can ssh in as j***y, found that dir, curl gives a key, not sure what to do from here. any nudge will be welcome
Well, take the scroll to a wizard whos name starts with j. He may be able to help you, but you might need to modify the scroll so he can understand it. and remember, the scroll is the KEY
@freer33l said:
I got the initial foothold but I’ve been stuck for a while now. I got a shell as www-data but I’m not sure what to do next. I’ve been looking though the config files and whate er else I can access. Could anyone send me a message with a nudge? Thanks
remember, the few magic spells you can cast from there are your friends. Look for old books or scrolls, who knows, maybe the magic words within them have mastakingly been used again…
I have the final user ja password and I cannot login when I am trying ja@10.10.10.171
it tells me permission denied, please try again. Can you please give me a pm or a little hint on how to pass?
I have the final user ja password and I cannot login when I am trying ja@10.10.10.171
it tells me permission denied, please try again. Can you please give me a pm or a little hint on how to pass?
You dont have a password to log in. Think about what you have and how you should use it.
I have the final user ja password and I cannot login when I am trying ja@10.10.10.171
it tells me permission denied, please try again. Can you please give me a pm or a little hint on how to pass?
it was the same problem I had, because I didn’t think about it, you need the password… but after the key. Use the key, then everything will be clear to you. Use only the key.
Took me 3 days, but with some help, I finally rooted my first box. So much fun, I learned so much, and I made notes of every step, just bc there was so much to learn for me.
Learned a LOT about the importance of understanding enumeration, learned a bit about webservers, learned a little about RSA, and pretty sure I had an aneurysm over trying to stay connected ■■■■. And that rooting was way easier than I expected after gaining that initial foothold.
If someone needs a nudge, let me know. I’d like to pay forward the help I received from here.
Another great Linux box, nice and challenging. I wrote just a couple of hints:
Foothold: basic enum, identify a service and then Google it
User(s): Once you get in there is an interesting config file nearby that will give you access to the first user. Going from first user to the second it’s the most tricky part, but with more enumeration you can easily discover which is the service to exploit.
Root: it took about 3 minutes to…GTFO
These are the tools I used to root the box: nmap, dirb/gobuster, Google, curl, ssh2john and john. I hope this doesn’t spoiler too much, otherwise feel free to remove the comment.
Rooted! User flag wasn’t that easy for me - had to think out of the box bit there - remember that you don’t have to follow the rules if you have access
I’m stuck at the www-data shell. I’ve tried ls and cat and everything but I can’t find anything of interest (except passwd file).
I’ve being trying to cd to different directories in the www-data shell, but whenever I pwd, it always prints the same directory /opt/ona/www. is this supposed to happen?
I’m stuck at the www-data shell. I’ve tried ls and cat and everything but I can’t find anything of interest (except passwd file).
I’ve being trying to cd to different directories in the www-data shell, but whenever I pwd, it always prints the same directory /opt/ona/www. is this supposed to happen?
Help please! Been stuck here for 4 hours
Remember that you can cat full directory paths i.e dir1/dir2/file. If I was on a www shell, I might try to look for some config files to see if there was anything of interest in them.
Hello guys, i have a problem. I have cracked the password of j***a but when i try to connect via ssh i can’t connect with that password. PS. i know that’s the correct password cause when i put it in the file with the prte key it accepts it.
Any help?
Hello everyone. I Just rooted OpenAdmin last day and these are my suggestions…
It’s an easy… All you need to do is a very advanced enumeration, but don’t wast your time searching in the amount of file and directory… Once you get the shell and own user it will be very easy task! Try harder!!!
I’m stuck at the www-data shell. I’ve tried ls and cat and everything but I can’t find anything of interest (except passwd file).
Finding the user accounts is a useful thing.
I’ve being trying to cd to different directories in the www-data shell, but whenever I pwd, it always prints the same directory /opt/ona/www. is this supposed to happen?
Yes, this is exactly what should happen if you are using a remote code execution (RCE) exploit. Every time you issue a command it is a new exploit. This is not a shell, so you cant change directory.
But there is literally no reason to change directory.
Running: cd /tmp then ls is identical to running ls /tmp
Running cd /tmp then ls then cat interesting.file is identical to running cat /tmp/interesting.file.
Help please! Been stuck here for 4 hour
Look at the interesting files around where you have landed.
Hello guys, i have a problem. I have cracked the password of j***a but when i try to connect via ssh i can’t connect with that password. PS. i know that’s the correct password cause when i put it in the file with the prte key it accepts it.
Any help?
I’m stuck at the www-data shell. I’ve tried ls and cat and everything but I can’t find anything of interest (except passwd file).
Finding the user accounts is a useful thing.
I’ve being trying to cd to different directories in the www-data shell, but whenever I pwd, it always prints the same directory /opt/ona/www. is this supposed to happen?
Yes, this is exactly what should happen if you are using a remote code execution (RCE) exploit. Every time you issue a command it is a new exploit. This is not a shell, so you cant change directory.
But there is literally no reason to change directory.
Running: cd /tmp then ls is identical to running ls /tmp
Running cd /tmp then ls then cat interesting.file is identical to running cat /tmp/interesting.file.
Help please! Been stuck here for 4 hour
Look at the interesting files around where you have landed.