Type your comment> @Ljugtomten said:
Thks! I think i know what you mean! :-D I was finally able to reproduce everything locally but now the fortress is down (giving 504 Gateway Time-out), so i guess i will have to wait :-P
I got shell was w**-***a user and i have found s______.py but i can't bypass those forbidden characters! I really have no clue of what other characters i can use to accomplish what i need to :-/
Can anyone point in the right direction?
Rooted! In my opinion this box is too much CTF-like... and the fact that there is no privesc is very Disappointing :-/
Anyway, my hints for this box are:
* Enumerate everything
* Explore all services... specially the one that gives you an odd resp…
I am completely lost on this one! I have SFTP access... i can "proxy commands" using a SFTP flag but i can't figure out how to tunnel correctly since i can't get direct ssh connection!
I've even tried a tool i've used before, ch**el which…
Hey guys! I am trying this box but i am having a hard time finding a valid username! i found the bin file and i've got a DB connection script which contains a usename and password, but i keep getting "Login failed for user 'r********g'". I…
User and Root... got mix felling about this box. The first part is very CTF like, although the rbash was really nice and i got to learn something new. Root is not hard although i haven't done anything like that so it took me a while to figure out.
I have the password (and i have the hint for the "missing" char), but still, i can't log in! I've put together a list of possible usernames, being 2 of those possibilities the name in the text starting with lower and upper case... but no l…
Finally got root!
User was anoying, i had trouble getting the file without "corruption"... Hope this is not a spoiler but... think "binary" :-D
Has for root... i found it pretty easy once i found the hint in the desktop... Havi…
Finally root! I Really enjoy this box. Congrats to the creator, good fun!
Didn't use N****** on port XXXX but i will give it a try.
User: Read the code, careful... don't just use it as is... ;-)
Root: too easy... seriously, its that obvious.