up to it. Thanks @Dmwong for the hint
as iam getting a lot of dmās I would advice everyone to learn basic rop and not rush for the root, this video by ippsec may also help you - Camp CTF 2015 - Bitterman - YouTube
hey all, im this initial user on first getting a shell. i know what privs that user has got but cant seem to find anything useful in /var/****. am i supposed to be waiting for a scheduled event to occcur?
Need help on user. Managed to get on the system, now I canāt manage to find anything interesting besides a couple of hashes which decrypted donāt seem to work and also an executable thatās needed for root though. DM pleaseā¦
Need help with user. Iāve got a shell on the box but i donāt know i to proceed.
I ran a couple of scripts but i canāt find anything. Also tried pspy but not seems right direction.
Any hints?
Hi, I am working on the binary exploitation and I made a working exploit but for some reason it doesnāt work on the box. I have the libc from the box and I get gadgets from it. I donāt really know what Iām doing wrong. If someone is willing to give me some hints please do!
Thank you and if I this is a spoiler please tell me to take it down.
Hi, I am working on the binary exploitation and I made a working exploit but for some reason it doesnāt work on the box. I have the libc from the box and I get gadgets from it. I donāt really know what Iām doing wrong. If someone is willing to give me some hints please do!
Thank you and if I this is a spoiler please tell me to take it down.
The g****** file. I canāt run it, not user yet. But on my box, when I put in, a thousand chars (roughly), it just launches my command (AAAAAAmycommand). Is it really going to be that easy?