Need some nudges… I’ve managed to find the /b***/b***/l***** page as well as the d**** version api page. Have read the docs and understand that I’m supposed to pull images. However I’m stuck at both sides without authentication creds. Am I supposed to be bruteforcing or am I simply looking in the wrong place?
Need some nudges… I’ve managed to find the /b***/b***/l***** page as well as the d**** version api page. Have read the docs and understand that I’m supposed to pull images. However I’m stuck at both sides without authentication creds. Am I supposed to be bruteforcing or am I simply looking in the wrong place?
Have you tried any classic username/password combinations? I have maybe a few logins I try on every page I come across (as well as googling for the application’s default creds).
If you try that and are still stuck, maybe reset the box (people can be jerks). Bruteforcing should be avoided.
Currently stuck at bt user. From the hints provided here, I think I’m supposed to su to w-d*** and exploit r***c somehow? I’ve even gone through the php files but still can’t find anything useful. Would appreciate it if someone could give me a nudge in the right direction ><
Go back to initial enumeration. You need to pass through that gate you could not pass at first. Look closely at file permissions, you might need to get other users permissions in order to get root.
@drdsol92 said:
Currently stuck at bt user. From the hints provided here, I think I’m supposed to su to w-d*** and exploit r***c somehow? I’ve even gone through the php files but still can’t find anything useful. Would appreciate it if someone could give me a nudge in the right direction ><
Thanks a lot @thek for this box. I had a lot of fun, really. I was familiar with the first technology used, but the whole root part was new and I felt a really nice sense of accomplishment.