The clock synch. was a pain in the !@#$%
After that, it was very easy to root!
Edit: It seems that there is another solution for this box, which seems interesting. I would love to see the other solution for the initial foothold from the other port. So if someone did it, I would appreciate a PM.
Not sure about other port.
Did anyone reach to something from apache? even common directory bruteforcing is not working
I did get some interesting directories. Working my way towards RCE.
Good, any hints?
help… XD
Anyone has luck on axx end ?
@D4Vinci said:
Good, any hints?
Usual directory listing, try other list if yours is not getting any. For me the usual classic has never gone wrong.
@Malone5923 said:
@D4Vinci said:
Good, any hints?Usual directory listing, try other list if yours is not getting any. For me the usual classic has never gone wrong.
yup I got a directory and started working on getting a shell now 
I know where to upload my shell, finding it and executing it is the problem. The exploit to find it isnt working.
@Malone5923 said:
I know where to upload my shell, finding it and executing it is the problem. The exploit to find it isnt working.
same boat
And @buckley310 gets first blood. Congrats man.
Cant get passed the C**F check when uploading the shell.
Edit: Whoops, forgot a port in my scan as I went straight to port 80 lol.
Dont reuse posts @vanquish
brb kms if it was about using the “right” wordlist
EDIT: user is tricky.
I managed to find whatever I upload… but I’m starting to have a feeling it is a rabbit hole…
Sooo… is it?
This box is surprisingly tricky! Love it!