Magic

HTB Content Machines
202

Type your comment> @solid5n4k3 said:

root@ubuntu:~# whoami
root
root@ubuntu:~# id
uid=0(root) gid=0(root) groups=0(root)
root@ubuntu:~# ifconfig | grep 10.10.10.185
inet 10.10.10.185 netmask 255.255.255.0 broadcast 10.10.10.255
root@ubuntu:~# hostname
ubuntu
root@ubuntu:~#

But root flag doesn’t work :frowning: .

lol :joy:

203

When I upload any file(that was downloaded from Magic too) I get message “Sorry, only JPG, JPEG & PNG files are allowed”
How ca I bypass it? What it means?

204

Type your comment> @fr0ster said:

When I upload any file(that was downloaded from Magic too) I get message “Sorry, only JPG, JPEG & PNG files are allowed”
How ca I bypass it? What it means?

sounds like your uploaded filename has the wrong file extension, or none. i.e. image.png

205

Type your comment> @applepyguy said:

Type your comment> @fr0ster said:

When I upload any file(that was downloaded from Magic too) I get message “Sorry, only JPG, JPEG & PNG files are allowed”
How ca I bypass it? What it means?

sounds like your uploaded filename has the wrong file extension, or none. i.e. image.png

I tried JPG, jpeg, JPEG, I tried own file and file from Magic site and got error message any way

206

Spoiler Removed

207

Spoiler Removed

208

if anyone need tips hit me up, going through it again to make a cleaner write-up

I will keep the hints generic

209

why am i getting almost always the ‘what are you doing there’ alert? (with burp)
i am confused.
starting to think i may not be on the right track.
anyone?

210

@fr0ster said:

What is right extension? Is jpeg wrong extension? and I use real JPEG file.
I think it’s depends from bypass login way
I use admin and cheater password.
I didn’t find how bypass over login field yet.

It might help if you have a solid bypass of the login.

When you do, there are a couple of checks on the filetype.

211

@Rayz said:

why am i getting almost always the ‘what are you doing there’ alert? (with burp)
i am confused.
starting to think i may not be on the right track.
anyone?

You might need to modify what you are doing to prevent it saying that.

212

So, I finally kind of got root. Read the flag, & my shell prompt changed to root@ubuntu, but my shell isn’t interactive. grrrrr.

soooo close.

213

i think this box might be anti-burp or something…
wtf!? :blush:

214

Spoiler Removed

215

@Rayz said:

i think this box might be anti-burp or something…
wtf!? :blush:

Good job you dont need burp :smile:

216

Spoiler Removed

217

@jiggle said:

So, I finally kind of got root. Read the flag, & my shell prompt changed to root@ubuntu, but my shell isn’t interactive. grrrrr.

soooo close.

There is another comment here where the root shell appears to be root@ubuntu - that is significantly different to the root shell I got.

218

Type your comment> @TazWake said:

@jiggle said:

So, I finally kind of got root. Read the flag, & my shell prompt changed to root@ubuntu, but my shell isn’t interactive. grrrrr.

soooo close.

There is another comment here where the root shell appears to be root@ubuntu - that is significantly different to the root shell I got.

Interesting.

I’ll keep at it…
thanks

219

Spoiler Removed

220

Spoiler Removed

221

Spoiler Removed