Carrier

HTB Content Machines
762

OK. User was pretty easy… But I need some help on getting out of it.

I see the interfaces, I think I know what to do but a hint on which network services or what network techniques I should use/know would be awesome.

If someone can nudge me in the right direction I would be glad.

763

Oh man, I can’t seem to catch a break on this box. It’s being hosed by so many people at once it just keeps falling over. I just want to get root!!! Please let me have 5 mins to try what I want to try!! :frowning:

Finally!!

Took me a few days to root this bad boy, partly due to refreshing my knowledge and because I was on the free subs and just couldn’t compete against people spaffing the server constantly. Nice box though really enjoyed working on it.

764

Can anyone PM me about where to go after editing b*** file ??? I am stuck and can’t find out what am I supposed to do for the root flag (I have described earlier what I have already tried to do).

765

ok this system is kicking my ■■■■, I really need some type of nudge… anyone…

766

#Finally!!

Took me a few days to root this bad boy, partly due to refreshing my knowledge and because I was on the free subs and just couldn’t compete against people spaffing the server constantly. Nice box though really enjoyed working on it.

767

So to update again I have used vt**h to write the modified conf but I do not see traffic on the pseduo interface of eth0:4 I created am I on the right track or just lost I can share my attempts and the results I have if someone wants to give me a hand

768

anyone give a nudge on what to do once I have access to the admin page? I see the vuln service, but not quite sure about next steps.

769

Type your comment> @clmtn said:

Type your comment> @DrinkACoffee said:

I’ m trying to get user.txt. I am logged in as admin in the console. Not sure what to do next?

One of the pages should contain some output that’s similar to a command used in Linux environments. Try see what it’s doing and whether you can change its behaviour.

got any thing?

I managed to get user but now stuck on ftp part.
found a server but doesn’t have credentials for this.

770

I understand I need to get to the f** server but I’m unsure how I can do that. Any hints would be greatly appreciated I’m not too familiar with networking

Thanks in advanced

771

Type your comment> @laxudope said:

Type your comment> @clmtn said:

Type your comment> @DrinkACoffee said:

I’ m trying to get user.txt. I am logged in as admin in the console. Not sure what to do next?

One of the pages should contain some output that’s similar to a command used in Linux environments. Try see what it’s doing and whether you can change its behaviour.

got any thing?

I managed to get user but now stuck on ftp part.
found a server but doesn’t have credentials for this.

you can pm me we can work the rest of this together you want I havent found the f** but I am root and can redirect the traffic so I will need a nudge as well I am unsure about a few things if someone that rooted this or got this far can assist I am at the root@rtr1 and understand vt***

772

You remember the sound from JAWS ? when the shark is chasing the people carrier I am coming for your root lol! :slight_smile:

773

Ok guys quick question does this go as far as local_pref or as path prepending or are we just doing a simple sub prefix hi***k?

if that’s the case I wonder if just modifying the interface like a friend of mine on here was told and gave me the hint we are sort of working this together.

as in B** when you announce a prefix via a directly connected interface in quag** doesn’t that internally set the next-hop to our asn?

what I am wondering is do we have to do any pre routing modification or does that flag show up in that skeleton pcap once you redirect it I am just wondering how irl like this is

as I am working on some code to pull off this famous attack but I am a little confused on a few pieces can someone with more knowledge of b** contact me via pm so I can roll some non challenge related questions at you?

774

Can anyone help me with what to do next after login to web app . as i’m not able to find any parameter in burp while intercepting . some one please guie me i’m stuck .!!! :frowning:

775

Type your comment> @parteeksingh said:

Can anyone help me with what to do next after login to web app . as i’m not able to find any parameter in burp while intercepting . some one please guie me i’m stuck .!!! :frowning:

Continue searching, you are missing something.

776

Hi
Could someone help me with the initial foothold?
I think I’m on the right track but I just don’t get any login creds. I just want to know what I’m doing wrong.

777

Type your comment> @Fluxx79 said:

Hi
Could someone help me with the initial foothold?
I think I’m on the right track but I just don’t get any login creds. I just want to know what I’m doing wrong.

Recommendation: Enumerate until you get something.

778

Hi,I am stuck in the enumeration part. Is page and directory enumeration the way ? because it takes too long.

779

Hi, i just got the user.txt but i’m stuck on the root privesc , i try some enumeration on the network part , but that thing was overwhelming , can anyone redirect me the right path ??

780

Hi, I’m new to htb and trying my first box carrier. I’m stuck on how to get the reverse shell. Trying to parse Di***c page and I’m sure information is hiding behind qu and b**, but I have scratching my head since long how to proceed further. Please help!!!

781

Any tips on the root side. I have user and investigating the routing configs but without success so far.