Any hints for root? I’ve got a shell and I think the m*******d files are what I want, just not sure how to get anything from them…
I’ve got the c*.key using $t***o…tired to generate a certificate didnt get it right…also tried to login using ssh with the key no luck so far every user promts a password am i in the right direction…someone pls pm me with a hint
Can someone give me help with creating the cert?
Could you give me hint about https PM
When I switch on Burp I see
“Sorry, but you need to provide a client certificate to continue.”
Without of Burp I see PR*** ***A
I tryed to use FireFox, FireFox developer, Chromium, but have a same problem
User ok 
very funny !!
Any tips for the root?
Got user.txt and root.txt!
Thanks to @LeziEEEEEEE that helped me with the root part!
I’ve learn a lot from this machine, more about the user part and how to use o***l and the ct, and a little thing that I didn’t know about the linux permissions.
Here some tips:
-
user.txt: just enumerate well a service and use your googlefu. Then move to another service, a couple of simple trick and voilà! You will obtain the user.txt and… something juice
-
root.txt: it’s very easy, hidden in plain sight
PM me if you need assistance!
@Kinjo said:
Use echo with -n flag to code … in case you want to code something of course
Thank you!!
I learned that paying attention to detail was important with this - especially generating the ct with ol - checking what the site is expecting from names is important. For root - thanks to @KaiserPhoenix for the tip - I didn’t realise what I needed to about permissions. I probably made my solution more complicated than necessary but learned more about N.js on the way.
Thanks to @thek for the box - I guess I should now watch the series.
@hostilenode said:
The box was mostly stable, other than the issue with having a \n during the LFI stage bringing down a service.
Oh that’s what I’ve been doing wrong. My apologies everyone. And I’ve maxed out my resets for the day! Added -n to my script but now waiting for HTTPS to come back up.
w00t w00t
Finally rooted. Root will be easy if you will enumerate properly and will not think much
@J4rvis said:
guys any hint? stuck at $***** and the box is freaking unstable
Hi, Really stuck on this, any hints please?
alright, got it, it was living ■■■■ for me, I learned a lot about SSL and bash scripting in the meantime.
Credits to @KaiserPhoenix and @Kinjo for really helping me out on that root access, without your tips I’d be lost, thanks guys
And another thanks to @wat3r, dude you’re like a Keanu Reeves of hackers, skilled, humble, patient and kind - thank you man!
tips;
user: when you get to the “torrent” dir click on things and look at the links, there are two kinds of them, you need the other kind to get the two things you want, one you already know about the other will come to you when you look at the nmap output.
root:
it’s all in front of you, you don’t need to go anywhere to get what you want. And by the way, don’t you find it annoying that everything in life is so repetitive? e.g. jobs.
Hey guys, so I’m trying to priv esc at the moment.
I’ve found the cn j and I can get a shell back by making my own m********.*s file.
The problem is I’m getting the shell as the n****y user. I’m not sure how to proceed now assuming that this is the correct path to priv esc.
Could anyone give me a hint on this?
Thanks
Edit: nvm got it
Guys i m a bit lost at the $t****. Can someone please pm me to give me a nudge?
I’m late to the party but got root and user and I will try to help someone if you are just now getting around to this box. Msg me.
any hints dm me thanks
Can anyone pm me bit hints . 
May i know what to do after reading code in $t**** . i mean i know help is there but not able to think more. should a make key or something