rooted! thanks @Dark0 for the nudge !
Finally rooted
And rooted 
Almost got root before getting user, but then found the way in 
Really a nice box, though I didn’t like that fact that others can easily break the whole machine (or sometimes just partially, which makes gaining foothold even more frustrating), which then requires a reset of the machine. For those who haven’t solved it yet: There are less intrusive ways of gaining access to the machine. There is no need to change anything 
How do you find the location for H** on the server?
Type your comment> @Dark0 said:
Nice box, rooted…
if you need help, can ask me
got credentials saw something like h**.h** how to go further
rooted. That was a fun box. My hint would be that there are definitely ways around a certain thing being turned off. Youll have to read to figure out why.
From there, it is very straight forward with normal enumeration. Nothing too crazy. Very much enjoyable.
Hi ! I’m desperately searching for the H* file using what I read on a***.h**. And I haven’t found anything yet, a nudge would be appreciated. 
Can someone PM me and give me a hand on the guessing part please? I literally bruteforced every H** possible directories and still stuck, and google searches didn’t provide me any additional hint. I’m not good at this guessing stuff, I just want to exploit things.
Still stuck on the rabbit hole. Please help. Not able to proceed
Type your comment> @breakndenter said:
Type your comment> @mrvanee said:
Well this sucks. on the login page there is now just a PHP shell… Don’t know who did that :\
That is the situation in free servers … Vip is the cure …
Yeah i just got VIP
Is anyone having trouble with the first exploit after the foothold. It takes FOREVER to run and all of the data is blank. I had to modify the exploit to target exactly the data I want before it would return anything
Rooted
Overall fun box which teached me a lot. Pay attention to details, write things down while enumerating and keep things simple
PM for nudges
who the f keep turning off the p***** ***e
Rooted. Fun box.
Type your comment> @vicio said:
Type your comment> @fr0ster said:
I’ve done it
id
uid=0(root) gid=0(root) groups=0(root)
Thanks @ASHacker for this Box and my team-mates for tips and helps
Doesn’t count if you don’t show the hostname of the machine :lol:
Ok
# cat <hide>/hostname && id
cache
uid=0(root) gid=0(root) groups=0(root)
Looks like there is another login page for H**, but I can’t find it anywhere! Any hints?
Rooted! Very nice box!
finally!!! got root good machine , with quite good challanges like sq** and dock** ,
Foothold: enumeration is key ,look closer and find exploit be more specific in chossing exploit
user: Take notes to keep track what have u found ,may be it can be used later;
root: Take advantage of services hosted locally that will lead u to root , again enumeration is key,Keep digging u should know your powers;
if u need help Discord: itachi982#0535
if that helped u give me respect at : #itachi982 #ID:182298
Thanks @hg8 , @cerebro11 , @71xn
Happy hacking,Try harder.
itachi982
Type your comment> @StormCr0 said:
Looks like there is another login page for H**, but I can’t find it anywhere! Any hints?
fuzz that virtual host network
Rooted. Cool box, i learned a few things. Overall, I think Admirer was a bit harder than this one, but both were good experiences.
- Enum and Foothold is the most challenging part of this box
- Due to issues I had with the low priv shell, I ended up doing the work to get to the ‘lateral’ user first, got a better shell and then was able to back up into the user holding the flag based on enum.
- root isn’t difficult, just knowing who you are and some quick research if you are not familiar with the privesc.
Thanks to @Dark0 for the nudge on the foothold.