Nudge for Root…I’ve performed usual steps for priv esc. Got few exploits too but they doesnt seems to be working well.
And what is that “information-rich” file which everyone is talking about. I didnt find anything special in my usual priv esc techniques…
EDIT 1:
Rooted the Box!
Feel free to PM me for querries 
Finally got root!
As a noob, I am beginning to love this space of pen testing. And special thanks to @clmtn, @LegendarySpork and @egotisticalSW, I am learning a lot!!
Rooted
Box is really nice because i first time faced this type of vulnerability.
if anybody needs hint ping me personally.
Can I get some help please? I’ve enumerated using dig and see subdomains. I’ve edited my host and resolv file and cant reach any pages? I don’t know what i’m doing wrong?
Can I PM some one? now i find a place upload file,but can’t get the file ,or i stuck into a rabbit hole?
pm me pls…i m stuck at a point…need some help
Hi mates, have enumerated 53, see domains, edit my resolv.conf for new DNS server and cant get any of new domains. Is this supposed to be like this or just my PC issue?
Hi,
I identified the proper file to proceed with priv esc, but still getting an error when using it. Can someone give me a hand on this?
PP
Hey, Could someone PM for a nudge? Stuck with the ti****mp param and how it works.
Cheers!
Really liked this machine in regards all enumeration steps and how to link everything together. As the other folks already stated, enumeration is the key and from my perspective, it’s harder to get the user than the root
Stuck at dashboard/upload part…
can’t seem to figure out the upload dir nor what this timestamp has to do with it. Any PM/Hints would be appreciated :).
Type your comment> @Rucker said:
Hi mates, have enumerated 53, see domains, edit my resolv.conf for new DNS server and cant get any of new domains. Is this supposed to be like this or just my PC issue?
Same here! Yesterday it worked, and got the popcorn gif, but today i tried to access i got connection refused! 
Type your comment> @chojin said:
Stuck at dashboard/upload part…
can’t seem to figure out the upload dir nor what this timestamp has to do with it. Any PM/Hints would be appreciated :).
Same here! Need a nudge. Please PM me.
A bit stuck on the initial foothold on this one. I’m at the LFI step, but can’t seem to find the file I uploaded. Would someone PM me a nudge?
Edit: Got User. Still Struggling with Root
Edit 2: Rooted. PM if you need a nudge and special thanks to @EXC3L, @takeiteasy, and @BigDaddy for the assistance.
Darn… overlooked it 100 times. Got user… next up . root
cannot put the d********.php clue and the upload function together. so stumped. if anyone has a minute for a pm i would appreciate it. i’ve done a lot of dns enumeration and tried uploading to another location too, still just not putting it together.
At last, rooted, privesc is by far more intuitive and realistic.
User is fine-ish, but some parts are just a bit too CTF for me, there’s some quesswork involved, but is managable. Most imporatantly don’t give up and don’t go too deep if you’re not sure that your approach is not a rabit hole, you’ll spare yourself some time.
If anyone needs help getting user/root feel free to PM me, happy to help.
Box was awesome, learned some new tricks and had a great couple of days figuring out things I overlooked to easy. Well created @askar !
Usered without any hints from here. Easy.
Do not confirm that you cannot get root from www-data,
“Look Around” technique helped to get root from www-data.
Anyone about to go over some syntax ?
I can see exactly what has to be done, its obvious but I’m missing a slash or a question mark i believe
Edit - If an upload is too simple it wont register