p3tj3v

About

Username
p3tj3v
Joined
Visits
798
Last Active
Roles
Member

Comments

  • I need a small nudge for root.. so I have all the various files, got user.txt.. found some interesting things in the incident files. Also found some articles talking about the compiled file..but struggling to connect the dots.... Update: so after s…
  • anyone care to give me a nudge? Am still in the user stage. Have however been able to log into jail. Then exploited it which gives me ability to read files.. found some interesting things but it's not showing me full content of the files. not sure w…
    in Player Comment by p3tj3v November 2019
  • keep in mind that a website can have multiple faces... so based on the request the webserver serves different content.. so hammering port 80 might not show anything to you... but a "different" port 80 does..
    in Mango Comment by p3tj3v October 2019
  • fun box.. liked all components of it.. few cheeky things in there but definitely had to be creative to get all correct access.. :) thanks @thek
    in Registry Comment by p3tj3v October 2019
  • anyone able to give me a nudge on initial foothold. have found some things... but can't get them to work... update: ok.. so I have a bit more.. found a way to get the box to access something I am hosting.. but still no further luck
    in Sniper Comment by p3tj3v October 2019
  • Would someone be able to point me to some good reading resources / provide a hint? Got some credentials, am able to generate a token, know of a specific function that can be abused.. but how... *update - thanks for the people giving a nudge. finall…
    in Craft Comment by p3tj3v October 2019
  • if anyone wants to give me a hand for initial foothold.. understand what needs to be done.. found the files, can bypass the filter.. but struggling to actually find a file I can then execute...
    in Networked Comment by p3tj3v October 2019
  • So.. managed to get a shell. Got the hound running through the forest. But nothing seems to stick out. Anyone like to push me in right direction?
    in Forest Comment by p3tj3v October 2019
  • can someone PM a hint on the password? got a bunch of users but everything i want to connect to needs a password.. was bruteforcing against some service but feels needless.
    in Forest Comment by p3tj3v October 2019
  • anyone care to give me a hint on this one? got some keys, made a cert, opened a site I couldn't access before where again I can generate keypairs.. but then what... ^ never mind... had some stupid terminal glitch messing up my keys
    in Fortune Comment by p3tj3v June 2019
  • Type your comment> @dontknow said: (Quote) crack more hashes :)
    in Ellingson Comment by p3tj3v June 2019
  • Type your comment> @radiatedsky said: (Quote) signing should not be needed. Probably related to the structure of your repo.
    in onetwoseven Comment by p3tj3v June 2019
  • Type your comment> @iamsundi said: (Quote) check your browser settings... quite often localhost is excluded from proxy...
    in onetwoseven Comment by p3tj3v June 2019
  • also finally managed to root the box.. sure been an interesting learning experience.. Luckily @Shinigami2so gave me the tip to overcome the final hurdle :)
    in onetwoseven Comment by p3tj3v June 2019
  • Type your comment> @L33tVars1ty said: (Quote) Which stupid shell and what keys? Can you access port 443 yet?
  • Type your comment> @Demonseed74 said: (Quote) You might want to check some user folders to see if there is something interesting there....
  • Anyone able to give me a push in right direction? I can access the high port but need to login there... no creds found for that :( assume something to do with initial foothold but looked at all commands I have there but don't seem to able to grasp h…
    in onetwoseven Comment by p3tj3v June 2019
  • Was a fun box. especially they keys made me look into some new things :)
  • Fighting through the horror of 503 errors and resets... but managed to root the box :) fun system
    in Swagshop Comment by p3tj3v May 2019
  • Nice box. Root part with the help off a Windows VM. Wondering indeed if that would be possible using Linux
    in Bastion Comment by p3tj3v May 2019
  • think on how you could actually get across the water? maybe you need something extra?
    in Hawk Comment by p3tj3v September 2018
  • ok.. so logged in on the web page.. pulled some notes.. connected to a different service where I can read and write files.. but then what :( probably something basic.. if anyone can send me a small nudge.. would be much appreciated.
    in SecNotes Comment by p3tj3v August 2018
  • (Quote) can you read any other files? maybe in the same folder? that way you might be able to figure out what actually is happening...
  • (Quote) enumerate more when you are on the system with..... ;)
  • That was a fun box.. learned quite a few things.. Not sure if I rooted it correctly.. but did find the flag :) thank you @trickster0
    in Mischeif Comment by p3tj3v July 2018
  • (Quote) yep... enumerate more... did you look at the snmp info very good? any processes the pop out?
    in Mischeif Comment by p3tj3v July 2018
  • think about the platform bounty is running on. And that goes from multiple angles... what web server is running and what kind of files are associated? and what OS is running and what can you do with that?
    in Bounty Comment by p3tj3v July 2018
  • so after scanning "ALL" the ports I am at another login page... now what to do there....
    in Mischeif Comment by p3tj3v July 2018
  • Had the same idea.. but that didn't do anything :( so back to the drawing board as to next steps.. understand from some comments mild guessing is needed.. but can't seem to match the hints :(
    in Mischeif Comment by p3tj3v July 2018
  • you can get the login for the webserver when you enumerate a bit more...
    in Mischeif Comment by p3tj3v July 2018
Avatar

Howdy, Stranger!

Click here to create an account.