Rope is very hard box that requires special skills and experience.
It was important for me not to restart nor reset box on the root part,
but I guess that more experienced hackers follow more elegant way to root.
so, I was able to rewrite messages the binary is showing when launched locally. Anyway, I’m not seeing how to take advantage of this. May I get some hints about what to do? PM!
■■■■ of a box! Took me close to a week to fully root, but the time spent was well worth it. Most of this box is pretty darn textbook, but that doesn’t make it any easier.
Big shout-out to @xsmile for helping me take another look at something I overlooked during privesc.
The way this box combined something you could grab from your initial foothold with your actual exploitation was really cool imho.
110% learned a lot from this box, props to the creator for making such a great box. Happy to give anyone who desperately needs it a nudge via PM
This box is a good reason why VIP is needed. With VIP, you get good latency and minimal resets. As a non-VIP user, I had to pray for a good latency (it wasn’t consistent in my case, which averages about 500ms) and a little bit of luck no one resets the box while my exploit is running. Overall, a straightforward, no nonsense box. Kudos to @R4J.
Found a way to download the binary. Now i’m stuck. I can’t figure out how to fire a BOF…
Someone can PM me a hint on which function should be (ab)used ?