I have absolutely no idea how people guessed right way to fileinprocess.
If you are trying to enumerate all what you can, and then somehow combine it to way-to-go this is not that kind of machine, at least it is not for foothold’s fileinprocess.
Okay, need a nudge. I don’t understand what I am missing.
so enumerated vhosts. have a few of those found. one seems pointless as it is just javascript and pictures. read through the text though. it looks like a hint that i dont get. with two others i feel like i did everything I could, but i cant guess the greds for the d**.er.htb and can’t find anything at stg.****er.htb. found bak file. but i have no idea where to use the string from it.
could somebody give me a hint? i am very confused with all of the enumeration here
do we need a special wordlist in order to crack the hash for the web service on d*?
UPDATE: others said that rockyou should work for everything here at HTB. so there should be another way in, not just cracking the hash.
I’m really stuck on getting anything that the hints from the c*** vh*** are saying. I have gobustered everything and looked at everything, but just can’t see where to go from next. i feel like the response from the con****.p** is telling me something but I just don’t know what to do with it. Ahhhhhhh
What could possibly be done with this uploading?
EDIT: Without knowing how uploading work it is really hard to highlight useful vuln from tons of strange search results.
Finally got root… Thank god! It was such a looong road…
But I loved this machine! Even though it was so frustrating most of the time, it also felt incredible every time you got to the next step. Loved that! Exploit for the web got me so excited, I’ve never seen such a cool vuln. Plus root was easy and fun.
Thanks big time to the @vsamiamv for all of the tips!
And thanks to the @MrR3boot for the machine!
Awesome machine @MrR3boot . This was my first 40 points machine and i learned a lot. i thank @MrR3boot , @weelye , @Kucharskov for hints. User was a long way. root was obvious and easy, though there are few other ways for root. but i know only one.