ascannerdarkly

About

Username
ascannerdarkly
Joined
Visits
171
Last Active
Roles
Member

Activity

  • Rayzer0

    Hey man sorry to bother you I'm currently working on the POSTMAN box. I'm pretty sure I somehow need to exploit the redis port. I have access to the redis-cli interface since I installed the redis-tools/server. I use "config get dir" and "dir" and "/var/lib/redis"

    I've been reading the redis-cli documentation but I can't wrap my mind around how to list the "username" or "change directory"

    I'm suppose to use a python exploit? because I tried using:

    https://github.com/n0b0dyCN/redis-rogue-server
    

    and

    https://github.com/Avinash-acid/Redis-Server-Exploit
    

    so far no luck

    November 19
  • ascannerdarkly changed their profile picture.
    Thumbnail
    November 10
  • danKawan

    bro, can you help me with Network machine ? Im on the apache shell now, found the user.txt file but it has an permission, can you help me with this ?

    November 10
  • c0b4l7

    Hi,

    Looks at the file keenly and see how you can inject a payload under specified directory from the script.

    Dont over think simple bypass to execute multiple command in a shell comes in hand here.

    November 9
Avatar

Howdy, Stranger!

Click here to create an account.