Cache

Well this sucks. on the login page there is now just a PHP shell… Don’t know who did that :\

Type your comment> @mrvanee said:

Well this sucks. on the login page there is now just a PHP shell… Don’t know who did that :\

That is the situation in free servers … Vip is the cure …

rooted! thanks @Dark0 for the nudge !

Finally rooted

And rooted :slight_smile: Almost got root before getting user, but then found the way in :smiley:
Really a nice box, though I didn’t like that fact that others can easily break the whole machine (or sometimes just partially, which makes gaining foothold even more frustrating), which then requires a reset of the machine. For those who haven’t solved it yet: There are less intrusive ways of gaining access to the machine. There is no need to change anything :wink:

How do you find the location for H** on the server?

Type your comment> @Dark0 said:

Nice box, rooted…

if you need help, can ask me

got credentials saw something like h**.h** how to go further

rooted. That was a fun box. My hint would be that there are definitely ways around a certain thing being turned off. Youll have to read to figure out why.

From there, it is very straight forward with normal enumeration. Nothing too crazy. Very much enjoyable.

Hi ! I’m desperately searching for the H* file using what I read on a***.h**. And I haven’t found anything yet, a nudge would be appreciated. :smile:

Can someone PM me and give me a hand on the guessing part please? I literally bruteforced every H** possible directories and still stuck, and google searches didn’t provide me any additional hint. I’m not good at this guessing stuff, I just want to exploit things.

Still stuck on the rabbit hole. Please help. Not able to proceed

Type your comment> @breakndenter said:

Type your comment> @mrvanee said:

Well this sucks. on the login page there is now just a PHP shell… Don’t know who did that :\

That is the situation in free servers … Vip is the cure …

Yeah i just got VIP :wink:

Is anyone having trouble with the first exploit after the foothold. It takes FOREVER to run and all of the data is blank. I had to modify the exploit to target exactly the data I want before it would return anything

Rooted

Overall fun box which teached me a lot. Pay attention to details, write things down while enumerating and keep things simple

PM for nudges

who the f keep turning off the p***** ***e

Rooted. Fun box.

Type your comment> @vicio said:

Type your comment> @fr0ster said:

I’ve done it

id

uid=0(root) gid=0(root) groups=0(root)

Thanks @ASHacker for this Box and my team-mates for tips and helps :slight_smile:

Doesn’t count if you don’t show the hostname of the machine :lol:
Ok :wink:

# cat <hide>/hostname && id
cache
uid=0(root) gid=0(root) groups=0(root)

Looks like there is another login page for H**, but I can’t find it anywhere! Any hints?

Rooted! Very nice box!

finally!!! got root good machine , with quite good challanges like sq** and dock** ,

Foothold: enumeration is key ,look closer and find exploit be more specific in chossing exploit

user: Take notes to keep track what have u found ,may be it can be used later;
root: Take advantage of services hosted locally that will lead u to root , again enumeration is key,Keep digging u should know your powers;

if u need help Discord: itachi982#0535

if that helped u give me respect at : #itachi982 #ID:182298
:smile: :smile: :wink:
Thanks @hg8 , @cerebro11 , @71xn

Happy hacking,Try harder.
itachi982