Bashed

Ok, i have the reverse shell but can’t crack the privesc, i’ve tried several ways to get the file without privesc to root first using scripts running as a user with script exec permissions but I can’t read the target root file. Can anyone throw me a bone :slight_smile: ?

@ipbsec said:
Ok, i have the reverse shell but can’t crack the privesc, i’ve tried several ways to get the file without privesc to root first using scripts running as a user with script exec permissions but I can’t read the target root file. Can anyone throw me a bone :slight_smile: ?

My last question is a bone… :stuck_out_tongue:

@blackangel said:

My last question is a bone… :stuck_out_tongue:

hmm, not a very meaty bone, though it has given me an idea for a next step.

Hi, I keep getting asked for the password of ************ user in order to run commands as that user, what am I doing wrong? Can anybody PM me please?

Guys, I need some help! I have the user flag, but I got it without getting the shell on terminal, I just got it from the browser. I tried using netcat for getting the reverse shell, but it failed. I also tried using bash for the same but no luck! Can anyone please help?

@codenameroot said:
Guys, I need some help! I have the user flag, but I got it without getting the shell on terminal, I just got it from the browser. I tried using netcat for getting the reverse shell, but it failed. I also tried using bash for the same but no luck! Can anyone please help?

If you want a subtle hint on getting a shell, PM me

I need help uploading the webshell and reverse shell I got an error, I know the trick to resolve this CTF but I need help I dont know what its not working!!

I would apreciate :cold_sweat:

@sh4cl0n3hack said:
I need help uploading the webshell and reverse shell I got an error, I know the trick to resolve this CTF but I need help I dont know what its not working!!

I would apreciate :cold_sweat:

You can message me if you still need help :slight_smile:

@Cristi said:

@sh4cl0n3hack said:
I need help uploading the webshell and reverse shell I got an error, I know the trick to resolve this CTF but I need help I dont know what its not working!!

I would apreciate :cold_sweat:

You can message me if you still need help :slight_smile:

Its ok bro thanks so much, I got the first flag now I am trying get the second :slight_smile:

Good luck!

Spoiler Removed - Arrexel

@Axon said:
Spoiler Removed - Arrexel


Can someone confirm that issue?

Spoiler Removed - Arrexel

Spoiler Removed - Arrexel

Spoiler Removed - Arrexel

I think I figured out what is going on… can someone who has gotten PM me so I can pitch my idea and see if it is correct?

Hello Folks, its my 2nd day here i got the user flag, no idea about pri escalation, no idea about reverse shell, please help me out what should be the next tool or method to get teh root.

got in after reverse shell, no tty, still not root… any hint guys…

I was able to get the root flag by modifying an exploit. Unfortunately I got root for only a short time. I modified the exploit to dump the contents. This is not giving me an actual elevated prompt. I have been digging around the system for almost three days. Enumerating the system to death and I feel like I have looked over, what i think should be simple.

I know this is not the correct method and would like to do it the right way. I am not here for the flags. I want the knowledge. Can anyone push me in the right direction? Reach me via PM.

Thanks for any help.

Look for something that doesn’t belong on a generic linux distro. Basic forensic techniques can help find it fairly quickly (no need to image the drive or anything like that)