Chobin73

About

Username
Chobin73
Joined
Visits
1,945
Last Active
Roles
Member

Comments

  • Struggling to get root on this. I've tried whatever in my knowledge to go ahead, but i think that i'm again banging on my lack of skills in binary exploitation...any nudge would be really appreciated...
  • Type your comment> @TazWake said: (Quote) Yeah, LOL. What if i tell you that I was doing it on the right VM but i discovered after MANY HOURS that the reason why i was getting no responses at all was that i was tunnelling it to the wrong ip?
  • Type your comment> @camk said: (Quote) What really hurts me (and make me feel ashamed), is my pathetic lack of coding skills that puts me definitely in the corner despite being "in sight" of the goal...
  • Ok, i've already spent more than 10 days onto this behemoth...getting user's flag has been a gigantic learning experience (thanks also to @TazWake) , but i have to admit that root is out of my reach for now. If anyone wants to give me one or more nu…
  • First of all: thanks. this was one of the funniest box i've done in the last months... Secondarily: this is one of those boxes that seems to have been built around the idea of making the attacker feel "uncomfortable"... ...but maybe better…
  • Type your comment> @toddbrecher said: (Quote) pm
  • done... really easy...finding the CVE was not so trivial, but privesc was really a classic. I cannot give hints without spoiling something...
  • done. great machine, learnt a lot. thx again to @LMAY75 and also to @beorn for nudges. my hints: foothold: enumerate, don't forget slashes around, read docs and reload, reload, reload user: you should have already found what you need. root: it's a h…
  • Done, Good box, not very fun, but i've learnt a couple if interesting things..
  • Great box, harder than what i expected. I dont have many hints to share without spoiling too much, but i suggest to have a look at a sneaky box.
  • This machine really made me understand what "insane" stands for. First of all, again thanks to @TazWake and thanks also to @justAhmed. My hints: * foothold is all about enumeration. you must collect EVERYTHING. Use the right tools and don…
  • Rooted... ...but with an enormous load of help from a friend who's definitely way better skilled than me. I thought it would have been a good thing to try teaming up in order to learn better. I'm not sure that it was a success, because i do not have…
  • Rooted. thanks to @ArtemisFY for helping me in sorting out where i was getting lost. IMHO, there's a misconception on the classification easy-medium-hard-insane which is not really related to the true "stiffness" of the box. hints: foothol…
  • Owned it a few seconds ago. First of all, let me thank @LMAY75 for his help! (+respect to you pal!) The machine: It's great! I liked almost every step of it. All the hints are already there, so my suggestion is to open wide your eyes and avoid being…
  • Man, i am so sorry for that. I mean: i dont know you, so i hope you'll excuse me for not being aware of your troubles... I bet you already tried whatever you can to gain a better position, so sorry for not having sharp answers to your questions.
  • My personal experience is that you must "brand up yourself". Get known in your community and try to catch even the smallest opportunity. IDK where you live how the business environment is, but if it's like here, where there's plenty of SMB…
  • Type your comment> @sparkla said: (Quote) I am not sure that i correctly got your point, so excuse me in advance if my words may sound a little "assuming".. TBH, while i see that there's plenty of white collars in the IT and cyber secu…
  • AAAAnnd...done! Obviously with tons of help from @TazWake (thanks for being so kind, really!) and a little nudge from @pinnn I am quite confused and i think i have yet to understand better what i did and how i succeded. This machine is definitely o…
  • Thanks for popping up this thread... This topic really brings me back in time to a long time ago. I stopped pentesting back in 2005, so sorry if my opinions may sound quite "aged", but i think that some of the messages are still valid... A…
  • Type your comment> @TazWake said: (Quote) ...well, indeed i didn't said that i did not submitted the root flag! 😅
  • Rooted but with some sense of guilt. I want to be totally onest: while googling i casually dropped into a spoiler and when i was completely lost for the root path i took some "inspiration" from it. Foothold/user: here i had a pretty clear…
  • Type your comment> @TazWake said: (Quote) LOL
  • I consider HTP a platform for learning. And 99% of the infosec job is made up of learning. Learning does not means that you have to research and build on your own the wheel again and again. If your goal is to become a red teamer, you have to think l…
  • nice machine. foothold is pure fun. I wasted A LOT of time getting a grip on it only because of my dumb reluctance to consider uppoer and lower case...But once you get it, it's a snap. User1: you are a few slashes from the goldmine. User2: Yes, it i…
  • This box was great. I learnt a lot thanks again to @TazWake (i think he should be seriously going for beatification for his kindness) and to @trab3nd0 for the sanity checks. foothold: enumerate...enumerate...enumerate. mind the gap: " is not ' …
  • Well...this is indeed an easy machine in term of knowledge needed to go ahead. But it's also a trap. It is indeed not so easy when it comes to the path to follow and the risk of getting sucked in the quicksands of overthinking. IMHO, this is that ki…
  • got root a few minutes ago. Good machine, i've learnt a lot. thanks @ecodb for the sanity check.
  • So i finally did it. This is indeed a huge behemoth of learning experience. Again, thanks to @TazWake for nudges and sanity checks. I have nothing to add to the hints already given here, so i will not deep dive into every single step. The only sugg…
  • Fun machine. I haven't learned a lot, but i discovered that a tool i was pretty accustomed to is now deprecated... User: enumerate till you find what they want you to know. Then just google it the easy way. Root: again: enumerate till you find a h…
  • done it Definitely the bar is getting higher as this is by far the toughest medium box i ever made. Foothold is tricky, interesting and, with a bunch of imagination, also quite "real life" applicable... User drove me crazy: i got almost im…
Avatar

Howdy, Stranger!

Click here to create an account.