Obscurity

I’ve read every post 3 times, tried several wordlist, even the full r**ky*u.txt with and without ext. I am doing something wrong and can’t figure out what i need to do. will someone pm me a nudge?

Thanks - got it

Rooted :slight_smile:

Fun and challenging box

Type your comment> @102707 said:

I’ve read every post 3 times, tried several wordlist, even the full r**ky*u.txt with and without ext. I am doing something wrong and can’t figure out what i need to do. will someone pm me a nudge?

I used d.td.t…n to find something very interesting. Parseltongue, what’s that? Time to learn. Yes, I’m still struggling :slight_smile:

Type your comment> @sulcud said:

Rooted!

Initial FootHold:

  • Read the webpage and you will find something interesting but with not known path (any fuzzing tool will help you)
  • Read code and exploit

User:

  • Brute force is not necessary

Root:

  • Really?

Just what i thought when i did root too :smiley:

.

which wordlist to use while fuzzing ? tried default wfuzz ,not giving any result

Thanks to the creator of the box, but I did not appreciate this machine at all.

root@obscure:/root# id
uid=0(root) gid=0(root) groups=0(root)

The user part is relatively simple … This is subjective of course … Otherwise for the root part you will not have too much complication.

Thanks ! @clubby789

Type your comment> @wolfflow27 said:

which wordlist to use while fuzzing ? tried default wfuzz ,not giving any result

ffuf works really well for initial fuzzing.

Rooted… learned few things… Was great! Seems i know a lot better Py then bash… as i used Py script for root… Need to close gaps in bash

Password for root really funny :slight_smile:

Feel free to ask if struggle…

Seem to be having a problem with the initial fuzzing, don’t seem to be able to find the directory

Type your comment> @mosaaed said:

here my problem User: Python (you will probably need to write code here)

You can solve it without writing a single line of code.Just use what you already have and derive what you need

Spoiler Removed

Having trouble with the initial fuzz. Using typical approaches that have worked on other machines and returning nothing. I’ve seen the hint about the 404 message, but not sure how to use it. Any nudge would be much appreciated. Thanks.

My experience with this box was interesting. This is probably the first CTF-Like box I had done, so it was definitely an experience for me.

Foothold: Not really much to say, forgetting a few basics along the way, but fairly straightforward.

User: Dealing with a corrupt file made my life a little harder than it probably should have been, but I managed to manually do what I needed by understanding the logic and do some open sourcing along the way.

Root: Um, not really much to say, was a little disappointed, but still fun.

Overall, not super difficult for a beginner like me. Learnt one or two things along the way, but nonetheless it was a fun intro box to CTF-Like ones.

Thanks to @Hilbert for putting up with my ramblings and @bertalting for helping me fix my initial foothold issue.

Type your comment> @c00de said:

Rooted, thanks the most to @atii22 for helping me
anyone needs help you can contact me

i have got an obscura page… now what should i do i cant find anything

Type your comment> @DHIRAL said:

Rooted. My experience:
Foothold: Need a little bit of clever wfuzz. Just look at the 404 error its giving if you need hint…
User: The hardest one in this machine. I spend a whole day for it… You will need programming and math skills for decrypting it.
Root: Really easy once you do the user. Remember, if you cannot do a thing quickly, that’s why scripts were invented…

Feel free to PM me for hints. But I won’t be available for whole day. So be patient if I don’t reply…

have got an obscura page… now what should i do i cant find anything

Got root :slight_smile:
Thanks @clubby789 for the box, so much fun!
Also learn some new things

Type your comment> @N0rt0N said:

Got root :slight_smile:
Thanks @clubby789 for the box, so much fun!
Also learn some new things

still trying to find directory, can you give me a nudge please?

Had fun writing simple scripts to do the simple things.

Struggling with finding the directory…
Tried a lot of fuzzing tools including the praised ffuf without any luck
Need a bit of help,let me know if I can pm for nudge