Can someone give me a nudge on the foothold of this machine? So far, I have found that a port 161 is closed but maybe we can access it and also admin directory is forbidden so no idea how to access that. It would be great if someone can assist me.
Is the message a rabbithole? I can make valid requests but cant extract data since i havent found a way to delay time. Also tried to bypass the filter with fuzzing the bad words with every unicode char.
Hi I would like a nudge, I found the S*** on S***** M******.
all my attempts that are syntatically correct render OK.
I tried the usual, any help would be appreciated!
I tried to do a S**I as well on that same page, no result {{ crying }}
Comments
A Chemist doing Penetration Testing - Check the Story here: BinaryBiceps
ano no response again smh
User blood is gone, congrats @qtc
Looking for a sanity check to make sure i am looking at the right areas for foothold. Anyone out there who wants to provide respect is a coming haha
Is that s****t me***ge is the way to become admin?
Edit:Nvm
found the s** but not able to read the se**et table?
edit: nevermind
any one bypass the co***** si****** ???
So far, I have the admin cookie and a way to ping back to my own machine but no luck further than that. Any nudges ?
Getting absolutely nothing, set up the whole thing locally, no idea how this is supposed to work, even after getting 2 nudges.
From pentester to security researcher in just one day - enjoy the new course NOW on HTB
If anyone is free to help with the syntax for the initial bit, I would greatly appreciate a PM. Thanks
got the admin s**....... now dont know what to do next!!
Same here
Guys would really appreciate help with syntax on S***** i*********. get ok but no data.
Type your comment> @andy1979s said:
Same here
-
the same @JMFL
Type your comment> @JMFL said:
The website you gave wasn’t really useful...
the path however means something i think
Type your comment> @JMFL said:
maybe...
http://10.10.10.195/static/lib/bootstrap/js/bootstrap.min.js
.
Can someone give me a nudge on the foothold of this machine? So far, I have found that a port 161 is closed but maybe we can access it and also admin directory is forbidden so no idea how to access that. It would be great if someone can assist me.
Also, i am working on the message submit part and the port 161 part
Is the message a rabbithole? I can make valid requests but cant extract data since i havent found a way to delay time. Also tried to bypass the filter with fuzzing the bad words with every unicode char.
@testmeister Not sure, that is where I'm stuck now, the problem is that any valid query just returns a 200 OK.
Hi I would like a nudge, I found the S*** on S***** M******.
}}
all my attempts that are syntatically correct render OK.
I tried the usual, any help would be appreciated!
I tried to do a S**I as well on that same page, no result {{ crying
Does anyone know what we can do with this?
/submit?setoption=q&option=allowed_ips&value=255.255.255.255
Type your comment> @JMFL said:
Were does this actually come from? One of the first things someone sent me without any explanation.