So ive found a userlist,
Theres also a popular service running, found via s****t
Can anyone point me in the right direction for hints on the foothold?
Lovely box. Thanks!
Nice. Finally over.
I’m stucked to root it.
I already reversed the trder and found nothing. I also reversed the myc binary and I found that the lsl**.so is incomplete. I know that I cannot use L*_PR* nor L*_LI* to escalate privilege (anyway I tried it, but it didn’t work).
I also noted that the lig was replaced and it’s a s file. But I try to use the [g]old trick changing the P and the result was a non-privileged shell.
Any hint?
Cheers
This was the most crazy machine I ever did. actually learn a lot at user and root.
thanks @snowscan
Fantastic box. Great fun getting root.
any help with priv esc appreciated
Nice box! I learned a lot about a couple of different technologies with this one. Apart from the trolls I think this was actually fairly straight forward, just a matter of understanding the technologies involved, reading the man pages and figuring out which documented and undocumented commands or arguments will help you. Happy to help through DM if you are stuck.
Phew, got root. Awesome box @snowscan, I always enjoy a box with a bunch of steps. Plus I always enjoy learning about stuff I’ve never come across before.
initial foothold…?
Have been running hydra against some list for days now. Not getting creds for p:80 and can’t Firefox does not allow me to set cookies for p:8080. Can someone please PM me with help on better word lists to fuzz with? Many thanks in advance.
Got root, learned a lot trying different things. Also very challenging, couldn’t get burp intruder to work correctly, but found another way 
Hi there,
I am struggling to get past initial foothold.
Already downloaded file and extracted results, but no idea on what to do.
On web, i really don’t know what can i do. SQLi? Bruteforce? What are cookies?
Could someone PM me with directions?
Cheers
Amazing box, thanks @snowscan I learnt a lot from this one. Could anyone who got root by altering something DM me to clarify how exactly it works? I get whats happening but am confused by some details…
I found several articles that explained parts of the process and was able to exploit it using these as a guide; however some of the things mentioned don’t appear to make a difference to the execution. I’m redoing it now and trying to find the simplest working exploit to weed out the unnecessary bits.
Cheers in advance.
Most challenging box for me
But finally completed it
If anyone need help feel free to pm.
@zz123 said:
Most challenging box for me
But finally completed it
If anyone need help feel free to pm.
I pm’d you
Such a great learning experience! I didn’t like the user part (at first), but then I had no problem finishing it. Privesc was also very interesting and original, and something I learned a lot from!
Got it. Parts of user were too contrived/CTF-like, but root was pretty interesting and certainly a useful technique.
Am i supposed to brute force directories or am i missing something? The other website shows a cookie not set error. Any hints to get past this?