ion0x0

About

Username
ion0x0
Joined
Visits
552
Last Active
Roles
Member

Comments

  • No, you cannot. Although I personally haven't touched this box yet, I can say that I've worked on such boxes that intentionally response very slow. So, that's probably the way you're supposed to go through. No idea what you meant by "exploit&q…
  • The new one is good. Just don't rush, you'll still need some time to figure out what can be changed. From the first view, on the login page you'd need to put "email" and "password" text on the login form a bit above or make them …
  • Put it simply from what others said, frustration will always follow you as you decide to work on a box or any other target. Always remind yourself that HTB is a learning platform. The issue is the way you take it. You get frustrated, you close the l…
  • Type your comment> @sudozeus said: (Quote) You mean flags? Okay. You need to get through all the way one more time and submit the flags once you get them.
    in Admirer Comment by ion0x0 July 6
  • Type your comment> @sudozeus said: (Quote) You don't need any hashes to get user or root.
    in Admirer Comment by ion0x0 July 5
  • There's some filter most likely. I can read no file, only passwd. Trying to read a file where I need to specify its extension results in nothing. Any hints regarding bypassing the filter?
  • Type your comment> @kcaaj said: (Quote) Well I mean these scripts in /examples, but I already noticed that these are the default ones come preinstalled with tomcat, so I wasted 40 minutes just for nothing. Though now I kinda know what I need. So…
  • Is it about EL injection or it's best I forget about it? Because it doesn't seem to work anyways. I even thought I didn't need to focus on what was displayed as a result from my input, tried to ping myself and other things like that, but... no, it d…
  • Type your comment> @TazWake said: (Quote) He doesn't use kali 2020
  • You use Kali and you're root by default. Why'd you need to use sudo, lol?
  • initial foothold and user parts are pieces of cake. It just gives you the chance to remind yourself of all vulns you've ever learnt. Now working on root. Also, about root - pspy and lin enum didn't give anything, so would be nice to see some hints i…
    in Magic Comment by ion0x0 April 26
  • If you're quiet, noone hacks you. Use this platform for the purpose it serves. A couple of the reasons why noone hacks you: 1) It takes time 2) Your openvpn IP is dynamic, plus it's not easy to reveal your address unless you want someone to. Of co…
    in Safety on HTB Comment by ion0x0 March 26
  • Type your comment> @nyckelharpa said: (Quote) Sorry for breaking your trolling attempt but passwords in shadow file are salted, and not always you can crack them. Edit: Oh, you said "hash", I missed it. Sorry, lol. So yeah, that's bet…
  • Type your comment> @malwarepeter said: (Quote) The main problem is that users share root flags with some people, which in turn use these flags in order to open writeups. It can be used by rogues. "You haven't even started doing the machine,…
  • (Quote) And again - writeup hashes are the same for everyone.
  • One of the problem as well is that writeups are also stored on github.com. I am not sure if they still are, but I saw it like a half year ago. They're uploaded in a .pdf format, but in order to read you're prompted to enter password - i.e root flag.…
  • If you mean this particular website - follow walkthroughs, ask for root flags or something. If you mean real life, i.e being an expert, you're on wrong way. Don't do anything in order to get something, you need to do it just because you love doing …
  • Type your comment> @CyberHunter01 said: (Quote) Usually challenges or machines that are alive for months on this forum contain all-possible hints for those who stuck. Did you try reading hints that have already been given/posted? You also posted…
  • First off, here's the original thread where you can read hints or ask for new ones. https://forum.hackthebox.eu/discussion/2217/we-have-a-leak-osint-challenge#latest And I think it's the very time to stop making new threads. You've already created…
  • Type your comment> @xercb48 said: (Quote) Could all of it have gone other way? Obviously no. Once "team" is made, its participants forget about it. People don't understand what "team" means. It's not team when you go in rando…
  • How many of these who joined your server are actually interested in team and learning, and not only in just having one more h4xing-related server in their h4xing-related server list?
  • Type your comment> @mz1911 said: (Quote) Discord is never a good place for small business chat groups. It's supposed to be a place for very large communities where moderation is just required, here's why it provides such beautiful system as role…
  • @slixperi look at my rank for example. I finished 3-4 boxes in the last week, but haven't got any points. No, I mean I have got points, but not progress towards my next rank. If I remember right, I will only be able to have some progress to get my n…
  • You've lost the points from the previous machines you rooted. Now, for example, if your rank is pro hacker and you need some points towards Elite Hacker, you need to have 200 points in order to get at least 1% towards the next rank.
  • (Spoiler)
    in AI Comment by ion0x0 January 4
  • https://en.wikipedia.org/wiki/Exploit_(computer_security)
  • Thank you pretty much for the box. What most beginners (or not only beginners) need on HTB is machines that require players to research source code in order to get over it. I like that initial foothold and root parts required me to inspect code car…
  • Type your comment> @kiaora said: (Quote) Trying to exploit it for almost two hours now, the last quote in the variable seems to be breaking my plan. PM me if you can.
  • (Spoiler)
Avatar

Howdy, Stranger!

Click here to create an account.