Rooted this box finally!!! Learned some new tricks.
Here are some hints:
* OSINT is your friend
* Search for the right script
* Login and reverse shell
* Get the right shell (output)
* You gotta love it
* Reverse shell…
I am user w****min, and found the lu*** file for the s****min user.
I also get it running, but every time when i type in something i get the error:
Unhandled key(s): \010
Someone can help me with this? I am really stuck in that part.
Type your comment> @WarrenVos said:
> This box has been out for over a month but still so slow I can't even load the webpage without constant errors. Whatsup HTB my VIP money not good enough??
I am VIP on eu-vip-8 and have no problems at …
Type your comment> @TazWake said:
> @D3Fix said:
> Enumerate the account. Look what it can do, the the GTFO bins will be more obvious.
> EDIT - I see you rooted it, the GTFO bins finally made sense? :smile:…
Finally i got root, special thanks to @kotoffski !!!
Things i found:
* Find that one CVE
* Really look close in all files
* Go your way in as the user
* Look at some internal services
* Get some tunnel vision
* Talk to John to give …
I am still stuck for root. Can anyone please help me more? And don't say GTFOBins because i really don't know which one you guys mean, i tried several but still didn't manage to get root. (i am user j****a now in shell through ssh)
I also need to crack the *ht*****d, but my friend john keeps guessing the format of the file to crack and in the end, it stops because it can't guess the format.
Can anyone please PM me to get on the right track?
Finally got root!! Thanks, @MrR3boot for this box, and @hlyblyhakr for the hints.
Hints for this box:
* Listen to the responses
* Don't brute force, you won't get anything from it
* Dirbuster is not your friend
* Boxname is a really big hint…
Finally got logged in shell as user m**** with good help of @hlyblyhakr
Tomorrow hoping for a little more progress to own user...
The connection of this box is really wors though, keep dropping connection or is it just me?
Finally rooted this one too.
Fun box where the r*.p?c** was the most difficult one for me.
* Known vulnerability of version 4.8.0
* Trick command to do something else
* Can't really say because of spoilers
Thanks for th…
Finally got root after 3 hours of overthinking.
* see what u can run as root with user g***
* research about network-scripts
* use basic linux commands
If you need help, PM me. (please be as clear as …