This is slightly odd, but has anyone run into an issue with killing the HTTPS service when attempting LFI?
I learned a lot from getting user! Like many, I overthought root. hours of work for a couple minutes of effort.
Stuck on the privescā¦never really encountered cr** j**s before, so any pointers would be very welcome
user ā done
ssh shell ā done
Thanks for @tehmoon and @r0t13weiler for help
Now for root
@ixxelles happy to always help congrats 
So I believe Iām very close to successful privescā¦ Have an easy in back into the box with the P user, 95% sure which file is the one I need (based on permissions), but Iām at a loss of how to use it.
@lattethunder if you think of permissions your going to lose track just focus on the file type
Anyone here can help me? I have been trying to use ***0 port for exploiting but then after some time it automatically closes and then i have to reset the machine to be able to do so again! Any one who has faced this issue and can tell a solution?
Type your comment> @hostilenode said:
This is slightly odd, but has anyone run into an issue with killing the HTTPS service when attempting LFI?
Use echo with -n flag to code ā¦ in case you want to code something of course 
Spoiler Removed
Type your comment> @r0t13weiler said:
@lattethunder if you think of permissions your going to lose track just focus on the file type
Rooted! Stumped me for a while but some much needed hints from @r0t13weiler got me going in the right direction. This community is awesome.
@ixxelles said:
@Kinjo said:
@hostilenode said:
This is slightly odd, but has anyone run into an issue with killing the HTTPS service when attempting LFI?
Use echo with -n flag to code ā¦ in case you want to code something of course
Or use wellnow online service for encode in base64
Ah ā ā ā ā āt. I had used websites like that in the past but was using the command line this time. I hadnāt thought about the need of the -n flag on echo.
I ended up working around the issue with a symlink, but Iāll try it again tonight just with the more straightforward LFI.
Thank you both.
Rooted. Fun box, learned some things. Everyone advised me to use p**y tool, but Iāve done it without it. It took about 5 minutes. You can pm me for tips
Hi! Iāam stuck. I got c*.k**. Try to create client ct and sign it with c*.k. Import cert in firefox. But site show client cert error. Could you give me hint? Maybe i use not correct parameters for csr (for location i use $****o)?
Type your comment> @pinnn said:
Hi! Iāam stuck. I got c*.k**. Try to create client ct and sign it with c*.k. Import cert in firefox. But site show client cert error. Could you give me hint? Maybe i use not correct parameters for csr (for location i use $****o)?
PM me iāll help you ā¦
can anyone DM me about this box, Iām stuck at web page?
Thanks @ghost0437 for hint with c*.*** It was the most difficult user for now, lets see what will be next Trying to get a bash shell and then root. Any hint with shell?
PM me if help needed with user.
So many rabbit holes on this machine! Played two days to visited them all.
Hint for User: It is unusual, but Burp may be you Enemy.
Hint for Root: Kill your Enemy and born your Friend.
I donāt understand ppl who talk that root is not about privileges, it is all about privileges of the home directory rather than files!
@Calvo thank you for the last hint and everybody for help!
Root was pain in my ā ā ā !
Iām available for help, just PM me
Fun box overall (if you can get past itās instability). For the life of me, I canāt figure out why itās so bad.
Small suggestion for root: when you edit files, think about what program uses them, and how you can edit them in a non-destructive way; also, mind the file syntax; and donāt go on the assumption that the shell is bash.
Thank you @thek for this one.