Traverxec

Nice box, especially the user part which is a good opportunity to learn properly unix fs permissions. Hint for user from me: some things are not visible, but the crucial ones actually are. I spent too much time to look for files in their default places. Do not repeat my mistakes.
Nice machine. Enjoyed!

I’m definitely going to have to come back through and read through all of these pages. I was able to get a shell and traverse some of the directories. But was unable to get user or root flags, little long get the hashed passwords from anywhere. Linux/Unix is not my strongest of knowledge but I’m still learning. This machine is fun and infuriating all at the sametime for me. However I feel once I get it I will learn a lot more about it

Rooted!

Root took me an infuriatingly long time, I have never seen anything like that before… The more you know!

User was pretty easy but I got stuck on root.
I had the right idea from the start but I couldn’t figure out how to use it properly.

Literally hitting myself now I worked it out, but I guess I’ve never done anything like that before.

получил root
спасибо за подсказки @extincted @m4rc1n

Изучите вывод nmap и вы увидете то что нужно проверить

для начальной опоры есть скрипт в msf5 используйте его и получите w******a

user: ищите конфиг файл и внем будет ссылка на зашифрованый хеш. открываете расшифровывайте и подключаетесь по ssh

root: изучаете файл .sh и читайте https://gtfobins.github.io/ после этого сможете получить root

спасибо за коробку
если нужна помощь пишите в PM

я все делал в Parrot Linux

Need a nudge for user please.

Have d**** credentials, read the c*** file and man for the service, gone to hidden directory and discovered some files, but get permission denied errors on anything I try… What am I missing?

Please could someone pm me. Thanks.

Hello guys, could someone help me with the escalation of privileges since it is my weak point I have the user and I just need to root a greeting

I’m stuck on the user. I have a shell and found the creds and interesting file but don’t know what to exactly look for. Need help please.

Stuck at user and I think I’m getting a little bit crazy, because I keep trying the same thing, which should work (in my very disturbed mind), but it doesn’t.
Found the file to read, cracked the password, tried to access the directory through http…but nothing happens, just the “private space” page.
I don’t know if I’m using a wrong user, a wrong password or accessing a wrong page…any hints?

EDIT: Nevermind, I WAS getting crazy. A good night of sleep cleared my mind

Rooted.
Feel free to DM for hints :wink:

root@traverxec:~# id
uid=0(root) gid=0(root) groups=0(root)

Took some time, but it twas a fun box. Thanks @jkr. PM me if you need some hints

I found a hash from the c*** folder, and used hashcat to unlock it, but I couldn’t log in to D****'s user. Someone prompted me to read the configuration file carefully, but I got nothing. I need a slight hint to indicate my direction. Thank you.

Thank you very much to the creator of this machine for taking your time to bring it here thank you very much also to my friend extincted for his advice and patience xd

pd: I’m root yeahh !!

I found a new directory /~d***/ on the url, but the prompt is private space, the configuration file and the official guide file of nostromo are also read, there is no clue, this is frustrating, if anyone can hint me, please PM, thanks

Type your comment> @ryuutanyou said:

I found a new directory /~d***/ on the url, but the prompt is private space, the configuration file and the official guide file of nostromo are also read, there is no clue, this is frustrating, if anyone can hint me, please PM, thanks

I can suggest two independent things:

  • Read the manual again and find another important configuration option too.
  • If one communication way doesn’t work, use another way instead.

Type your comment> @bumika said:

Type your comment> @ryuutanyou said:

I found a new directory /~d***/ on the url, but the prompt is private space, the configuration file and the official guide file of nostromo are also read, there is no clue, this is frustrating, if anyone can hint me, please PM, thanks

I can suggest two independent things:

  • Read the manual again and find another important configuration option too.
  • If one communication way doesn’t work, use another way instead.

I think it is HOMEDIRS , I try found p***_w*** folder , and used find / command ,but nothing

We are close to the solution, so that send me a PM if you want to get one more hint.

I am unable to crack the hash with either hashcat or john , hashcat does not find the pass with rockyou while john always exits with dir*****ss

Nevermind, i’m retarded

Rooted.
Really fun machine to kill some spare time. It was my fastest so far.

Hints:
Foothold: Basic enumeration

User: What’s on this machine? How does it work? Enumerate and read the documentation about it. Check a particular odd permission for a more obvious hint (it won’t make sense if you don’t read the documentation).
You can get user through 2 different ways from that point.

Root: In your face. I recommend reading GTFOBins after finding it.