Official Laboratory Discussion

Am I the only one who still got the 502 ?

Type your comment> @aimforthehead said:

Am I the only one who still got the 502 ?

I had to resort to changing servers over and over again until I found one that had a working webpage.

Practically impossible to work on this box, at least at this time in the evening. It keeps being reset every half hours.

Edit : I tried to recreate the environment inside a VM. I followed to the letter every step written on the official docs both for G***** and D*****, but I still can’t get it to work (the browser just hangs). If anyone has a good link that explains in details how to set everything up so I can work on some tests, that’d be great :slight_smile:

@aimforthehead said:

Am I the only one who still got the 502 ?

@cmoon said:

I had to resort to changing servers over and over again until I found one that had a working webpage.

Possibly too late to be helpful now, but I really think its better if people report things like this via a jira ticket.

If you have to change servers, then it implies something on the original server is broken and it isn’t being fixed by a reset. It frustrates me that it is becoming more and more common but HTB wont ever become aware of it unless people tell them.

For me, this box was so problematical I nearly gave up. After raising a ticket (and sadly simply being told “its working for us, maybe you should reset it”) I went back on the box and it was finally working.

I did have to cancel a lot of resets while I was working on it though.

@dragonista said:

Practically impossible to work on this box, at least at this time in the evening. It keeps being reset every half hours.

If you are on the new “Beta” interface, it alerts you to a user trying to reset a box you are working on and you can try to reject it.

However, the 502 error means lots of people will think they need to reset rather than wait.

@TazWake said:
@cmoon said:

I had to resort to changing servers over and over again until I found one that had a working webpage.

Possibly too late to be helpful now, but I really think its better if people report things like this via a jira ticket.

If you have to change servers, then it implies something on the original server is broken and it isn’t being fixed by a reset. It frustrates me that it is becoming more and more common but HTB wont ever become aware of it unless people tell them.

Probably should have on this one but I figured I was just too impatient. Definitely done that before

Just rooted it. Definitely shouldn’t be rated easy. Feel free to pm me for a hint but make sure you’re prepared to tell me what you’ve tried.

Yeah this was a very nice box! Took a lot of effort to get everything right. I agree not easy… for now… I had some insights that it will become quite easy in the near future.

Though if you want to learn keep doing it in this difficult intended way! Thanks and kudos to the creator!

If anyone of able to give a nudge on how to get the reverse shell, payloads don’t seem to be working

nvm rooted

i have user and im trying to send dr-s**y to my attacker machine, and nothing is working. I tried scp, wget, and curl.

@krisp33 said:

i have user and im trying to send dr-s**y to my attacker machine, and nothing is working. I tried scp, wget, and curl.

When you can’t send it, try to rather pull it :wink:

@krisp33 said:

i have user and im trying to send dr-s**y to my attacker machine, and nothing is working. I tried scp, wget, and curl.

In addition to @HomeSen’s excellent (as always) advice, you might consider if you really need to copy it to your local machine. As far as I can remember, you can find all you need on the box.

Spoiler Removed

Man, the 502’s been there for like 45 minutes…
Thanks to @Hyp3rDrive for his guidance about running d****r I got a user shell last night and wanted to keep working on the box this morning but eh… Another time.
Great box so far though, a lot harder than anything I’ve done before, which kinda feels good actually :slight_smile:

@dragonista said:

Man, the 502’s been there for like 45 minutes…

If you have the time, please report this to HTB. Even if they are fairly dismissive (as when I reported it :smile: ), it will give them metrics which highlight the problem.

Type your comment> @dragonista said:

Man, the 502’s been there for like 45 minutes…
Thanks to @Hyp3rDrive for his guidance about running d****r I got a user shell last night and wanted to keep working on the box this morning but eh… Another time.
Great box so far though, a lot harder than anything I’ve done before, which kinda feels good actually :slight_smile:

Switching servers solved the problem for me :slight_smile:

I got a reverse shell with user “git” in a doc*** cont*** apparently. That is the correct way? after that, how i get root access into doc*** cont*** or to host? (Sorry for my english, I’m argentinian). Thanks.

I could really use a hint for the root part. My brain might be fried after all I had to go to get there and now I’m clueless lol. I ran several enum scripts, looked in every folders, tried different approaches, nothing’s worked, I really have no idea what I could be missing !

@dragonista said:

I could really use a hint for the root part. My brain might be fried after all I had to go to get there and now I’m clueless lol. I ran several enum scripts, looked in every folders, tried different approaches, nothing’s worked, I really have no idea what I could be missing !

Enumeration is the key and most of the enum scripts should have found the interesting thing. If not a manual find will flag it, as it doesn’t normally appear in Linux. When you find it, examine it, see what it does, hijack it, get root.

Hi guys,

I have seen through this discussion that I need to start by using Nmap because it shows you the first piece of information that is going to help me solve this challenge but, to be honest, I do not know what I am looking for. I see the machine has 3 open ports, I see the version of the services that are running on the machine, I see the methods supported by the webserver, but I do not see anything that can help me get the G page everyone is talking about. Any hint would be really appreciated.

Ty.