onetwoseven

1111214161719

Comments

  • Hello guys when i do the port forwarding all pages are blank. What am i doing wrong can someone give me a nudge. TY :)

  • Anyone PM a hint, stuck at s**p, trying to l*nk local dirs, just getting a bunch of 403s

  • edited June 2019

    I need some help with Initial Foothold. All I get is failure messages. Can any one give me nudge?

    edit: After posting this message I found something.
    edit2: Stuck with root. I figured out something about a-g but need some help here.
    edit3: Got root. It was a real challenge. I think this machine is harder than "Fortune".

    Hack The Box

  • got user.txt now looking for root.. help me for that

  • I am stuck on the "File uploaded successfull.y" part. If someone could PM me and give me a nudge in the right direction I would greatly appreciate it.

  • edited June 2019

    Anyone able to give me a push in right direction?
    I can access the high port but need to login there... no creds found for that :(
    assume something to do with initial foothold but looked at all commands I have there but don't seem to able to grasp hold on anything

    Update: managed to get passed that one.. now fun with the upload.. :)

  • edited June 2019

    trying to s**p in with creds on the site however, i get password incorrect....what? am i doing something wrong?

    EDIT: nvm got in but seems to hang a lot :/

  • fail2ban banned me so i used a SOCKS proxy and now the password for s**p is wrong???? what? please PM me

  • edited June 2019

    Hi, I'm looking for a poke in the right direction as I'm stuck. I've tunneled through S***S (and even tried doing it twice to/through the host, hoping that it'd show up as a connection from localhost and let me in), but I keep getting 403 on the high port.
    I've found the credentials in the S*P file. I haven't been able to get a shell or user.txt at this point, but assume it's because I need to get to the high port first. Can someone help me out please?

  • i uploaded the file on sftp but cant find the path to execute it

  • edited June 2019
    Wow! What a ride. Awesome box! After far to many days I got root!
  • Type your comment> @p3tj3v said:

    Anyone able to give me a push in right direction?
    I can access the high port but need to login there... no creds found for that :(
    assume something to do with initial foothold but looked at all commands I have there but don't seem to able to grasp hold on anything

    Update: managed to get passed that one.. now fun with the upload.. :)

    how you access the high port?

  • exciting box, learned a lot. thought of giving up countless times. special thanks to @p3tj3v for the nudges.

    User is nothing compared to Root.
    Root requires a bit of research, if you can get a vm and experiment in your lab, that would be the way to go.

  • also finally managed to root the box.. sure been an interesting learning experience..
    Luckily @Shinigami2so gave me the tip to overcome the final hurdle :)

  • burp not intercepting the localhost request tried everything.. help me for that

  • Type your comment> @iamsundi said:

    burp not intercepting the localhost request tried everything.. help me for that

    check your browser settings... quite often localhost is excluded from proxy...

  • Type your comment> @p3tj3v said:

    Type your comment> @iamsundi said:

    burp not intercepting the localhost request tried everything.. help me for that

    check your browser settings... quite often localhost is excluded from proxy...

    tried everything.. come in pm

  • edited June 2019

    I need help with plugin upload part
    Edit : Got it

  • Hey all,
    I'm finally circling back around to this box after leaving it for a bit. I managed to get a shell uploaded as a www user after logging into the high port page. I was wondering if I had blown past user.txt because the next step now seems to leverage a**-g**. Any help/thoughts regarding user.txt would be appreciated! :)

    zweeden

  • Hey All,

    I am almost there for getting the root. I am at a stage where executing the command is throwing an error that the repo isn't signed. Now I am wondering if I need to sign the repo to make it work is a rabbit hole or the correct way forward for root? Because the process is quite lengthy.

  • just started to doing OneTwoSeven seems a very nice box itself in the starting very good job again @jkr

  • Type your comment> @radiatedsky said:

    Hey All,

    I am almost there for getting the root. I am at a stage where executing the command is throwing an error that the repo isn't signed. Now I am wondering if I need to sign the repo to make it work is a rabbit hole or the correct way forward for root? Because the process is quite lengthy.

    signing should not be needed. Probably related to the structure of your repo.

  • edited June 2019

    my burp suit is not intercepting the localhost request please help me with that.. as A***n panel is running on localhost:60080 port and burp is not intercepting that url request

  • my burp suit is not intercepting the localhost request please help me with that.. as A***n panel is running on localhost:60080 port and burp is not intercepting that url request

  • @ecdo said:
    Also stuck on root. Got shell as w**-*****-**** and found the a-g thing. I am able to route the a-g thing through my machine. I have setup my own r********y, but how can I exploit without a good sign. There is a thing with a-g recently, but this one is updated already. Any hints? What are good docs to move forward?

    come in pm brother.. i am stuck at plugin upload part

  • I'm having trouble with the plugin upload step, could someone PM me with help?

    Feel free to PM for help on boxes I've done. Please drop me +1 respect if I do help
    ASoggySandal

  • edited June 2019

    Finally i got a user.txt without uploading addon. Hint: Default.
    Any idea how to make uploader work. I've do many inspection without success. If you have time to help me - please PM :+1:

    Edit: Already i know how to do that. But its too much work to root

    If you need help with something, PM me how far you've got already and what you've tried. I won't respond to profile comments. And remember to +respect me if I helped you <3

  • edited June 2019

    TL;DR Edit: nvm got it!
    So as many before in this thread I'm struggling with uploading my shell via the special manager. I've modified the action to go through m.p which includes the --add. and makes the pr**_m**** work by adding a bogus parameter. I get the "File uploaded successfull.y" response but this is where I am utterly stuck. I've tried new filenames or overwriting l***n.php with the recovered version and a bit extra in the first line. The uploaded file neither appears in root nor in the a****s folder. Playing with burp repeater doesn't help there either... I still get the successfull.y[sic] message but no cigar. Any help where I am doing it wrong? Locally debugging the code in question I could confirm that the bypass of the wrongly implemented checks has to work and I wouldn't get "successful" output if it didn't.

    /Edit: nvm got it!

    image

  • edited June 2019

    any hint about spoofing alternative for the ap* g** ?


    finally got root, i've learned so much in this box
    Thanks to @dontknow

  • ugh... im exhausted by the upload part, have tried with browser and burp both by manipulating lots of fields but still getting 404, funny how ad***-do*****d works...

    sanre

Sign In to comment.