An hour late after it was retired, but rooted. I really enjoyed this box. I thought it was pretty realistic. Not because of clowns but because it emphasises basic skills and drills. Proper enumeration, ignoring what doesn’t work and following an evidence driven approach.
Clues were there in abundance. Some silly stuff, but hey, if you go through the effort of creating a box like this, you’re allowed to have some fun yourself!
What slowed me down on this wasn’t the inherent complexity or trolls (I even learned something in the shadowtroll bit) but not properly enumerating.
Cools stuff:
- Multiple domains
- Abusing cookies
- Out of band SQLi
- Playing with SSH
- rbash escape - Learnt some new tricks here
- root - got learned on enumeration after trying to pwn the wrong binary for an hour and a half
Cool box. Thumbs up from me. Thanks, @3mrgnc3 !