Would really love a PM regarding how to get a user shell. I have discovered a vulnerable service running on the box, but the exploit script I found does not work. It tells me that the commands have been executed, but I'm pretty sure they have not be…
I have currently achieved RCE and done a bit of exploring. Only managed to find the user's name, and 1 credential which I could not find a use for.
Can anyone drop me a PM to nudge me in the correction? Thanks!
It's not always the case that the user.txt is in ~. I've seen cases where the file is located in ~/Desktop/ or ~/Documents/. I think it's just that user.txt won't be anywhere too far away from ~.
This is actually something I fully agree with. Even picking out the good hints from the forums can be a good skill to have.
The clue that helped me the most was the one about running services. It might not be obvious (which it certainly was…