@0racle said:
my first experience…
i find username and pass in a minute. but can’t take priv.
i think… i study to priv esc methods.
if you anybody help me for give an advice or show the methods…
please contact with me.
thank you all…
what does monitor.sh do when you run it? have you enumerated the box?
I need help with the privilege escalation and I use LinEnum.sh I already have a lot of information and for more than I try to get the information to create a user to do whatever it is I get the following error "sudo: unable to resolve host Nibbles: Connection timed out " and no I move forward and try many ways of privilege escalation
something has escaped me
Do not ask to restart everything if you can not enter because of an error or because they are on the blacklist wait 5 minutes verify you config, just ask to restart if they left information that could compromise the machine … both restarting sometimes makes you lose track of what you are doing
I am as far as the login page, I have browsed the file directory, used dirb, tried all defaults I know under the sun. NO IDEA what to look at next. Someone please help!
I’m stuck trying to get my exploit to work. I’m using the obvious exploit, and have the username and password. Getting the typical issues with image.php. Have reset the box multiple times and tried several payloads.
new to this and this is the first box iv’e tried. Got user pretty easy but stuck on what i feel is the very last step in privesc…
got the user in a full shell
I’m running the .sh file but cant figure out how to ‘step in’ as its executing to grab the root user. i tried passing it to bash “./XXXXXXX.sh bash” bit i get “TERM environment variable not set.”. though maybe write a new file to replace the existing one with a exploit but dont have write permissions in vi. though maybe i can pass the executing script to another shell but i have no idea how…
really ran out of ideas now so any help is massively appreciated! loving it so far though!