@IteXss said:
hi mates, i have been trying to capture the intended packets for a while, but nothing seems to be working!!! can someone who already did it, give it a try to check if it is working?
Output it to a file and read it with another packet reading program on your local machine.
@IteXss said:
hi mates, i have been trying to capture the intended packets for a while, but nothing seems to be working!!! can someone who already did it, give it a try to check if it is working?
Output it to a file and read it with another packet reading program on your local machine.
@IteXss said:
hi mates, i have been trying to capture the intended packets for a while, but nothing seems to be working!!! can someone who already did it, give it a try to check if it is working?
Output it to a file and read it with another packet reading program on your local machine.
took me a few moments to figure out what i was looking at and a bit more verbose digging, but once i got it grabbing root was very simple. great box and a bit more LDAP knowledge i can use in the future
@0x41 said:
took me a few moments to figure out what i was looking at and a bit more verbose digging, but once i got it grabbing root was very simple. great box and a bit more LDAP knowledge i can use in the future
did you use ldap to get root? just asking as im going down another route?
This one was quite confusing for me, couldn’t have done it without the hints that I got. The flow just didn’t really seem to make sense to me. I’m gonna go back tomorrow and redo it starting from the beginning to see if it makes more sense now.
A couple issues I ran into:
You may need to visit a couple of the webpages a couple times in your local browser to generate that which you seek for access to a certain user.
If you’re having trouble cracking anything, try reinstalling your tool or looking for alternatives.
Always start with a small wordlist, don’t jump straight to rockyou if you can avoid it. Sometimes the string you’re looking for is simple.
For root specifically (at least the flag, I haven’t gotten the shell yet, one of my goals for tomorrow), when you’re looking at what you’re able to do, one of these things is not like the other. What can you do with that thing? It helps if you’ve completed Frolic.
@0x41 said:
took me a few moments to figure out what i was looking at and a bit more verbose digging, but once i got it grabbing root was very simple. great box and a bit more LDAP knowledge i can use in the future
did you use ldap to get root? just asking as im going down another route?
@Skunkfoot said:
This one was quite confusing for me, couldn’t have done it without the hints that I got. The flow just didn’t really seem to make sense to me. I’m gonna go back tomorrow and redo it starting from the beginning to see if it makes more sense now.
A couple issues I ran into:
You may need to visit a couple of the webpages a couple times in your local browser to generate that which you seek for access to a certain user.
If you’re having trouble cracking anything, try reinstalling your tool or looking for alternatives.
Always start with a small wordlist, don’t jump straight to rockyou if you can avoid it. Sometimes the string you’re looking for is simple.
For root specifically (at least the flag, I haven’t gotten the shell yet, one of my goals for tomorrow), when you’re looking at what you’re able to do, one of these things is not like the other. What can you do with that thing? It helps if you’ve completed Frolic.
Are you using Burp or your browser’s inspect option to view the data going between host and remote?
Got root and all, but I’m curious, how exactly?
‘It’ was blank, therefore shouldn’t be able to do anything special. I checked and blank means nothing, even with those ending flags. except that previous ‘it’ were removed. Surely I missed something.