Carrier

I’m root…where is root.txt?

OK. User was pretty easy… But I need some help on getting out of it.

I see the interfaces, I think I know what to do but a hint on which network services or what network techniques I should use/know would be awesome.

If someone can nudge me in the right direction I would be glad.

Oh man, I can’t seem to catch a break on this box. It’s being hosed by so many people at once it just keeps falling over. I just want to get root!!! Please let me have 5 mins to try what I want to try!! :frowning:

Finally!!

Took me a few days to root this bad boy, partly due to refreshing my knowledge and because I was on the free subs and just couldn’t compete against people spaffing the server constantly. Nice box though really enjoyed working on it.

Can anyone PM me about where to go after editing b*** file ??? I am stuck and can’t find out what am I supposed to do for the root flag (I have described earlier what I have already tried to do).

ok this system is kicking my arse, I really need some type of nudge… anyone…

#Finally!!

Took me a few days to root this bad boy, partly due to refreshing my knowledge and because I was on the free subs and just couldn’t compete against people spaffing the server constantly. Nice box though really enjoyed working on it.

So to update again I have used vt**h to write the modified conf but I do not see traffic on the pseduo interface of eth0:4 I created am I on the right track or just lost I can share my attempts and the results I have if someone wants to give me a hand

anyone give a nudge on what to do once I have access to the admin page? I see the vuln service, but not quite sure about next steps.

Type your comment> @clmtn said:

Type your comment> @DrinkACoffee said:

I’ m trying to get user.txt. I am logged in as admin in the console. Not sure what to do next?

One of the pages should contain some output that’s similar to a command used in Linux environments. Try see what it’s doing and whether you can change its behaviour.

got any thing?

I managed to get user but now stuck on ftp part.
found a server but doesn’t have credentials for this.

I understand I need to get to the f** server but I’m unsure how I can do that. Any hints would be greatly appreciated I’m not too familiar with networking

Thanks in advanced

Type your comment> @laxudope said:

Type your comment> @clmtn said:

Type your comment> @DrinkACoffee said:

I’ m trying to get user.txt. I am logged in as admin in the console. Not sure what to do next?

One of the pages should contain some output that’s similar to a command used in Linux environments. Try see what it’s doing and whether you can change its behaviour.

got any thing?

I managed to get user but now stuck on ftp part.
found a server but doesn’t have credentials for this.

you can pm me we can work the rest of this together you want I havent found the f** but I am root and can redirect the traffic so I will need a nudge as well I am unsure about a few things if someone that rooted this or got this far can assist I am at the root@rtr1 and understand vt***

You remember the sound from JAWS ? when the shark is chasing the people carrier I am coming for your root lol! :slight_smile:

Ok guys quick question does this go as far as local_pref or as path prepending or are we just doing a simple sub prefix hi***k?

if that’s the case I wonder if just modifying the interface like a friend of mine on here was told and gave me the hint we are sort of working this together.

as in B** when you announce a prefix via a directly connected interface in quag** doesn’t that internally set the next-hop to our asn?

what I am wondering is do we have to do any pre routing modification or does that flag show up in that skeleton pcap once you redirect it I am just wondering how irl like this is

as I am working on some code to pull off this famous attack but I am a little confused on a few pieces can someone with more knowledge of b** contact me via pm so I can roll some non challenge related questions at you?

Can anyone help me with what to do next after login to web app . as i’m not able to find any parameter in burp while intercepting . some one please guie me i’m stuck .!!! :frowning:

Type your comment> @parteeksingh said:

Can anyone help me with what to do next after login to web app . as i’m not able to find any parameter in burp while intercepting . some one please guie me i’m stuck .!!! :frowning:

Continue searching, you are missing something.

Hi
Could someone help me with the initial foothold?
I think I’m on the right track but I just don’t get any login creds. I just want to know what I’m doing wrong.

Type your comment> @Fluxx79 said:

Hi
Could someone help me with the initial foothold?
I think I’m on the right track but I just don’t get any login creds. I just want to know what I’m doing wrong.

Recommendation: Enumerate until you get something.

Hi,I am stuck in the enumeration part. Is page and directory enumeration the way ? because it takes too long.

Hi, i just got the user.txt but i’m stuck on the root privesc , i try some enumeration on the network part , but that thing was overwhelming , can anyone redirect me the right path ??

Hi, I’m new to htb and trying my first box carrier. I’m stuck on how to get the reverse shell. Trying to parse Di***c page and I’m sure information is hiding behind qu and b**, but I have scratching my head since long how to proceed further. Please help!!!