Postman

This one was interesting, you can definitely go down a rabbit hole super easily if you assume all public tools will hold the key. This one was one-offed quite a bit and is only easy if you’re super creative.

rooted

PM for nuggets

@rholas Just sent you a PM.

Stuck in M*** user, any nudge for the root? Exploit in msf is not working

I’m not familiar with r**** so I think I’m down the rabbit hole. The obvious exploits don’t work (assuming on purpose), will I need to ‘guess the username’ somehow, or can I find that via enumeration?

Type your comment> @idomino said:

I’m not familiar with r**** so I think I’m down the rabbit hole. The obvious exploits don’t work (assuming on purpose), will I need to ‘guess the username’ somehow, or can I find that via enumeration?

No guessing is needed for this box

@blackwingz44 said:
Stuck in M*** user, any nudge for the root? Exploit in msf is not working

Just exploit something that before getting a user you couldn’t. It Is a common vulnerability.

GitHub > msf
slave is not the way

if it is slaved and you cant write, try
slaveof no one

Rooted, if you think or have a question why not work.
Try to reset machine first.

@_@

I’m stuck with r***-**i part. Is it necessary to guest the username? It is not possible to follow the steps the way is shown in a recommended book…

Rooted! Thanks to all for the help! I enjoyed learning about the services on this box. Thanks for providing it, @TheCyberGeek!

Rooted,thanks for who helped me.
PM me if you need hint
YaSsInE

I got access with r… user and found the i._…k file.
I have used ssh2john to move it to hash and john to find the passphrase…I got a match with c…8 but connection get closed…for sure I do something wrong, but what?

Type your comment> @garbo77 said:

I got access with r… user and found the i._…k file.
I have used ssh2john to move it to hash and john to find the passphrase…I got a match with c…8 but connection get closed…for sure I do something wrong, but what?

In which directory user.txt is saved? Think and check users.

I try to connect it with my rce py it get connection time out I use 10.10.10.160

Type your comment> @Pratik said:

Type your comment> @garbo77 said:

I got access with r… user and found the i._…k file.
I have used ssh2john to move it to hash and john to find the passphrase…I got a match with c…8 but connection get closed…for sure I do something wrong, but what?

In which directory user.txt is saved? Think and check users.

rooted…enumerate enumerate enumerate :slight_smile:

I am trying to sync redis slave to master but it does not seem to work. Any nudge?

Type your comment> @garbo77 said:

rooted…enumerate enumerate enumerate :slight_smile:

PM me? I don’t understand why I’m getting connection closed.

Type your comment> @garbo77 said:

I got access with r… user and found the i._…k file.
I have used ssh2john to move it to hash and john to find the passphrase…I got a match with c…8 but connection get closed…for sure I do something wrong, but what?

I’m exactly in the same point…

spoiler removed