Official Intense Discussion

Official discussion thread for Intense. Please do not post any spoilers or big hints.

«1345

Comments

  • Good luck all.

    A Chemist doing Penetration Testing - Check the Story here: BinaryBiceps

  • Good luck and have fun!
  • ano no response again smh

  • Looking for a sanity check to make sure i am looking at the right areas for foothold. Anyone out there who wants to provide respect is a coming haha

  • edited July 2020

    Is that s****t me***ge is the way to become admin?
    Edit:Nvm

  • edited July 2020

    found the s** but not able to read the se**et table?

    edit: nevermind

  • any one bypass the co***** si****** ???

  • So far, I have the admin cookie and a way to ping back to my own machine but no luck further than that. Any nudges ?

  • If anyone is free to help with the syntax for the initial bit, I would greatly appreciate a PM. Thanks :smiley:

  • got the admin s**....... now dont know what to do next!!

  • Same here

  • Guys would really appreciate help with syntax on S***** i*********. get ok but no data.

  • Type your comment> @andy1979s said:

    Guys would really appreciate help with syntax on S***** i*********. get ok but no data.

    Same here

  • edited July 2020

    -

  • Type your comment> @JMFL said:

    -

    The website you gave wasn’t really useful...

  • nothing is really useful so far my man lol, just decided to remove it all just incase

    the path however means something i think
  • Type your comment> @JMFL said:

    nothing is really useful so far my man lol, just decided to remove it all just incase

    the path however means something i think

    maybe...

  • Someone who didnt use the leaked the py script want to chime in with a hint?
  • edited July 2020

    .

  • Can someone give me a nudge on the foothold of this machine? So far, I have found that a port 161 is closed but maybe we can access it and also admin directory is forbidden so no idea how to access that. It would be great if someone can assist me.

  • Also, i am working on the message submit part and the port 161 part

  • Is the message a rabbithole? I can make valid requests but cant extract data since i havent found a way to delay time. Also tried to bypass the filter with fuzzing the bad words with every unicode char.

  • edited July 2020

    @testmeister Not sure, that is where I'm stuck now, the problem is that any valid query just returns a 200 OK.

    f1nn

  • Hi I would like a nudge, I found the S*** on S***** M******.
    all my attempts that are syntatically correct render OK.
    I tried the usual, any help would be appreciated!
    I tried to do a S**I as well on that same page, no result {{ crying :) }}

  • Does anyone know what we can do with this?

    /submit?setoption=q&option=allowed_ips&value=255.255.255.255

  • nikto scan produced this for me

  • An early form of the chunked transfer encoding was proposed in 1994.[1] Chunked transfer encoding is not supported in HTTP/2, which provides its own mechanisms for data streaming. has anyone messed with this format?

  • Working on root. Dissatisfied by my current lack of a shell. Anyone willing to do a sanity check for my current thought process? Thanks.


    Hack The Box
    defarbs.com | Retired Machine Writeups! - "Let me just quote the late, great Colonel Sanders, who said, 'I'm too drunk... to taste this chicken.'”

Sign In to comment.