Hi !
I’ve easely got the user1 but im stuck on user2 i’ve seen that user2 leave something in the home of user1, but he ask me for… what you know.
Is there a part of guessing or am I missing something ?
Hi !
I’ve easely got the user1 but im stuck on user2 i’ve seen that user2 leave something in the home of user1, but he ask me for… what you know.
Is there a part of guessing or am I missing something ?
Thanks
A joke I made elsewhere today is that a lot of this is guesswork, we just call it fuzzing/enumeration to sound better.
It depends on what you mean by user1 and user2 in this context, to get a shell as root you may have gone through three “accounts” on the box (root being the fourth) but some people dont consider one of them a “user” so may skip it in their counting.
What I would suggest is to enumerate. If you can describe what you find, you might find what you need.
Hi !
I’ve easely got the user1 but im stuck on user2 i’ve seen that user2 leave something in the home of user1, but he ask me for… what you know.
Is there a part of guessing or am I missing something ?
Thanks
A joke I made elsewhere today is that a lot of this is guesswork, we just call it fuzzing/enumeration to sound better.
It depends on what you mean by user1 and user2 in this context, to get a shell as root you may have gone through three “accounts” on the box (root being the fourth) but some people dont consider one of them a “user” so may skip it in their counting.
What I would suggest is to enumerate. If you can describe what you find, you might find what you need.
By user1 i mean the user which contains in his home folder user.txt !
And rooted. The foothold was one of the trickiest parts. I was so confused when i couldn’t find the directory until I realized that capitalization is important.
Thanks to @ChefByzen for the awesome box
I liked a lot this machine. For the users part it was very easy but the root part very difficult to find what ti is juice. I appreciate who nudge me to root, address me where to look in.
just rooted this box, but the way I rooted it was more of guess work, does anyone care to PM me about how you got to know about this exploit. And someone in the discussion said that there are more then one way to get to root, anyone wants to discuss about it?
hey everyone ! I’ve been stuck on root for a long time and clues here don’t really help me… Tried a bunch of stuff, enumerated a lot but I’m clearly missing something (but I’m a beginner)…
hey everyone ! I’ve been stuck on root for a long time and clues here don’t really help me… Tried a bunch of stuff, enumerated a lot but I’m clearly missing something (but I’m a beginner)…
When you enumerate, look at all the files you can find which would normally come up on a enum search. Check them out and see if any can be exploited. There is a good blog post on how to use it.
Rooted !
Thanks @TazWake and @ChefByzen for the nudge, I totally missed the file, thinking it was not supposed to be here…
Really fun box, learned a lot on this one
got both users fast but stuck on root for several days… cant find anything interesting in home directory my thoughts were that i can do smthing with .X**** file but i still cant find decision. can anyone help me please to take me in right way? PM or here.
thank you!