Fantastic easy box. Reminder that just because something isn't in gtfobins doesn't mean you can't run commands with it
If you're looking for help, don't be afraid to send me a message but make sure you include info on what you've tried and what you…
Type your comment> @hri said:
> I'm facing the same issue.... Does anyone know how I can get this to work?
This is an ongoing issue with the rotating flags. @TazWake has an entire copypasta regarding it.
In short, change s…
As others have said, this is a great example of an easy box.
Foothold: What are you being allowed to do? What version is running?
Privesc: No linpeas or linenum required. Just take a look around and read then abuse
Root: Classic privesc to root wit…
Finally rooted. I was stuck on root for hours. Felt really dumb once I finally figured it out. Thank you to @SpawnZii for confirming I was in the right spot. Feel free to message for nudges, but as always let me know what you've tried
So many hours wasted trying to grep through /var/logs. Once I got past the first user I got root within 5 minutes.
Had to use a local tool I'd never heard of before. Feel free to PM for nudges but let me know what you've already tried. Plenty of hi…
Rooted! Thank you to @zaphoxx for a nudge on foothold. Had been on the exact article but thought it wasn't right.
Not much to say that others haven't. Foothold is the only challenging part.
Feel free to PM for nudges if you include what you know a…
Just got root with some nudges from @trab3nd0 and @LMAY75
Foothold: Find someone else to appraise your jewels. As others have said, the github page is mostly correct but there is a typo and some encoding issues
Root: Don't be afraid of b…
I'm stuck on d****s.worker.htb with creds r***l. Anyone willing to help give me nudges on getting this deployment working? Having issue getting the pipeline and release setup.
Edit: Rooted thanks to @FelisLeo
Phew, took me long enough but eventually got root. Shoutout to @Darvidor @caveeroo @limelight @he110w0r1d @exord26 for all their help and nudges.
Plenty of hints already but feel free to reach out if you're stuck
Phew, finally rooted. My hint for those with a shell/RCE and struggling with the flags, learn how to use the powershell version of ls with date filters. From there you get the file everyone is talking about and everything you've been trying and read…
Type your comment> @OxO said:
I have access to read the file just fine. Both user.txt and admin.xml. When I try that xml file with $cred = import-clixml .\admin.xml I get "Import-CLIXML: Error occurred during a cryptographic operati…
Stuck on priv esc after getting a reverse shell. From what I understand I need to become the user instead of system so I can use import-clixml without getting the crypto warning. I did see an old password in hardening.txt but it didn't work for admi…
Finally got root. A bit annoyed on the syntax with the filter... Anyone know why the extra space was needed despite the doc stating that it should be no space?
Feel free to pm for hints for root or user.