Please don’t change the password to the foothold portal…
Stuck on root… got the user flag. I know people say “Basic Enum and google” but anyone got pointers on the “Basic enum” part(noob here)? I did some Googling off versions etc. of things I’m finding but I’m not seeing a lot. I saw @TazWake mention a CVE released late last year but having trouble coming up with anything …
When you find it, you will understand why it is nearly impossible to say anything here which wont be a spoiler.
Concentrate on finding out what rights/privileges your user account has.
When you find it, you will understand why it is nearly impossible to say anything here which wont be a spoiler.
Concentrate on finding out what rights/privileges your user account has.
Got it! Rooted.
I was going down that path but got an error when attempting enum, didn’t happen to google the error at the time (doh). On the plus side I learned how to upgrade a shell to fully tty during this process…
Thanks @TazWake@LewEl for nudges.
On the plus side I learned how to upgrade a shell to fully tty during this process…
Nice work! All learning is good and that is a genuinely useful step in most boxes here.
I have a problem, I have the u****.*** file but this has information about F***** and a****. The password for a**** is not easily crackable and there is not clue about H***, I’m starting to think if there is maybe something wrong with the box or… I don’t know what’s going on. Can someone help me please?
Thanks!!
I have a problem, I have the u****.*** file but this has information about F***** and a****. The password for a**** is not easily crackable and there is not clue about H***, I’m starting to think if there is maybe something wrong with the box or… I don’t know what’s going on. Can someone help me please?
Thanks!!
I am in the same boat. Cannot crack the hash found in us***.P**
SMH on root! I went down so many rabbit holes before finally finding the easy solution. Good box, I learned some new tools and won’t soon forget this privesc technique.
Hi
I was able to get root on this box but had to use m********* in order to gain an initial shell. I want to try again, but this time manually performing the steps needed. I searched around and saw some explanation, but it was a bit hard to follow.
If anyone could push me towards a better explanation on the initial shell I would be grateful!