Can anyone help out with the py script, The script says runs successfully but I donot get a shell, Can I DM anyone ??
[EDIT]* Got the shell
Can anyone help out with the py script, The script says runs successfully but I donot get a shell, Can I DM anyone ??
[EDIT]* Got the shell
Rooted
Learned a few things in the way, including how to read tool output
any help with root please?
Type your comment> @TazWake said:
@k01n said:
any help with root please?
Enumerate, find loot, privesc, escape, get root on box.
Rooted!
Is something going on with this box? I’m getting a HTTP 502 error where, login was loading fine earlier. Back up.
anyone can PM me i cann’t get the reverse shell.
Easy and fun box, here are my hints
Versions are important, you should do nothing more than run a cmd to get the initial shell
There is a fantastic hint that I should have listen before spending a lot of time in enumeration… page5, @blacViking (thanks man !)
What can you do and what is your goal ? Google it and you’ll be free.
If you need help, feel free to PM
Rooted, thanks to @Shubhamz007 and @DarkRider88
Rooted. Fun box.
Rooted, pretty fun and easy box.
PM me if needed
I keep getting a connection to my nc listener, but I can’t run anything after the initial connection. anyone have advice/solution?
I’m don’t receiving connections on my nc listener. I’m normal exploit from edb, any suggestions? I’ve read that i need to do some tunning but i don’t know where (i’ve tried using another reverse shell). Any minimum help would be appreciated
I’m don’t receiving connections on my nc listener. I’m normal exploit from edb, any suggestions?> @BoWyatt said:
I’m don’t receiving connections on my nc listener. I’m normal exploit from edb, any suggestions? I’ve read that i need to do some tunning but i don’t know where (i’ve tried using another reverse shell). Any minimum help would be appreciated
I got a shell with another script but i want to understand the most popular ones. Still figuring out why im not receiving with the other script.
I’m stuck on how to get du** user. Enumeration and linpeas did’nt get me useful things, any hint ?
@UVision said:
I’m stuck on how to get du** user.
Double check you need to get this user account.
Enumeration and linpeas did’nt get me useful things, any hint ?
Yes, enumerate more. To steal a phrase from PWK/OSCP, it really is a “try harder” here.
Your enumeration needs to look at an unusual folder which might hold things people use to store stuff.
@TazWake I have for now listed the directories accessible for writing without having seen an interesting info, I guess I must have missed it.
@UVision said:
@TazWake I have for now listed the directories accessible for writing without having seen an interesting info, I guess I must have missed it.
just to check, did you also include ones you could read rather than just write access?
@TazWake Indeed not, is there a good command for that ? All commands founded on the web doesn’t work for me.
Resolved : the only “uncommon” folder in my case is the assets folder situated in /, but I don’t think it is the right way.