Im at the point of getting shell using what found in one place, but methods described in articles and docs I found do no work when I try extending “stuff”. I believe Im on right track, but still receive errors and cannot achieve execution. What am I doing wrong? Hmmm
Im at the point of getting shell using what found in one place, but methods described in articles and docs I found do no work when I try extending “stuff”. I believe Im on right track, but still receive errors and cannot achieve execution. What am I doing wrong? Hmmm
Double check your syntax or PM for a pointer.
Did not find the right syntax, but managed to get it with a little bit of automation -
AAAAnnd…done!
Obviously with tons of help from @TazWake (thanks for being so kind, really!) and a little nudge from @pinnn
I am quite confused and i think i have yet to understand better what i did and how i succeded. This machine is definitely on the upper layers of the hard classification, and could have been easily placed with the insane ones.
@TazWake said:
You might have overlooked an open port. You can enumerate the configuration file for that service which will give a lot clues for an attack.
@gunroot said:
That is the wonderful part in the machine. Try to read some network oriented config files.
Thanks, I found it. Now to work out how to exploit it…
Gosh that box is a marathon… i think i’m at the very last stage (finally), entering waters that i’m not at all comfortable with, but on the other side it would pain me to give up here after all the work.
I have an admin cookie and access to /admin/lo+/d++ and /admin/lo+/v+++ but when posting the specified params, I always get a can’t-find-message like ’ Can’t find …/…/…/ ’ ?
Reset the box twice but still can not enumerate the fs. Someone else stuck here?
I have an admin cookie and access to /admin/lo+/d++ and /admin/lo+/v+++ but when posting the specified params, I always get a can’t-find-message like ’ Can’t find …/…/…/ ’ ?
Reset the box twice but still can not enumerate the fs. Someone else stuck here?
Read the source code clearly. There is more than one end points for separate purposes.
I have an admin cookie and access to /admin/lo+/d++ and /admin/lo+/v+++ but when posting the specified params, I always get a can’t-find-message like ’ Can’t find …/…/…/ ’ ?
Reset the box twice but still can not enumerate the fs. Someone else stuck here?
The command-lines I posted, which have been marked as spoilers, didn’t work anyway. Sorry for creating confusion, I just found out while doing a follow-up on this machine. Try a handfull exfiltration methods. One standard (spoiler?) procedure will work, I promise.