Curling

nutss · November 12, 2018, 11:16am

Spoiler Removed - egre55

Sc4v3ng3r · November 12, 2018, 1:07pm

@nutss said:
Hey guys can you give me any hint? I don’t know how to get a reverse shell without change the index.php file, I created a new shell.php file with the joomla admin painel, but when I try to acess it in the browser it returns me error 404. For example http://10.10.10.150/shell.php returns me error 404.

Thanks for your help! Feel free to PM.

PM’d you

vlstv · November 12, 2018, 3:05pm

cool easy box!

Gh0st3xp101t · November 12, 2018, 6:08pm

I’ve got a user shell but I can’t get root, any help would be very much appreciated!

poe · November 12, 2018, 9:42pm

Hi all,

Would any mind mind giving me a hint? I’ve got a php shell running and see (but not open/copy/cat) user.txt, I have a copy of P*******_B****p but can’t figure out how to decode it. I’ve tried hex to Base64, hashes, etc. but no luck. I have the MySQL password too.

Amzker · November 13, 2018, 1:26am

@Gh0st3xp101t said:
I’ve got a user shell but I can’t get root, any help would be very much appreciated!

Open other directory
ad***rea
??

Nirkeh · November 13, 2018, 3:33am

Got user, in the ad*rea trying to figure out what to do with the information from the files, thinking its something to do with jn and **rl, any pointers in DM much appreciated.

Kranti826 · November 13, 2018, 6:28am

Finally got the root flag for this amazingly simple yet tricky box … thanks to @MrBlackHat and @f1ndm3 for helping me out !!! Need help, PM me \n/

Sc4v3ng3r · November 13, 2018, 7:11am

Got the root flag, thanks for the nudge in the right direction @TazWake and @LordeDestro

401Unauth · November 13, 2018, 9:51am

Gah was cracking it the wrong way

Sv5 · November 13, 2018, 9:54am

@Sc4v3ng3r said:
Got the root flag, thanks for the nudge in the right direction @TazWake and @LordeDestro

You got this brooooooooooooooooooooo

Gh0st3xp101t · November 13, 2018, 11:25am

@Amzker rooted

Amzker · November 13, 2018, 11:30am

@Gh0st3xp101t said:
@Amzker rooted

Yes i Already Rooted

atxxx · November 14, 2018, 12:11am

User done… onto root Feel free to drop me a pm with any queries

Amzker · November 14, 2018, 1:59am

@mezcla said:
stuck on initial Exploitation , found s*****.txt + cracked it.
No success @ loging in
Any hints please?

I Think It’s Not Spoiler

#why Not login

wrong username
in password you forget one symball!

AlexanderNagy · November 14, 2018, 9:39am

Please someone PM me a hint regarding the priv esc, keep hitting walls. I found In_pt and re_ort files and figured out that I need to use c_r_ but didnt find any useful in man pages.

gregX01 · November 14, 2018, 10:09am

Anyone who got the root shell, not just the flag, I would love a hint

bitlyfe · November 14, 2018, 2:25pm

I feel like the biggest noob, and I seriously need a hint before I run out of keyboards to smash. I’m pretty sure I can write up the entire source code by memory at this point. Obviously found the S*****.txt. I’m still stuck on getting admin panel creds, grateful for any tips!

Amzker · November 14, 2018, 2:35pm

@bitlyfe said:
I feel like the biggest noob, and I seriously need a hint before I run out of keyboards to smash. I’m pretty sure I can write up the entire source code by memory at this point. Obviously found the S*****.txt. I’m still stuck on getting admin panel creds, grateful for any tips!

Try To Read Artical
You get Who Writed

bitlyfe · November 14, 2018, 2:43pm

@Amzker said:

@bitlyfe said:
I feel like the biggest noob, and I seriously need a hint before I run out of keyboards to smash. I’m pretty sure I can write up the entire source code by memory at this point. Obviously found the S*****.txt. I’m still stuck on getting admin panel creds, grateful for any tips!

Try To Read Artical
You get Who Writed

Wow now I feel dumb… Got it now, thank you!