I'd like to see how people got root but not user xD
Also how some people didn't need ODAT or even SQLplus to pwn it.
I solved it in two ways, the "intended way" and the metasploit way haha
PM if you want to discuss about n.n
Tried nmap and masscan, several times, all ports, fast, and twice found one port, but not the same port, and all the other times just found nothing :/ even after reseting the box
This box is driving me nuts
First of all, figure out which exploit you'll need.
After that, undertand that exploit: what's the vulnerable app, why, which are the common extensions, where is often located?
After that, try to find that location, and then lauch dirb/nikto/dirbust…
There are 2 ways to root the box, the one in wich you will learn a lot but will be a total pain in the ass, and the easy-fancy way that you won't know how did the things work, but did work
I did the 2nd one, and will try the first one.