Magic

HTB Content Machines
61

Thanks @TRX for this box.

Relatively easy one Both user and privesc require extensive enumeration.

Some tips (hopefully doesnt spoil much):
User: fool the webserver with the asset you are offering to him.
Root: your ‘gang’ is more powerful than you think

62

Stuck after www, I am wondering is it the same way I’ve done to the server but do it reversely.

63

I am stuck at the login page. any hints pls.

64

as someone has mentioned before, no need to bruteforce. think how you could bypass the login page

65

Type your comment> @b3nn said:

Type your comment> @b33lz3bub said:

I uploaded the file but can’t find my file
any hint?
does it show up on the main page? if so then you’ll be able to tell where it is…

I got the shell

66

If you’re struggling to find out where your files are uploaded to, go back to the beginning and start again. You will find what you’re looking for.

67

I’m so happy to finally do an easy-ish linux machine. I only had windows machine left, I which, although I must learn, are not as enjoyable as linux. So a couple hints

Foothole

  • Quite easy, don’t be too clever. I mean, no need for big machines, simple manual work should do it. Back to the basics really.
  • Once you’re in, now you need to be clever. Now you can look for scripts online, Remember your mythology lectures

User

  • Standard enumeration, look carefully.
  • Upgrade you terminal or you might miss it.

Root

  • Again enumeration, it’s not that obvious, but something should stick out, and it is this thing.
  • Remember how linux does first when you type ls or cd.

I hope this is not too much, if it is. pm me, and I’ll remove what’s too much. If you are still stuck guanicoe on discord, if you can find me :wink:

68

why my uploaded images deletes? if anyone delete its really annoying pls dont do it

69

TCP and UDP scan done, enumerating the website I found a login portal but even I downloaded the source code I and read it I am totally stuck at this point. Am I on the right path? Any hints please.

Edit~ login panel exploited. Thanks to @FunkyMcBeef for the useful suggestion.

70

is the apache server the way to root?

71

Some help will be greatly appreciated!!
I have bypassed the login page, but I can’t seem to find anything else. I have started to believe it is a rabbit hole?

72

Just rooted… Easy one, but pretty funny.

73

Thanks @TRX, that was a nice experience.
kudos to @sh0wa for a little nudge that put all pieces of this puzzle into the right place.

foothold: don’t follow blindly to a new location.
user: roughly the same as a foothold with a bit of creativity.
root: is a waaaay easier than you think. access rights, command, built-in functionality do the math.

74

Finally rooted, thanks to a little help from @sh0wa.

foothold: Its one of the first things that you normally test when you get it (I had to do it manually as the tools I used didn’t see it, no brute force is needed)

user: enum, enum, enum
root: Find what is special and stay on the right path :wink:

75

i can upload the shell by copy with a image, but how to trim filename shell.php?

76

I’m stuck with uploading files to the server…any help will be appreciated

77

“What are you trying to do there?” while trying to do magic :confused:

78

@GSock14 said:
Some help will be greatly appreciated!!
I have bypassed the login page, but I can’t seem to find anything else. I have started to believe it is a rabbit hole?

I, as well, bypassed login page. Im trying to follow the steps that defacers use :wink:

79

Spoiler Removed

80

Rooted. Fun and easy box. But i made it far difficult than it should be. Tip for root, remember that good old trick? pm for nudges