Official Knife Discussion

first time doing it on the release arena and manage to get the user flag and working on root…everything is there for the foothold and user flag. just need some Google-fu here and there

User done…

I’m struggling with root. I think in the right place just struggling to understand the usage/syntax needed with the k**** command. Can anyone nudge any pointers or docs which are useful pls? I assume one of the commands in the help list is what I need to use

I just cannot connect to the machine, I tried different VPNs but still no luck. The machine is always unreachable. Is the machine only for VIP members??

Type your comment> @zvfhxxxxz said:

User done…

I’m struggling with root. I think in the right place just struggling to understand the usage/syntax needed with the k**** command. Can anyone nudge any pointers or docs which are useful pls? I assume one of the commands in the help list is what I need to use

Never mind. I was a fool and didn’t add the flag after the ***** ***c command :slight_smile:

Foothold and user : Well, guys are wright ! Don’t look for any webapp but a daemon. There’s a recent vulnerability on it. I’m shocked ! :neutral:

Root : well. I see a knife thing. Is it this ? … thank you guys for leaving hack tricks on server. So the answer was just in front of my eyes but I missed the chance to search a bit by myself :smiley: .

Thanks to @zvfhxxxxz and @elveskevtar for the nudges.

Anyone ever have trouble submitting a root.txt flag and getting “incorrect flag”?

EDIT: It appears the flags change when the box is moved from the release arena to the active machines section. Re-rooted and got a different flag which was accepted.

Rooted.

If anyone has a question i would be happy to help you out!

User: Look for version number on what the website is running would be my main pointer

Root: don’t look to far you will only need to enumerate 1 command and do some googling (maybe you will see it without google) and than it 1 simple command and you are root!

Was struggling with foothold more than needed going down rabbit holes. Phew. Once fh identified user and root took literally seconds.

Got foothold immediately but can’t seem to figure it out how to exploit the tool. could use some help

rooted it without any help.

Type your comment> @Lalith71 said:

Wow found nothing with 40 mins of enum any nudges you guys?

Nope

Hello

Starting the box...

is anyone willing to provide hint, stuck at root.
got user using Chinese help.

Type your comment> @IamMegalodon said:

is anyone willing to provide hint, stuck at root.
got user using Chinese help.

try to see what you can do as the user, and remember that often the name of the box is some form of hint … (linpeas can help but you should do this basic enum everytime for easy / medium boxes)

after that, read the documentation online and with trial and error you should be able to get root !

?

Found a way to get the user flag, and find the way to get the root but since i cannot get a reverse shell i don’t think that the method will work

Got root !

Initial Foothold/User : very simple if you can find the exploit

Root : usual enumeration will tell you what to look for, after that read the documents you will find a way to execute your payload.

DM me for nudges !!! :slight_smile:

Got user trying to get root. Stuck at k***e command, don’t know what to do with it, any tips will be accepted.

FOOTHOLD and USER: Try to find version of something that is used a lot in webapps and google it.

Rooted :naughty:

Pretty easy one! Can’t even think of hints that do not disclose it completely!

Anyone that needs some help/guidance, pm me!

Just say upfront what you have and where you stuck!