Traceback

1171820222330

Comments

  • Type your comment> @Lorenzooo said:
    > Rooted
    >
    > Fun box!
    >
    > User hint: You got everything you need in front of you, in all the parts of the entire process to user.txt
    >
    > Root hint: Look at the process to understand what is going on.

    Another hint for root? I'm stuck in the /e*c/upd***-mo**.d :S
  • > @AlexCEyoyo said:
    > Type your comment> @Lorenzooo said:
    > Another hint for root? I'm stuck in the /e*c/upd***-mo**.d :S
  • > > Another hint for root? I'm stuck in the /e*c/upd***-mo**.d :S
    >
  • > Another hint for root? I'm stuck in the /e*c/upd***-mo**.d :S
  • Finally rooted this machine, took me some days.
    For same help, please PM. Will answer questions :)

  • Got initial foothold and user.txt, but machine keeps kicking me out/resetting? Weird.
    Like to do some enumeration on the box itself, but cannot get a stable shell it seems.
    Tried the tips for spawning a shell from NETSEC [https://netsec.ws/?p=337] , but no luck and no TTY...
    Any hints on that one would be appreciated. ;-)

  • Got root flag. Great machine, especially OSiNT part)
    @Xh4H did a great job!
    If someone needs help PM me here or discord or other platforms, maybe my noobish advice helps you).
    From this box, people need to understand different between > and >> and why > ruin others shells.

  • Type your comment> @Wrebra said:

    Got initial foothold and user.txt, but machine keeps kicking me out/resetting? Weird.
    Like to do some enumeration on the box itself, but cannot get a stable shell it seems.
    Tried the tips for spawning a shell from NETSEC [https://netsec.ws/?p=337] , but no luck and no TTY...
    Any hints on that one would be appreciated. ;-)

    Try using python3

  • Rooted awesome box, i couldn't get the final step for a hot minute, kept kicking myself out of the shell

  • Was wonderting whether /e**/u************.d was the right path for root?

  • Hi,

    I think I have a clear idea on how to get foothold, but I am not able to work with the tool. I am invoking it directly but it returns an error...

  • Pretty irritating to see people deleting files that are needed or resetting the box every few minutes. I already rooted this box and had fun doing so, I then made sure to clear my artifacts like a good boy.

  • Pfffft, finally got root. Thanks for the creator(s) and many many many more thanks to all of you with the hints you left on the forum board!
    This took me way too long, I over-complicated stuff.
    In hindsight I saw the possible root direction right after I got user.txt and did some enumeration, but thought that would be too obvious. LOL

  • Stuck at initial enum, tried searching on various aspects mentioned in the comments OSINT and Google , still no way in.

  • @uditkapahi said:

    Stuck at initial enum, tried searching on various aspects mentioned in the comments OSINT and Google , still no way in.

    Did you find the g****b page? If so, search it for the phrase and it takes you to a place where lots of things are stored. You can then create wordlist for these and enumerate for it.

    TazWake

    Happy to help people but PLEASE explain your problem in as much detail as possible!

    Also: https://www.nohello.com/

  • Finally got root. Very interesting machine. My tips:

    • The key is to enumerate everything and don't over complicate things
    • For initial foothold, check for the hacker and his comment and do some OSINT techniques
    • For user, basic enumeration es enough
    • For root, check for weak permissions on files. It's always a good idea to check for processes that are running.

    Hope no spoilers were given.

  • Fun box. A balanced challenge for beginners. Thanks @Xh4H!

  • hi there, i managed to get w**a***n and i also know which commands it can execute (l***t). I have also written a l*a script to get user.txt but when i run it i get:

    sudo: no tty present and no askpass program specified

    i am stuck with this from days... could someone help me please??

  • Hi, I was able to get the root flag, but without being able to actually open a root reverse shell. Could someone that was actually able to do so PM me and explain me how he manage to do it ? Thanks !

  • Rooted
    thanks to @cyberafro for the nudges

  • Type your comment

  • This box was so fun! thank you @Xh4H I was hung up on user for awhile. I figured it out but of course it was the silliest reason. Here are my tips:
    Foothold: OSINT. When you finally see it, Google has all the answers. You can just walk right in. :)
    User: it is hard to learn something new. So some of us have to use common sources for help. The syntax is usually similar to something you know. So if it doesn't work, figure out why, and make it work. You can't plug and play here. Buuuut almost.
    Root: Enumerate. Understand what is going on. You have to be fast or you have to be smart. I chose to be fast. :)
    You can message me if you would like for nudges. But This one just takes some thinking. No crazy tricks.

    b0ssk

  • Rooted! I have a strange feeling I never triggered my own payloads and that someone else did it for me... found out while racing and then trying to clean up my mess! :smiley:

  • Rooted.

    HTB{HappyHacking}

  • edited March 31

    Goddamn!!! I made that way too hard. Finally Rooted. I was on the right path....but made things way to over complicated.

    Thanks to WhiskeyBar

  • Type your comment> @TazWake said:

    @uditkapahi said:

    Stuck at initial enum, tried searching on various aspects mentioned in the comments OSINT and Google , still no way in.

    Did you find the g****b page? If so, search it for the phrase and it takes you to a place where lots of things are stored. You can then create wordlist for these and enumerate for it.

    I am still struggling to find right info from the g****b repo page . Found some scripts obfuscated, but it seems that they are of no use.

  • @uditkapahi said:

    I am still struggling to find right info from the g****b repo page . Found some scripts obfuscated, but it seems that they are of no use.

    Search for the term on the HTB box index page. Take a list of every file name on the page it takes you to and enumerate them. ISTR there are less than 20 file names to check.

    TazWake

    Happy to help people but PLEASE explain your problem in as much detail as possible!

    Also: https://www.nohello.com/

  • Please stop brute forcing the box.

    Huejash0le

  • edited March 31

    Man root it killing me on this box. Not really straight forward. I really struggled on this box. Anyone fell like PMing me help with root? I just need to know I'm looking in the right location. I don't want the answer.

    Huejash0le

  • Type your comment> @Chi3f said:

    Man root it killing me on this box. Not really straight forward. I really struggled on this box. Anyone fell like PMing me help with root? I just need to know I'm looking in the right location. I don't want the answer.

    find the answer in the process running

    HTB{HappyHacking}

Sign In to comment.