Mango

1246723

Comments

  • Finally rooted. That was a nice experience and definitely one more thing to take into account during enumeration. Thanks @mrR3boot

    For those who still struggling with the initial foothold:
    User:
    1. Don't even try to brute by dictionary. There is absolutely no chance to do that.
    2. Don't trust your eyes - trust responses.
    3. Don't forget that some special chars have even more special meaning.
    Root:
    For some reason didn't manage to spawn local shell, but managed to spawn reverse. Once again don't trust your eyes.

    For those who still cannot get hints about fruit. Try to play with letters

  • Type your comment> @Ruri said:

    Raise your hand if you're tired of people thinking "cOnSiDeR tHe BoX nAmE" is a hint when there are roughly four million different kinds of software named after fruit...and apparently we are supposed to guess one...

    there are different vowels in the alphabet...I understand your anger, the path to initial foothold is extremely annoying and requires a bit of dev-style thinking

  • Type your comment> @arrowsticino said:

    This was a really fun box and a great learning experience. Kudos to @MrR3boot.

    Obligatory hints.

    User: very thorough enumeration is the key, knowing a bit of CS theory (and applying it in terms of code) really helps cutting down the time needed.
    Root: I said "very thorough enumeration" for a reason.

    :)

    MrR3boot
    Learn | Hack | Have Fun

  • @idomino said:
    Joined the Mango club :)

    Last login: Thu Oct 10 08:33:27 2019
    [email protected]:~# id
    uid=0(root) gid=0(root) groups=0(root)
    [email protected]:~#
    

    Awesome box, thank you @MrR3boot !

    Welcome to the Juicy World :p

    MrR3boot
    Learn | Hack | Have Fun

  • Type your comment> @olsv said:

    Finally rooted. That was a nice experience and definitely one more thing to take into account during enumeration. Thanks @mrR3boot

    For those who still struggling with the initial foothold:
    User:
    1. Don't even try to brute by dictionary. There is absolutely no chance to do that.
    2. Don't trust your eyes - trust responses.
    3. Don't forget that some special chars have even more special meaning.
    Root:
    For some reason didn't manage to spawn local shell, but managed to spawn reverse. Once again don't trust your eyes.

    For those who still cannot get hints about fruit. Try to play with letters

    Welcome to the Mango club :)

    MrR3boot
    Learn | Hack | Have Fun

  • edited October 2019

    Type your comment> @ow1joker said:

    Raise your hand if you spent far too long writing something in python, just for it to continue to let you down...

    Please keep in mind all this is based on I assuming you wrote the same thing I did and you first screwed up the same thing I did. You might want to add a single ^ to the right position and/or check what you exclude. Tiny tiny changes make huge differences :)

    @Ruri you're goin the wrong way. It's not a hint that the thing is named after a fruit. It's named /almost/ after the box. Consider it a... typo?

    rowra

  • edited October 2019

    Thanks @MrR3boot for the box this interesting box!

    Really liked user part though had to ask for nudges. Need to add colors to my exploit fork to make it look even better =)

    Root is much simpler

  • rooted!! i think player is easier than that :P

    oo3d2

  • Type your comment> @v01t4ic said:

    Thanks @MrR3boot for the box this interesting box!

    Really liked user part though had to ask for nudges. Need to add colors to my exploit fork to make it look even better =)

    Root is much simpler

    Glad you enjoyed it :)

    MrR3boot
    Learn | Hack | Have Fun

  • @ngaswam said:
    rooted!! i think player is easier than that :P

    Are you serious ? for me Player is nightmare lol :p

    MrR3boot
    Learn | Hack | Have Fun

  • This one took some time, in the end I loved it and learned a lot. Thank you!

  • Thanks @MrR3boot , learned couple things :) The route to user was quite fun (and thankfully it was not as much trouble as Player).

    I quickly found my way to the "under construction" page, but got stuck there for some time. For anyone else in a similar position, my hint is that the vulnerability used to get there is correct but it needs an uplift. Perhaps taking a look at PayloadsAllTheThings would help (if you got to the under construction page you will know where to look in the repo).

