Rooted, I enjoyed this box. There are plenty of hints on here already. Also remember to check the box’s profile page via HTB to see what it consists of. The main point that pops out is it is heavily CVE related.
Thanks for the box. As a n00b, I appreciate the easier boxes, and I thought this one had some nice quirks to keep the obvious exploits from working. Also the password that doesn’t work where you think it does was a useful reminder to keep my options open.
Подсказка
user: ищите скрипт на r***s немножко подправите и получите шелл. и поищите файлик который вам поможет. его нужно расшифровать и просто потом пишем su от пользователе и вводим пароль и получаем user.txt
root: ищем эксплойт и запускаем msf и там просто вводим полученные все данные и вуаля root.
Ok, I got user. I think the problem I had was I was trying to do the box while others were on the box at the same time. It’s really frustrating but I tried. Thanks to the people giving out clues on this forum. It really helped. I going to now read hints to root and try to root it.
Hey guys, just got user access, trying to use a m**** module on w***n but i’m getting a “cookie error” and “no session was created”. Am i on the right way ? I don’t mind some hints :s nvm, got it working. hint for this error: don’t forget ssl like i did…
Hi,
I think Ive got a different pass for the user from john… from previous replies I see others have it as c…8 but I got something totally different.
Any chance someone can point me in the right direction of where Ive gone wrong?
urrgh, spent longer than I wanted on user as Ive not had much experience with r***s… root was so much easier.
Rooted! A big thanks to @ascannerdarkly@n1njaaa@Wh0aMn1c0 for the tips. Learned about r****. The root was fairly simple with the use of m********* and a CVE. Can anyone PM me how to do it manually?
5 minutes to go, everyone ready?
i have used every information gathering tools but i cant find anything intresting, i m new in hackthebox… if you can help me then pls do share your ideas