@naveen1729 said:
really enjoyed the process of getting root on this box, amazing feeling to get the exploit working after several intensive days. thanks to the creators!
@w3x said:
more typical mr robot easter egg hunt bullshit
i swear to god i’m not going to do another one of these shitty boxes
Well I can’t make a box that pleases everyone and it’s hard. We all are here for learning something new all the time and I strongly believe I’m justifying that in my submissions.
I am stuck on 2FA. cant get pass either missing p***** or Invalid a****. Found the vendor of this soft. but can’t build a freaking request based on their documentation…
Help plz!
Last login: Tue Dec 17 13:31:35 2019
root@player2:~#
Thank you @MrR3boot & @b14ckh34rt for this enormous experience.
I learnt a ton on heap and yes, definitely bins in bins in bins is a great hint
Thanks also to @idomino for the interesting suggestions and @v01t4ic for the interesting conversations.
If I can add another hint: pay attention to g**** version.
See you next box!
Cheers
Last login: Tue Dec 17 13:31:35 2019root@player2:~#
Thank you @MrR3boot & @b14ckh34rt for this enormous experience.
I learnt a ton on heap and yes, definitely bins in bins in bins is a great hint
Thanks also to @idomino for the interesting suggestions and @v01t4ic for the interesting conversations.
If I can add another hint: pay attention to g**** version.
See you next box!
Cheers
By far my favorite box. I’m glad I went the intended way of getting root. It really forced me to get out of my comfort zone into the world of heaps and bins. Learned lots. Kudos to @MrR3boot and @b14ckh34rt. Thank you!
[*] Switching to interactive mode
# $ id
uid=1000(observer) gid=1000(observer) euid=0(root) groups=1000(observer)
@MrR3boot & @b14ckh34rt Thanks for the game guys! Box is awesome!
And to everyone who helped me along the way. I don’t think I’ve read this much doing boxes before this one =) Absolutely positive that I wouldn’t be reading glibc course code
PS. Solved using Tc****. Will appreciate if anyone cares to take a look at my code and explain how I can overlap in bins. I stumbled on unlinking part.
This was tough. Like, too tough. As in, I won’t be doing something like this again for a WHILE, tough.
Thanks @MrR3boot and @b14ckh34rt for owning me, and also for improving my heap exp. skills! Root was especially hard for me as I typically find myself lacking in the RE and bin. exp. department(s). This machine forced me to re-learn (almost) everything from the ground up, and then start building my exploit from scratch.
[*] Switching to interactive mode
# $ id
uid=1000(observer) gid=1000(observer) euid=0(root) groups=1000(observer)
@MrR3boot & @b14ckh34rt Thanks for the game guys! Box is awesome!
And to everyone who helped me along the way. I don’t think I’ve read this much doing boxes before this one =) Absolutely positive that I wouldn’t be reading glibc course code
PS. Solved using Tc****. Will appreciate if anyone cares to take a look at my code and explain how I can overlap in bins. I stumbled on unlinking part.
Solved using tcache? Nice work man. Glibc 2.29 has some nasty checks. I’m thinking I’ll just try and dodge tcache entirely for the time being. We’ll see how far I get with that though… ^_^"
This was tough. Like, too tough. As in, I won’t be doing something like this again for a WHILE, tough.
Thanks @MrR3boot for owning me, and also for improving my heap exp. skills! Root was especially hard for me as I typically find myself lacking in the RE and bin. exp. department(s). This machine forced me to re-learn (almost) everything from the ground up, and then start building my exploit from scratch.
@limbernie said:
By far my favorite box. I’m glad I went the intended way of getting root. It really forced me to get out of my comfort zone into the world of heaps and bins. Learned lots. Kudos to @MrR3boot and @b14ckh34rt. Thank you!