Networked

0x30c4 · October 1, 2019, 6:06pm

i did the same mistake.
now im going for the root

antim4g3 · October 1, 2019, 9:04pm

Type your comment> @kry97on said:

any hints for rooot…///
PMs are welcome.

PM me.

twypsy · October 2, 2019, 3:34am

The best hint, is that this box teaches you how to look for flaws in code to be exploited.

lel1q · October 2, 2019, 10:06am

Hi, do you have at any point to connect via ssh?

nav1n · October 2, 2019, 10:14am

Type your comment> @lel1q said:

Hi, do you have at any point to connect via ssh?

Nope.

lel1q · October 2, 2019, 10:30am

Type your comment> @Un1k0d3r said:

Type your comment> @lel1q said:

Hi, do you have at any point to connect via ssh?

Nope.

OK, thanks

Impulse · October 2, 2019, 2:16pm

Read this …
U get root within seconds !!
http://tiny.cc/hjbtdz

lel1q · October 2, 2019, 2:26pm

ROOT, my first one on HTB. I can give hint if you need

Hack The Box

0x30c4 · October 2, 2019, 2:54pm

Type your comment> @Impulse said:

Read this …
U get root within seconds !!
Frejus Cherche Sage Femme - Incontri Eur Lombardia

thanks dude

BugCatcherNade · October 3, 2019, 3:13am

Established low-priv shell. Can someone pm me with a nudge towards user?

okipower · October 3, 2019, 10:07am

Can anyone throw me a bone?

I am stuck on the priv esc part where you see that one script file. I’d figure that you’ll need to throw some kind of input in there to make it do what you want it to do. For the most part, I am totally lost on what kind of input to throw…

nandrius · October 3, 2019, 9:40pm

Managed to get user and root. User was kinda spoiled to me though by certain actions performed by other users. So, I’m not entirely sure why this ‘thing’ worked as my knowledge is limited on the topic. Would anybody be kind enough to explain to me in PM please?

MrNight · October 3, 2019, 10:33pm

Oneliner code does not work. Try png and jpg. Should I call the image via a direct link? Should I use quotation marks (<php)?

eagle005 · October 4, 2019, 8:32am

Need some nudge from someone i have successfully uploaded my malicious image. after that when i goes to /u*****s/ directory i didn’t see anything there. can some one please tell me what is the issue. as earlier i was able to get reverse shell but now i didn’t get anything.

alex1602 · October 4, 2019, 11:21am

Ik Think I went down the Rabbit hole, could someone give me a hint getting a shell.
I have tried creating a prepared image but keep on struggling with the execution I am clearly missing something

Freak2600 · October 5, 2019, 2:00am

man that was not easy for a newb like me. But got it done with the help of @vider thanks for your help and patience.

whoami
root
id
uid=0(root) gid=0(root) groups=0(root)

KaotiqCJ · October 5, 2019, 3:50am

I have uploaded my ie file and now have a shell as ae, I see an u**d form in lb but don’t understand what I am supposed to do with it. any hints?

EDIT: got User thanks to @BReeD !

Now for root…

kalagan76 · October 5, 2019, 12:10pm

Type your comment> @Impulse said:

Read this …
U get root within seconds !!
Frejus Cherche Sage Femme - Incontri Eur Lombardia

jeez…even with i’m not able to find which commands to use when running the c********e.sh script…

fulc2um · October 5, 2019, 1:26pm

Type your comment

rholas · October 5, 2019, 1:45pm

PM me if u stuck