Can someone that managed to format properly the cookie gives me some help to pass the right cookie? Receiving: Dummy undefined + undefined is NaN then I am listening on kali on the same ip and port of celestial server but nothing gets connected.
I can see the file changing every X but I can’t seem to find the job that is changing it.
First box ever here –
I have a really simple question related to nc with my network setup, would anyone be available to PM me?
I have:
- Identified the port/service
- Found that article
- Generated that payload
- Edited the required information in burp
- Sent it off, still not nc connection
Many thanks from a noob.
I’m having the same issue @xnumber7 even though I got user last night, I can’t get that foothold again so I can work on privesc
It’s been going down a lot today. As long as you use a tool to capture the way you got the foothold initially you should be able to repeat it every time.
I keep getting booted off whilst I try to figure out the privesc.
i got a shell… theres no user.txt in ~ even after reset. is it supposed to be that way?
So I finally got root. That box is a battle! So many people killing the service with exploits, so many people trying to privesc at the same time.
Apologies to whoever was trying to privesc at the same time as me. I think we kept editing each others script.
i was over thinking this box way too much… got root 
I need to start keeping better notes, I came in here to say I could lend a hand but I genuinely forget exactly what was going on in this machine, hah.
i got a shell… theres no user.txt in ~ even after reset. is it supposed to be that way?
It’s not always the case that theuser.txtis in~. I’ve seen cases where the file is located in~/Desktop/or~/Documents/. I think it’s just thatuser.txtwon’t be anywhere too far away from~.
If anyone needs a little nudge, feel free to PM me
okay so edited the file and got the root shell. can someone pm me/reply what actually triggered the file? still kinda confused
@mxchai said:
If anyone needs a little nudge, feel free to PM me
btw got it. thanks!
i need little bit help with priv esc …i found python script and txt file in home dir
@eransh10 said:
Ok - first - this may be a spoiler so take it into consideration.
Now - I managed (using burp suite) to fin the following: “username”:““,“country”:”“,“city”:”“,“num”:””
Question is - where do I enter this username and these creds? ?
i have this,but now what,i thnik i have the id,now how i can send this to the request.
I have the Json,but now what?,can i send this with bursp?
Need help with the Payload! Please PM me.
@Pisedoff @Killll Just type on google Node JS exploit ,you will found a good resurse ,and try to use a python tool for regenerate payload
After getting the user flag I am struggling to stay connected to Celestial server. Is there anything I can do to improve stability on my my connection with this ■■■■■■ server?