Type your comment> @Underworld said:
Rooted.
My feedback for areas I got stuck on (aside of my OVPN client not working and me thinking it was a flaky shell):
I got stuck on some injection right at the beginning. I sat down and wrote down what I thought was the query being executed, then wrote into that what I would do to bypass it. Copied and pasted and that worked.
Spin through Wikipedia’s page on new features to Windows 10. There are some really weird looking directories and files on the box. It should ring some bells when you see it in the Windows 10 feature listing.
When you know what you are looking for GO FIND IT.
At this point, start enumerating like you would do a new box.
Good luck!
Hey there,
I’m trying the injection route to eventually get to an initial foothold, and I did notice something after submitting a new note i.e. how the entry gets referenced to an id and ends with ". I looked online to see what that could be, either it’s a commenting out thing or something tied to php. Would you be able to provide any hints? I think I’m getting somewhere.