Postman

anyone can help me with user?

Type your comment> @Icyb3r said:

Type your comment> @Icyb3r said:

Spoiler Removed

Sorry for that ?

Hehe no problem … Hope u got it ? before it was reported

Rooted. learned couple of things. :slight_smile:

I can’t add any thing as hint everything clear here. :slight_smile:

Type your comment> @Impulse said:

Type your comment> @Icyb3r said:

Type your comment> @Icyb3r said:

Spoiler Removed

Sorry for that ?

Hehe no problem … Hope u got it ? before it was reported

sure mate, got it immediately thanks :slight_smile:

so I am slightly surprised and confused atm… I just got root, but I think it’s because the VM is at a weird state…

Would any of the people who have rooted it want to talk about their process in private just so I can check my steps ?! @clubby789 @trollzorftw @Warlord711 @Xentropy @Crashie @n4v1n

Thank you @TheCyberGeek :slight_smile:

The box was actually quite fun but it struck me where I’m weak.
Not an easy box if you ask me.

Getting the user was harder than on Registry.
Root was easy

I still don’t understand what the box name represents?

Rooted. The box is quite easy although you can always learn something.
There are too many hints in the forum to solve this.
Something that I have found curious is to see how the author has left all .bash_history with his commands.

Enjoy friends!

After a little nudge on the initial foothold, the rest of the box wasn’t that hard.
All in all a fun box :slight_smile:

Need Help

Anyone have any nudges for user? I found something for the user, but the config is blocking connections from them (unless that’s the problem to solve?). I also found a certain script owned by the same user, but not sure if that’s a rabbit hole.

EDIT: Nevermind, managed to get user.

Why w***** shutdowns sometimes ?..

Stuck on user. I’m not sure if r**** is the way to go as the exploit isn’t working, found the script. Need a nudge

rooted nothing learned

Found a i*_r**.bak. Is right for User?

Type your comment> @verdienansein said:

Found a i*_r**.bak. Is right for User?

yup you are on the right path. :slight_smile:

learned a few things about R*dis :slight_smile:

I don’t know why the MOULE command was not available @ Rdis v4.. but this is the reason why the obvious [M] exploit wasn’t working!

Initial foothold may not work @ the first few tries

P.M for hints friends!

Type your comment> @Icyb3r said:

Type your comment> @verdienansein said:

Found a i*_r**.bak. Is right for User?

yup you are on the right path. :slight_smile:

rockyou is enough to solve this part?

Type your comment> @q1Z said:

Type your comment> @Icyb3r said:

Type your comment> @verdienansein said:

Found a i*_r**.bak. Is right for User?

yup you are on the right path. :slight_smile:

rockyou is enough to solve this part?

tried r****u → nope
tried c
l on web + some rules… → nope

Type your comment> @q1Z said:

Type your comment> @Icyb3r said:

Type your comment> @verdienansein said:

Found a i*_r**.bak. Is right for User?

yup you are on the right path. :slight_smile:

rockyou is enough to solve this part?

It works.

Type your comment> @MrW0l05zyn said:

Type your comment> @q1Z said:

Type your comment> @Icyb3r said:

Type your comment> @verdienansein said:

Found a i*_r**.bak. Is right for User?

yup you are on the right path. :slight_smile:

rockyou is enough to solve this part?

It works.

you are right… just an old john version…