Magic

Stucked at www-data… I’ve got first creds but can’t find where to use them

If someone could give me a nudge…

EDIT: Found it! Way to root!

EDIT2: Rooted! PM me for help :slight_smile:

Nice box, thanks @TRX!

DM me on here for gentle nudges if required.

Spoiler Removed

Spoiler Removed

Rooted !
DM if you stuck

initial foothold and user parts are pieces of cake. It just gives you the chance to remind yourself of all vulns you’ve ever learnt. Now working on root. Also, about root - pspy and lin enum didn’t give anything, so would be nice to see some hints in PM.

I’ll be happy to help you with user if you guys have difficulties.

user : bypass it, send it, look it, & listen
root : linpeas, look it, create it, how the machine decides what to execute

big thanks to @marlasthemage & @cyberafro

Rooted. It is a great box for starters and a very realistic scenario. There is no doubt on what to do, although root is much easier/quick than user.

@ion0x0 said:
initial foothold and user parts are pieces of cake. It just gives you the chance to remind yourself of all vulns you’ve ever learnt. Now working on root. Also, about root - pspy and lin enum didn’t give anything, so would be nice to see some hints in PM.

I’ll be happy to help you with user if you guys have difficulties.

Try linux-smart-enumeration :wink:

Great machine!!!

any nudge pm me :slight_smile:

Type your comment> @hasky said:

help for www-data

i can RCE on www-data but when ever i try reverse-shell it didn’t work any one know why this is happening …??

why not just skip the rce :wink:

@Baz928 said:
Really stuck on www-data, I have RCE but not a proper shell and I’m lost on how to fix that. I’ve googled everything but it doesn’t seem to be working. If someone could DM a wee nudge me it’d be great.

why not just skip the rce

Type your comment> @Baz928 said:

Really stuck on www-data, I have RCE but not a proper shell and I’m lost on how to fix that. I’ve googled everything but it doesn’t seem to be working. If someone could DM a wee nudge me it’d be great.

try to use different rev shells

if you stuck DM me

@ion0x0 said:
initial foothold and user parts are pieces of cake. It just gives you the chance to remind yourself of all vulns you’ve ever learnt. Now working on root. Also, about root - pspy and lin enum didn’t give anything, so would be nice to see some hints in PM.

I’ll be happy to help you with user if you guys have difficulties.

linPeas pspy works for me both

Finally was able to figure out how to use s****** - I spent so many hours

Hints on page 3 and 4 were very helpful!

Very nice machine, maybe the first one I really enjoyed working on! Thanks @TRX

Pretty easy box. No real magic involved, just try basic things for foothold that any script-kiddie knows.
Root is a classical ctf thing.
PM if you need any help.

is it normal to have
theseus@10.10.10.185: Permission denied (publickey). ???
stuck in www-data

got a USER !!!
Hint: use alternative way

@schizo said:

is it normal to have

Well, it is normal for this box. It means you cant connect without a valid key.

Good linux box, i enjoyed it.

# whoami
root

If someone needs help feel free to pm me :wink:

Just rooted…
It is nice box. I learned new something.
If you need help, don’t hesitate to pm me :smile: