Official Pit Discussion

the file gets automatically deleted after some time. I don’t like this boxEDIT: got root,yes my fault, can simple copy the files around . Though overall I didn’t much like the box tbh… its focus is mostly limited to walking around and around like a merry go round… Need help? Dm.

Spoiler Removed

Type your comment> @kragle said:

the file gets automatically deleted after some time. I don’t like this box.

If you can RCE you can circumvent that issue. It’s not an issue with the box, it’s an issue with you needing to do more work.

Hey, is there any kind of protection to outbound traffic? I can not get any kind of reverse shell after have gained code exec

EDIT: Nevermind, found a different path

Type your comment> @jps3 said:

Type your comment> @FQuen said:

I’m completely stuck. :neutral: can anybody give me a nudge with the “walk” thing?

-bscure -nternet -atagram

I really need to include this part in my enumeration routine :cold_sweat: Thanks!

rooted. great box. i learned a lot.

Need a nudge for root :confused: PM if you have the time to help a fellow hacker

Type your comment> @FQuen said:

Need a nudge for root :confused: PM if you have the time to help a fellow hacker

Sure … you can PM

What a ride.

I think it’s the hardest medium box I’ve ever done!

=============================================

└─# ssh root@pit.htb
Web console: https://pit.htb:9090/

Last failed login: Mon May 17 13:39:13 EDT 2021 on web console
There was 1 failed login attempt since the last successful login.
Last login: Tue May 11 04:44:50 2021
[root@pit ~]#

Hey guys. I got stuck on foothold process. I walked the path and got “-bscure -nternet -atagram” stuff. Any help will be appreciated!

Type your comment> @zer0bubble said:

Type your comment> @n0leptr said:

So I’ve taken a walk, but I’m stuck from there. I find something useful on my stroll but unsure how to proceed.

Join the club. Feel like I have the morsel of info I need, but now I can’t do what I want with it to make it worth while

yeah same here - I absolutely know I’m missing something, see some proc names & paths, but not sure what i’m missing form there. hmmm.

Wow, amazing box. Haven’t learned this much from a box in a while. Thank you to the creators!

Type your comment> @FQuen said:

I’m completely stuck. :neutral: can anybody give me a nudge with the “walk” thing?

-bscure -nternet -atagram

I get what you mean by that hint but not finding anything obvious or useful from these enum queries (esp a specific one that returns null - based on what you’d need to get farther on the high port svc.)

Any chance you could DM me with a slight nudge? Not sure what i’m missing here.

Rooted, was not easy, but like my honorable predecessors i learned a lot… And need to sleep now ! Thanks @R3m0tE for the “no spoiling” hint. I’ll be happy to help if i can.

I know what I am doing to achieve the root, but I don’t know what is missing here.
I have written script to run (where I cant see it) and I am triggring it with walking.
but it doesn’t seems to work. not even echo command into some file.
By the way, this might be an hint for some others.

got the user, but not sure how to proceed, though i’m almost certain c****it is involved. Looking into parameter tampering right now, but not sure if i’m missing something besides the username by stepping outside for some exercise?

Finally after few nudges Rooted !! Msg me if you need help .

uff… tough machine, need a hint from here couse usually i dont do this scan, if anybody need help just let me know

Can get a foothold, albeit briefly. Seems somewhat random when cut off and have to re-do it. Spending a lot of time trying to figure out how to maintain a foothold session to do any recon … any little tips for this?

Hi, I need help withthe foothold. I found the c*****t application.