@HomeSen said:
Rooted. Now, that was fun. Lots of enum, but still pretty straight-forward. Especially loved the root part. Thank you @polarbearer and @GibParadox for that nice machine
Just wondering why there are so many users on the system.
Because the “box owner” has good intentions, but poor execution
OK, managed to get /c*******.***, but not able to get anything else. Any hints on what I’m missing? Can someone PM me?
hmm a****_****s.**p appears to be rabbit hole
Type your comment> @wazKoo said:
hmm a****_****s.**p appears to be rabbit hole
For sure?
It’s the only thing I’ve got for like over 5 3 hours.
Did you reach the user flag?
Stuck on trying to get the creds to work for the login page? Any hints? searched for exploit and couldn’t find anything unauth’d?
Type your comment> @DedStroK said:
Type your comment> @wazKoo said:
hmm a****_****s.**p appears to be rabbit hole
For sure?
It’s the only thing I’ve got for like over 5 3 hours.Did you reach the user flag?
Only one input and it looks like it’s pretty well sanitized in that it can only be a few possible things.
I’ve been going at it for hours now. I’ve got tons of credential with no where to put them. I’ve run each of their combinations against the available protocols have only had success with the initial account. I’d like to chat with someone that has completed it in direct messages so that I can be more specific in what I’ve found. If someone is willing to give me a kick, please message me. Thanks!
Type your comment> @Bays said:
I’ve been going at it for hours now. I’ve got tons of credential with no where to put them. I’ve run each of their combinations against the available protocols have only had success with the initial account. I’d like to chat with someone that has completed it in direct messages so that I can be more specific in what I’ve found. If someone is willing to give me a kick, please message me. Thanks!
same spot as you right now
Got User! now time for root.
I found *****n-**r is there any more bruteforcing or was the answer in my face?
Going for the world record slowest nmap scan
are any of the credentials found supposed to work for db login?
many many hours later i found the login page. !~!!!
Type your comment> @0xRDx0 said:
many many hours later i found the login page. !~!!!
Same but I still don’t know what to do with it
Type your comment> @ch3sh1r3 said:
Type your comment> @0xRDx0 said:
many many hours later i found the login page. !~!!!
Same but I still don’t know what to do with it
none of the usernames or passwords appear to work
Type your comment> @0xRDx0 said:
many many hours later i found the login page. !~!!!
Is it at least something that makes sense? Like, in a list or I should know it based on the bundle from accessing the low port?
Type your comment> @ch3sh1r3 said:
Type your comment> @0xRDx0 said:
many many hours later i found the login page. !~!!!
Same but I still don’t know what to do with it
@th3y said:
Type your comment> @0xRDx0 said:many many hours later i found the login page. !~!!!
Is it at least something that makes sense? Like, in a list or I should know it based on the bundle from accessing the low port?
a list would get it. or just tweaking something very slightly you would get it.
Type your comment> @xrchsploit said:
I found *****n-**r is there any more bruteforcing or was the answer in my face?
Same stuck here, tried fuzz with many time but find nothing 
Got user! ■■■■ yes. this box shouldnt be marked as easy.
