Admirer

191012141523

Comments

  • @gahanar said:
    Found the page, set the b-ad***** now getting "MS server has gone away"

    Confirmed running on machine. What am I missing?

    Have a look at the network traffic, this error indicates that your set up is slightly wrong.

  • Type your comment> @markdc said:

    @gahanar said:
    Found the page, set the b-ad***** now getting "MS server has gone away"

    Confirmed running on machine. What am I missing?

    SAME problem

    make sure u configured M**q* correctly.
    Message for any help.

  • I need some help. I've been fuzzing at / and /a****-**r but nothing using a lot of different wordlist and file extensions. Can someone give me a nudge with this?

  • Just rooted the box. Thanks to @coffeeBLK for helping me make it less complicated than I was wanting to do.
    Worth talking to if you're stuck.

    ycisec
    [OSCP]

  • Few rabbit holes, but nothing to get in a fuss over. The initial foothold is easier than it appears at a glance. Root is cake. Everything needed has already been mentioned. Thanks @polarbearer and @GibParadox


    Hack The Box
    defarbs.com | Retired Machine Writeups! - "Let me just quote the late, great Colonel Sanders, who said, 'I'm too drunk... to taste this chicken.'”

  • edited May 6

    Hi Guys

    Am i configure it right => connect to axxxxxr from remote MySQL server ?

    Hack The Box

  • Rooted. But twice I found that FUZZ could not find a particular file. Someone thought it was fun to delete cxxxxxxxxx.txx

  • edited May 6

    Arrggg, feels like I'm going in circles...I've found that what can't be see.....
    Having a 'mare fuzzing, trying mixed wordlists and extensions.
    Any hints PM me...
    Just need a prod in the right place as I feel like I'm missing something obvious.

  • Rooted :)

    HTB{HappyHacking}

  • edited May 7

    Can any one help
    open_basedir restriction in effect. Unable to open file ??
    EDIT: Got it.

    Arrexel
    Ask for hints only please and give +1 respect if you like my hints. Thank you

  • Howdy All,
    i could use a nudge please, I've enumerated for a crazy amount of time. I found the a****_d** and the r*****.txt, but i cant find anything else.
    Thank you!

  • edited May 7

    Type your comment> @LazerH0rnet said:

    Howdy All,
    i could use a nudge please, I've enumerated for a crazy amount of time. I found the a****_d** and the r*****.txt, but i cant find anything else.
    Thank you!

    Fuzz the a****_d** you have seen in r*****.t** file.

  • Type your comment> @markdc said:

    Trying the exploit for the login on the a*******.p** page but keep on getting ' M***L server has gone away' errors,. Has anyone experienced this or knows how to solve this problem? Thanks

    Check the user you're trying to log in to.

  • rooted
    box is easy, but with a lot of nuances.
    If u making it for points in the night and hope to make it quick, just like me - forget about this, u will be delve into all rabbit holes, checking everything before realize that u need persistence for this one.
    Main vuln is very cool, root looks unrealistic scenario for me, but I'm not very familiar with it.
    Thanks for the box @polarbearer and @GibParadox, I don't get why rating so low..

  • Interstellar OST... seriously though? lol

  • edited May 7

    Hello ! I need some help ! I found the login page and I'm trying to do the known exploit, but I'm getting "MySQL has gone away". Am I in the right path or is it just another rabbit hole ?

  • Finally after 2 days rooted the box. The Initial foothold is very hard, If you have done this before surely it wont be as hard. for the root it was supposed to be hard but some people didn't delete their payload. Overall a great box by @GibParadox and @polarbearer but my experience gets ruined by this kind of people.(note: thanks for the interstellar and the shoutout to my favorite show)

    Hint for Foothold:
    You can try manually from the tips on this discussion or you can use tools like dirbuster and such just mind ke thread and the wordlist.

    Hint for User:
    If you get into here just google fu and try everything you find. Dont forget to set the account privilages on your machine.

    Hint for Root:
    Try to find your way around to see what has been provided to you or shown to you and just read the forum i guess.

  • edited May 7

    Hi, i managed to find the h.t.g file, but i don't know what am i supposed to do now. Maybe someone can give me a small hint. Thank you!

  • Type your comment> @Konstant said:

    rooted
    box is easy, but with a lot of nuances.
    If u making it for points in the night and hope to make it quick, just like me - forget about this, u will be delve into all rabbit holes, checking everything before realize that u need persistence for this one.
    Main vuln is very cool, root looks unrealistic scenario for me, but I'm not very familiar with it.
    Thanks for the box @polarbearer and @GibParadox, I don't get why rating so low..

    Glad you liked it.

    I think "Easy" and "Fast" are often mistaken...
    In my opinion, easy means you don't need any advanced skills to complete the box.
    Fast, well... you know.

    I guess that's what caused the frustration that ended up in bad ratings...
    Something to keep in mind, I suppose

  • edited May 8

    -

  • That’s one tough “easy box”, got foothold, working in user now. I can’t find this login page but I’m sure it associates with a******db? Nudges would be great!

  • Finding the login page...anyway other than fuzzing?

    CISSP
    Hack The Box
    ++Repect If you think I help =]

  • Learned something about FUZZING, python and linux :wink:

  • Rooted. Good box pm me if you want a nudge. Tell me what you've tried because I won't nudge people who haven't tried yet.

    Hack The Box

  • Rooted. Thanks for the box @polarbearer and @GibParadox. This was a good reminder to pay close attention to all the information and don't assume anything.

    Learnt some new stuff along the way and thanks to those that provided me with nudges, respect given. If anyone wants a nudge, tell me what you have tried and happy to help.

    N3ph0s

    Discord n3ph0s#7012

  • Any one can help with root? :neutral: I know the idea but can not make it happen.

    Arrexel
    Ask for hints only please and give +1 respect if you like my hints. Thank you

  • Rooted! That was quite the ride. Thankyou @polarbearer and @GibParadox for the great learning experience. Fun way to get root.

    A bit of grit needed for this one for sure, research what you have to find the way forward.

  • i rooted it ,but i was doing write up so that i can post it when box retires ,guess what , fuzzing this box again is pain in a*s

  • OMG just got root :blush:
    PM if you need help :wink:

    Arrexel
    Ask for hints only please and give +1 respect if you like my hints. Thank you

  • Type your comment> @b3nn said:

    So no one's gonna talk about The Big Bang Theory references?

    Was wondering about that; but where is Sh*****? Havent found him

    zaphoxx

Sign In to comment.