Of course we did a lot of researches related to waltz dance rotations.
But why should we mix German word with English if, according to HTB profile, the author is from Italy ? The hipothesis that Walzer is the name looks more logical.
Rope is very hard box that requires special skills and experience.
It was important for me not to restart nor reset box on the root part,
but I guess that more experienced hackers follow more elegant way to root.
It was so cool to pass it in the second time. I passed it for the first time many weeks ago and it looked like new in the second time. But the second time I passed it much more quickly. Hence HTB practice really improves skills)
This box is lovely because there are several paths to root and there are many paths to discover that paths. We also have several possible directions that will not lead to result but still is interesting for learning.
you should get the text and link but the very first line is the flag.
if I was in your shoes and did not see the flag even after machine reset,
I would connect to other server (us instead of eu and vice verse) to check if it is VM problem.
I used python script to get token string
and in my script I added sleep (1) in requests
because without delay my IP was blocked by CTF antiflood system.
Why does your deduction.sh send requests without any delay in between and is not blocked by C…
Very competent approach for data acquisition from SQL.
I just guessed the name of table and fuzzed the columns.
And I even could not dream to write such smart python script to read all the files available in all the users home fold…
Thank you for writeup.
Did you on practice test the possibility to get root without drno security context addition to sysadm' security context?
In my experiments I was able to get root only after drno id adding to sysadm id.
It is good idea to start discussion, because Call is very interesting challenge.
The first part is straightforward; the second part is simple.
btw, right now I gave the straightforward answer for your question, David.