Stucked at www-data… I’ve got first creds but can’t find where to use them
If someone could give me a nudge…
EDIT: Found it! Way to root!
EDIT2: Rooted! PM me for help
Stucked at www-data… I’ve got first creds but can’t find where to use them
If someone could give me a nudge…
EDIT: Found it! Way to root!
EDIT2: Rooted! PM me for help
Spoiler Removed
Spoiler Removed
Rooted !
DM if you stuck
initial foothold and user parts are pieces of cake. It just gives you the chance to remind yourself of all vulns you’ve ever learnt. Now working on root. Also, about root - pspy and lin enum didn’t give anything, so would be nice to see some hints in PM.
I’ll be happy to help you with user if you guys have difficulties.
user : bypass it, send it, look it, & listen
root : linpeas, look it, create it, how the machine decides what to execute
big thanks to @marlasthemage & @cyberafro
Rooted. It is a great box for starters and a very realistic scenario. There is no doubt on what to do, although root is much easier/quick than user.
@ion0x0 said:
initial foothold and user parts are pieces of cake. It just gives you the chance to remind yourself of all vulns you’ve ever learnt. Now working on root. Also, about root - pspy and lin enum didn’t give anything, so would be nice to see some hints in PM.I’ll be happy to help you with user if you guys have difficulties.
Try linux-smart-enumeration
Great machine!!!
any nudge pm me
Type your comment> @hasky said:
help for www-data
i can RCE on www-data but when ever i try reverse-shell it didn’t work any one know why this is happening …??
why not just skip the rce
@Baz928 said:
Really stuck on www-data, I have RCE but not a proper shell and I’m lost on how to fix that. I’ve googled everything but it doesn’t seem to be working. If someone could DM a wee nudge me it’d be great.
why not just skip the rce
Type your comment> @Baz928 said:
Really stuck on www-data, I have RCE but not a proper shell and I’m lost on how to fix that. I’ve googled everything but it doesn’t seem to be working. If someone could DM a wee nudge me it’d be great.
try to use different rev shells
if you stuck DM me
@ion0x0 said:
initial foothold and user parts are pieces of cake. It just gives you the chance to remind yourself of all vulns you’ve ever learnt. Now working on root. Also, about root - pspy and lin enum didn’t give anything, so would be nice to see some hints in PM.I’ll be happy to help you with user if you guys have difficulties.
linPeas pspy works for me both
Finally was able to figure out how to use s****** - I spent so many hours
Hints on page 3 and 4 were very helpful!
Very nice machine, maybe the first one I really enjoyed working on! Thanks @TRX
Pretty easy box. No real magic involved, just try basic things for foothold that any script-kiddie knows.
Root is a classical ctf thing.
PM if you need any help.
is it normal to have
theseus@10.10.10.185: Permission denied (publickey). ???
stuck in www-data
got a USER !!!
Hint: use alternative way
@schizo said:
is it normal to have
Well, it is normal for this box. It means you cant connect without a valid key.
Good linux box, i enjoyed it.
# whoami
root
If someone needs help feel free to pm me
Just rooted…
It is nice box. I learned new something.
If you need help, don’t hesitate to pm me …