Oouch

I have have some connection back from playing with c******.p*. But I can’t find a way to turn it into lfi. Someone got some success to share following this path?

Or into anything else! :wink:

Well, tricked the admin into doing what I want. Which gives me… ???

check documents after getting admin)

…charming machine!

Struggling to get my account connected from the hidden link ?

Type your comment> @cyberafro said:

Struggling to get my account connected from the hidden link ?

Yeah me too…

Ouch, when I tried to register this morning I only got internal server errors and assumed it’s on purpose. Wasted a few hours, restarted the box and now I could register :facepalm:

Type your comment> @idomino said:

Ouch, when I tried to register this morning I only got internal server errors and assumed it’s on purpose. Wasted a few hours, restarted the box and now I could register :facepalm:

Yeah 500s occur regularly… Just refresh a couple of times and they are gone…

Owned user, this is an incredible box so far. Has really taught me something, everything makes sense, very little guesswork.

I got some connetion back from /C*****t but , can’t turn it into an lfi. Any hints? Or is it a rabbit hole?

Type your comment> @Sniper100 said:

I got some connetion back from /C*****t but , can’t turn it into an lfi. Any hints? Or is it a rabbit hole?

It is neither an lfi nor a rabbit hole… :wink:

Type your comment> @Chr0x6eOs said:

Type your comment> @Sniper100 said:

I got some connetion back from /C*****t but , can’t turn it into an lfi. Any hints? Or is it a rabbit hole?

It is neither an lfi nor a rabbit hole… :wink:

I also can get connection in several different ways, however nothing works as it works locally …

Got a little bit furhter thanks to @tabacci
I now have creds and some other information, but don’t know where to use them yet…

Can somebody please give a hint for getting in the app as user admin?
Pretty sure it doesn’t require bruteforce

Got user. I did kind of enjoyed it so far, but insanely hard. :lol:

Kudos to @tabacci, who I worked with to get this far.

This was a ■■■■ of a ride. Even though i didn’t get the root yet, I will try to give you some hints. ( only for the user part ).

  • We all tried this first, but we got detected... I wonder if there are some workarounds
  • Try a bunch of wordlists. The default ones might not reveal the whole truth.
  • Why I can't code anything? Is this allowed? I don't think so. Nor on client side?
  • If nothing have changed it doesn't mean you are wrong. It just means you didn't understood the service and who belongs to who.
  • Once you are an admin, follow the list in the exact same order, from top to bottom
  • Sometimes, there is a pattern, or a duplicate. Enum, enum, enum
  • Creds are not useless. Enum & read carefully that list
  • This was way easier if I could do it on the first step
  • If you can get something why not try for other things to.

I hope there are no spoilers. Please tell me if I was to explicit. I am willing to edit the post.

Finally got some juicy new info from the admin’s page. Please tell me I don’t need to do this login again for the next steps :smiley:

Most fun box I’ve completed from start to finish. Root is an amazing journey. +1 to qtc.

Finally owned after about 24 hours of solid work. Absolutely incredible at every step, challenged a lot but never too far. Looking forward to the next one. (How long before we can guess all the passwords on your boxes?)

Got pretty much all the information I need, now figuring out how to use that info is the tricky part…