Json

Rooted and hour ago or so :slight_smile:
Liked it a lot ! Nice machine - i learned a thing or two ! and its really real life applicable !

Tips for user?
Cant really give any - its either you know about it or you dont.

Tips for root?
Meterpreter is your best friend - but it wont work first try

P

Rooted. Tips:

  • User: Watch the requests, and remember the name of the box
  • Root: Pretty simple, but the first thing you try probably won’t work

rooted. funny box. Tips:

User: Just look at the name of the box and listen to all requests; then use google
Root: Check all open ports.

quick box but fun and enjoyable non the less :slight_smile:

User: Google is your friend, when it works, its easier then you would have expected.
Root: I might have taken the “harder” which required a bit of picking things apart and sorta putting them back together again. after that it was just a few commands away.

@Cyb3rb0b thanks for giving me enjoyable sunday

*seems i did take one of the harder routes, thanks @ratone

quick box but fun and enjoyable non the less :slight_smile:

User: Google is your friend, when it works, its easier then you would have expected.
Root: I might have taken the “harder” which required a bit of picking things apart and sorta putting them back together again. after that it was just a few commands away.

@Cyb3rb0b thanks for giving me enjoyable sunday

*seems i did take one of the harder routes, thanks @ratone

i have rooted the box in the lazy way (5 mins or so). Can you give me some hints what the harder way is?

Type your comment> @FLX0x00 said:

quick box but fun and enjoyable non the less :slight_smile:

User: Google is your friend, when it works, its easier then you would have expected.
Root: I might have taken the “harder” which required a bit of picking things apart and sorta putting them back together again. after that it was just a few commands away.

@Cyb3rb0b thanks for giving me enjoyable sunday

*seems i did take one of the harder routes, thanks @ratone

i have rooted the box in the lazy way (5 mins or so). Can you give me some hints what the harder way is?

If this is to much of a spoiler, please delete this.
→ homemade is never ideal ←

Type your comment> @j3wker said:

Yep - Got nothing amazing so far, I had a lead but not sure yet if valid.
Also got some worthless creds but i guess they are an hint

Working my way through atm.

Did those creds end up being as useless as they have seemed, with the exception of a bit of guidance?

i did not use any creds for this target to get root…but maybe there are other ways to get into this box.

rooted - nice box, I really appreciate that the box was stable and could be exploited without stumbling over spoilers from others (being on the free server, often that’s an issue). Now I know what people meant with “its easier than expected if you know it” (for getting user). Hint for user: Use the name of the box for an INITIAL pointer for where to take a closer look at, nothing more. First, I had the right idea but wasted some time because I somehow got misled by those “look at the name of the box” posts (my fault, I know…). root was easy, guess I did it the lazy way.

If anyone is around that I can hit up about the initial entry, let me know. I’ve found a few things I think might be useful, but I have no idea what to Google at this point to find any sort of information to learn from as everything I’ve tried didn’t appear applicable to this. I’m sort of week on the javascript/json/api side of things and would really like to strengthen that, but it’s hard to do when you have no idea where to start.

Type your comment> @wizliz said:

If anyone is around that I can hit up about the initial entry, let me know. I’ve found a few things I think might be useful, but I have no idea what to Google at this point to find any sort of information to learn from as everything I’ve tried didn’t appear applicable to this. I’m sort of week on the javascript/json/api side of things and would really like to strengthen that, but it’s hard to do when you have no idea where to start.

I’m in the same boat. I know what I need to do (roughly) but based on talking to some other people, I don’t know if I have the tools to do it. :confused:

I’m trying to get user.
I have found a** / a****** and a** / t**** is there any other endpoint or I have to work with the other 2? Or has nothing to do with that?
Found too the creds but seems worthless

no idea whats going on haha

Nice work @Cyb3rb0b. Straightforward and Pretty stable box. That obfuscation was kinda uh but overall it was good.

Hints for foothold: e-mail field is really confusing, dont trust it.

Thanks a lot @Cyb3rb0b for such a nice box.
Got root using both lazy (Thanks @TsukiCTF for mentioning his repo. It actually took more than 5 minutes, but who counts :)) and the slow (intended? way)
Loved the slow way much better as it requires you to actually do something :slight_smile:
Had fun
PM/DM for hints (although everything was already told here)

Pretty sure I know what needs to be done in terms of giving it that special kind of t***n, but I can’t find any creds to discover what that thing should look like before I make some special modifications…

Can I please get help for the json part?

Type your comment> @mech said:

Pretty sure I know what needs to be done in terms of giving it that special kind of t***n, but I can’t find any creds to discover what that thing should look like before I make some special modifications…

Nevermind… T.T don’t neglect the basics…