Depending on your syntax, you can actually do it all without the tool anyways.
personally I did over 200 requests, I’m sure there was a more elegant way but once I figure the search syntax it was quicker to copy and paste than figure out another script if anyone wants to pm me the more elegant options or a reference to them then I’d love to hear it. Now if only I could get the CVE for the pivot to work have no idea why it’s not working
Found the key and tried to use an e***********h CVE to set up a remote connection but the server doesnt reply. Found all the indices and I feel like I am querying them wrong
Struggling to get from s* to k*. I have read the config file, and I believe I understand where to run it from. But I keep getting curl(52) empty server. A nudge would be greatly appreciated!
So my problem is the reverse shell. I’ve uploaded a shell and put it in /tmp/shell.js
The IP is sat at myu tun0 ip and the port ist 8008. However, when visiting the CVE LFI url. The page just loads indefinietly and the shell never connects. Any tips on how to fix this issue?
Struggling with user. I think I’ve got everything I need but the pieces don’t seem to fit. If anyone feels like giving me a push, I’ll happily share everything I’ve done so far. Was having fun for a bit and now it’s just frustrating me because hints are like “use the needle” and I’m like ¯_(ツ)_/¯ .
have been able to find the “right needle”. I am stuck though, don’t know what to use as creds in the needle result and where to put them to get user.
would really appreciate any specific nudges!
Struggling with user. I think I’ve got everything I need but the pieces don’t seem to fit. If anyone feels like giving me a push, I’ll happily share everything I’ve done so far. Was having fun for a bit and now it’s just frustrating me because hints are like “use the needle” and I’m like ¯_(ツ)_/¯ .
Did you progress? I think we both are in the same boat.