Last Active


  • I went after PIL and pytesseract (can't get it to work) but that seems capable of OCR. From there you could loop and process morse, but certainly wouldn't rate that as easy
  • Made it about 15 times by hand before I realized the depth this could go. Fun, but I assume I am missing an automated decoding tool?
  • Losing my damn mind. I've got the program, I've figured out what it needed. The flag comes out and I figure out how to decode it. I've got the revealed name but my flag attempts just aren't working. Can someone help me figure this out? PMs wel…
  • (Quote) you are right there. I used Olly, but your p**** break is close. Try items around that address.
    in Bitlab Comment by imag1ne October 9
  • Done, but still struggling. Never in a million years would I think I could exploit via RE better than anything else. That said, can someone explain the g** p*** to me via DM? I've never worked with g** so all the documentation looked foreign to me…
    in Bitlab Comment by imag1ne October 9
  • Super annoying to see this rated low, but I'm finally ready to notify, but can't get my syntax correct. Tried to shell, then went back to echoing file and ping my box; no dice. Everytime I feel like I'm getting somewhere, the box gets reset. Can an…
    in Netmon Comment by imag1ne March 12
  • This box is the biggest ass pain; I feel like a moron. Have G******** logged in to m*****; can't figure out the q*** evilness. Been playing with it off an one since Dec and about to quit. Any advice appreciated.
    in Teacher Comment by imag1ne February 23
  • I would love a DM if anyone has a chance. I've got the q****a b*** terminal and am trying to access a special service for VIPs. I can communicate, but can't figure out how to receive information. I know I am 99% there, but don't understand how to e…
    in Carrier Comment by imag1ne October 2018
  • lol, I know right? I actually found a script via enumeration but didn't realize it, just not sure what to do with it. My first guess was a local service I enum'd, (very OSCP) but couldn't figure out the password to access.
  • 1 week out from OSCP retest & would love some privesc pointers, not spoilers Got O* shell; might understand retartar (grp) but can't find diff/script talked. found 3 diff files but at a loss...
  • Thanks for the nudges. Got it; it was just a matter of finding the damn file. user to root was a matter of a couple minutes. Keep faith and don't quit on enumeration.
    in Sense Comment by imag1ne February 2018
  • losing it here. I'm in the group that has tried multiple lists, multiple programs, and multiple extensions (mainly stuck to txt) with no luck. Any DMs with a nudge is appreciated
    in Sense Comment by imag1ne February 2018
  • No worries Capt; you are right there. sometimes its a box flaw. PM if you want help.
  • lol, that looks about right. Now you just need to figure out what runs as root and trace the thread. Feel free to PM me.
  • I did this also, but I just launched apache; same same. I use it to wget my LinEnum and standard scripts on most machines.
  • (Quote) If you have anything besides www-data, PM and I can explain past there
  • I'd love to help, but since this was one of my first machines, I didn't take good notes and lost what I did have. I remember how I exploited root, but I forgot how I got to break out of www-data to see if I can figure it out.
  • For some reason I got everything except monalisa to work. Tried extracting with 3 dozen pws with no luck. nudge?
  • Wow, that was easy. I tried audacity, but that was crazy. Thanks for the help Mak; stego and crypto can break the brain when you don't know what to look for when converting things around.
  • Stuck here with the few folks that have the code but not sure how to convert to something usable. Any small hints?
  • I feel you all; it's hard to get started, but once you do, the flow gets better. LinEnum and pay attention to the notes and flags that are highlighted. Don't make it harder than it needs to be, these really aren't crazy deep. It sounds like I used …
  • So I after not giving up (yesterday ended with around 24 hrs up), got the flag, but priv esc was minimal and never got a full meterpreter reverse (just echo'd bash). I know some people have asked about potential openings. I abused the hole to get th…
  • Being new, I am trying to distinguish config issues from ops issues. I have IP of 10.0.2.x. With that I have tried multiple ports in 8080/8889 range with listener setup and dial back to 10.0.2.x. I have been using the existing php tool on server, n…

Howdy, Stranger!

Click here to create an account.