Found the best way to get the os-shell was to use burp with intercept mode on right from the login page; On the first packet which passes the PHPSESSION copy that into your sqlmap command and run it, I ran mine with --level 2 and --risk 2.
Once it was running then forward all the packets and then sqlmap responded correctly.
Hello everyone.
I am having the same issue when trying to load the website from the Vaccine machine.
It just times out and when I use --reason with nmap i see the service has a no-response
I cant even navigate to the webpage. times out every time. And yes, I’m connected to the vpn. Had this issue a couple weeks ago, gave up - decided to try again as it seems like a fun challenge - but i cant connect
I’ve got the same issue. It seems to have something to do with sqlmap: I could access the website via the browser and can run sqlmap without the --os-shell flag. This works fine but when I tried to run sqlmap with --os-shell t times out and the website isn’t accessible any more…? Only on the next day I (after reset of the machine I think) I can access again. Does someone got an explanation for this?
I’ve got the same issue. It seems to have something to do with sqlmap: I could access the website via the browser and can run sqlmap without the --os-shell flag. This works fine but when I tried to run sqlmap with --os-shell t times out and the website isn’t accessible any more…? Only on the next day I (after reset of the machine I think) I can access again. Does someone got an explanation for this?
i cant even access the website…at all. vpn connected. refreshed vpn. deleted and downloaded new vpn file… internet definitely works…webpage wont load
(Quote)
i cant even access the website…at all. vpn connected. refreshed vpn. deleted and downloaded new vpn file… internet definitely works…webpage wont load
Same with me. Happened yesterday. Can ping but can’t access through browser
I got all the way to the end. I had my shells spawned and all I had to do was switch to root and grab the text. Literally 15 seconds left before completing the challenge…
Noticed my vpn disconnected. So I connected again, nothing worked. I regenerated my vpn file and tried connecting again… Nothing will load now.
Website wont load, I cant get my shells back because connection is refused… However, I get ping results… Shits stupid.
I cant see how to reset the box or anything like that, so I guess I’ll try again at another time
this chall is a pain in the a**! It seems someone keeps breaking it by testing postgress vulnerabilities… There’r some samples that allow anyone to send the machine to hibernation for an indefinite time … so every time you have to wait for the lab reset.