Chaos

Morf · January 22, 2019, 3:54pm

Sjoe!!! Where to I start. I finally got ROOT!!!. I wish to say thank you to each and everyone that helped/ nudge or advise me on the box. This was an excellent learning curve. The Motto: Try Harder !!! is so true. Thanks again to everybody’s input

Morf · January 22, 2019, 3:54pm

Sjoe!!! Where to I start. I finally got ROOT!!!. I wish to say thank you to each and everyone that helped/ nudge or advise me on the box. This was an excellent learning curve. The Motto: Try Harder !!! is so true. Thanks again to everybody’s input

bkasrnyr · January 23, 2019, 1:50pm

can anyone help me with the user i have got the w**ai creds but not able to find anything else after that any help would be appreciated

bithoveen · January 24, 2019, 2:51am

I was able to write the decrypt function, I verified by encrypting a file I created and then decrypting it, however when I try do decrypt the actual file I need to decrypt, I’m just getting a bunch of gibberish. Not sure if I’m not decrypting the right stuff? Any Hints?

sabadu · January 24, 2019, 5:30pm

@bithoveen said:
I was able to write the decrypt function, I verified by encrypting a file I created and then decrypting it, however when I try do decrypt the actual file I need to decrypt, I’m just getting a bunch of gibberish. Not sure if I’m not decrypting the right stuff? Any Hints?

Assuming the decryption script is right, are you using the right password? read the draft.

FalconOnRails · January 24, 2019, 6:56pm

Finally rooted! Very interesting box. Learnt a bunch of stuff along the way.
Feel free to PM for a nudge
Fałcøn#8004 on discord.

Badge

epsequiel · January 25, 2019, 5:08pm

Got root!
It was a fun box. Made me learn python crypt libs and sopmething else.

zuk3y · January 25, 2019, 8:17pm

Priv esc was the only interesting part of the box.
It’s not as straightforward if you are doing it for the first time.

Root Tip:

Enumerate the place you found user.txt hard.
For the only service you havent been able to get into yet, think how a lazy person generally logs in and exploit it with above.

Folks bashing their heads on the wall over this box, DM.

SANIWA · January 26, 2019, 2:50pm

Hello, I successfully found creating a certain file in the site, but I am straggling how to exploit it. Could someone kindly give me a hint about it?

daveimm · January 26, 2019, 10:30pm

edit : I am able to view the contents in w-----il however I am not able to move forward… any nudge will help… do I need to use GUI to get more info from *****il…?

B0rN2R00T · January 28, 2019, 3:00pm

Rooted Box

Initial foothold may take time cause things are easy & staring at your face.
We are just overlooking at it. At every step hint is just on your screen you just have to question everything you see.
Initial shell is kinda new to me but google-fu & burp will surely help you out.
User is easy if you remember things you seen before and require some advance level of breaking skill quite easy but advanced xD.
Root is surely different than other boxes just remember question what you see

Box is time consuming & not very realistic but you’ll learn lot of new tricks and that’s what matter most

If you still need a hand PM me
Thanks @sahay

pp123 · January 28, 2019, 11:24pm

Hi,

I am able to get RCE, but still no way to get a proper reverse shell. I tried one command that allow me get a shell, but I was not getting responses to any command I entered. Later, I found that commands entered to that shell were sent to the pdf file. Could anyone please give me a hand in this part?

PP

sl1cer · January 29, 2019, 3:07am

I just don’t get root. I see the thing we use every day. But no idea what to do with it. Is there supposed to be creds?

Rooted2u · January 29, 2019, 8:51pm

Hi, can anyone give me a nudge on the next step after decryption? I can’t find the *** service… Thanks!

peek · January 30, 2019, 3:51pm

@Rooted2u said:
Hi, can anyone give me a nudge on the next step after decryption? I can’t find the *** service… Thanks!

you have a path in the decrypted output, service is in front of you

humurabbi · January 31, 2019, 12:12pm

stuck after getting ww* shell . Can anyone give me a hint Thanks
Edit: Solved

panknoob · January 31, 2019, 1:34pm

I am stuck at www shell.Don’t know what to do next.I tried a lot to get user.txt but not successful and also checked all the directories,folders,sub-folders everything but didn’t get user.txt.Its my first ever machine that’s i don’t have any idea how to get user.txt and root.If anyone can teach these new things please pm me.I want to learn new things.

edited:- thanks @clmtn got user.txt but don’t know how to root please teach me anyone.I tried to find something suspicious in hidden folder but didn’t get anything.Please give me any hint what to do next in hidden folder please .

sanre · January 31, 2019, 8:26pm

Rooted. I’m interested about your imap approaches! DM me if you’re willing to share.

EthicalHCOP · February 2, 2019, 9:45pm

any hint ??

i found this “http://./J00_****_f1_****_H3”

some idea ?

UPDATE:
was missing the //** file

any hint about RCE ?

chford · February 3, 2019, 4:08pm

Hi,
Could someone give me a hint for the decryption part ?
I tried a lot of things , google search for python code, openssl enc commands but that doesn’t work “bad magic number” or couldn’t execute properly the py file…
Thanks!

solved !