    Click here for HTB Profile: You are welcome to contact me for a nudge, but if I help you, please consider giving respect.

  • Hey guys! I am in need of help, searchengine and a******t*.*** found, unable to find the login page can anyone give me a hint? :)

  • I'm stuck in the privesc part... Any hint is welcome PM
    Thanks!

  • Spoiler Removed

  • Thanks to @rholas and @joshibeast for open my mind.

  • edited October 2019

    Rooted.
    VERY enjoyable box. Thank you @MrR3boot

    Hints:
    User: This Mango is not really a mango... it's something more "known" to us. ;)
    Root: Your usual enumeration should highlight your target.

    Happy to help if anyone needs a hint.

  • > @naveen1729 said:
    > Type your comment> @rholas said:
    >
    > (Quote)
    > being too literal, consider a "fuzzy match"

    Bro your a Genius!!!

    Just now reading on how to approach the sweet fruit and your hint is spot on !
  • Hey everyone! I am having a hard time trying to move forward. I am stuck on the mango search engine and the a*****.**p. Some help please! I am new at this! Thanks.

  • It's been 3 weeks since I got into this wonderful world of pentesting. I've done a few machines here but his has been one of the most enjoyable ones for me so far. So great job on this box @mrR3boot!

    I really struggled with a python script, everything seemed perfectly fine, but I got a different answer than I expected every time. It helped to pass an extra argument to a method somewhere (silly me).

    I didn't get a root shell but was able to get the root flag anyway. I assume it's through the same escalation method though.

    Hints:
    @olsv gave a really good hints for the initial foothold.

    root: it helps if you can code in a certain language

    GPLO

  • Hey, I'm also stuck at the mango search engine and a******.*** I could use a hint on finding the login everyone keeps mentioning.
  • dont be blind like me and check carefully S**d

    Arrexel
    OSCP | I'm not a rapper

  • edited October 2019

    @ZeWanderer said:

    Hey, I'm also stuck at the mango search engine and a******.*** I could use a hint on finding the login everyone keeps mentioning.

    If search is not that helpful, there might be something else on that machine that is very similar to the search, but less restrictive.

  • Type your comment> @olsv said:
    > Finally rooted. That was a nice experience and definitely one more thing to take into account during enumeration. Thanks @mrR3boot
    >
    > For those who still struggling with the initial foothold:
    > User:
    > 1. Don't even try to brute by dictionary. There is absolutely no chance to do that.
    > 2. Don't trust your eyes - trust responses.
    > 3. Don't forget that some special chars have even more special meaning.
    > Root:
    > For some reason didn't manage to spawn local shell, but managed to spawn reverse. Once again don't trust your eyes.
    >
    > For those who still cannot get hints about fruit. Try to play with letters

    I hope I don't have to study a new query language...
  • Thanks to @MrR3boot for the box, I enjoy a lot custom exploits and this one was really fun.

    (silly OT: how can you rate machines? Is there a upvote/downvote system? What's the star rating in the machine page?)

  • @BadRain said:

    I hope I don't have to study a new query language...

    Nope. You can do it even manually. Although you'll quickly realize that script is the way to go

  • @gall0ws said:

    Thanks to @MrR3boot for the box, I enjoy a lot custom exploits and this one was really fun.

    (silly OT: how can you rate machines? Is there a upvote/downvote system? What's the star rating in the machine page?)

    Click the star in the machine list to give it a star rating.

    clubby789

    • GCIH
      If you need help with something, PM me how far you've got already, what you've tried etc (I won't respond to profile comments, or on box release night). And remember to +respect me if I helped you ; )
  • @clubby789 said:

    Click the star in the machine list to give it a star rating.

    Cheers.
    Actually I did it, I was expecting a popup or something but apparently it just changes colour.

  • Rooted! Fun box, never anticipated that I'll need to use binary search for hacking :P

    Never gotten root shell though (reverse or otherwise)

  • edited October 2019

    If anyone can nudge that would be great. Been staring at login page and thinking about Mangos for too long now... not making a connection, or I am but not seeing it correctly.

    If someone can DM me to make sure I am on right path.

Sign In to comment.