Type your comment> @jkana101 said:
Rooted. An OSCP-like box. Recommend for who gonna have OSCP exam
well this explains why I failed then 
jokes aside, IDK. stumped on user > 2nd user but i know what i need to look at. that part and the initial foothold exploit does seem OSCP-like but i doubt OSCP would require this much searching (or, likely, iām doing it in an inefficient way.)
I would be really happy if someone could PM me with a little nudge. Iām going crazy here. 
I have found the magic page and used some of the info there which works, but after that Iām in trouble.
Can someone PM me im on the dev page and found the tool to use on it but not sure how to get past this point. I donāt want to spoil too much and iām not sure whatās considered a spoiler bc foothold was straightforward.
Pheeewww, finally rooted. The 2nd user was a bit trickyā¦
can someone pm me a nudge after the la****l exploit iām stuck here for 2 hours
Would someone be able to nudge me? I know where i need to change a value to escalate my privilege on the website but I have no idea how to go about finding the correct value to use, nor how to properly enumerate. I tried burp intruder but only received a bunch of errors.
Iām also curious as to whether the site should look broken? None of the links I click work correctly, not even logout. I have no idea if itās intentional or not.
Nice box! Donāt forget to update your enum scripts.
I am having issues with http://academy.htb/ . It keeps saying server IP can not be found. Is anyone else facing this issue?
Type your comment> @zedgell said:
I am having issues with http://academy.htb/ . It keeps saying server IP can not be found. Is anyone else facing this issue?
Try putting āacademy.htbā and the ip in your hosts file
@panicfox said:
Would someone be able to nudge me? I know where i need to change a value to escalate my privilege on the website but I have no idea how to go about finding the correct value to use, nor how to properly enumerate. I tried burp intruder but only received a bunch of errors.Iām also curious as to whether the site should look broken? None of the links I click work correctly, not even logout. I have no idea if itās intentional or not.
You donāt need the links, just pay attention to the registration and auth mechanisms. Open the hood and go through the whole process, when you find it it should be obvious what number to use.
Type your comment> @sx02089 said:
Nice box! Donāt forget to update your enum scripts.
You know, I think about that a lot, and then I donāt end up doing it until I reinstall the OS or VM. It would definitely be a good practice to update more often, haha.
Rooted, PM for hints, although this thread has a bunch of them already 
Someone give me a nudge please.
I changed a param by burp, and it took me into a special page, throught that page I saw souce code error messsages and some important information, but I donāt know what should I do next. Thx.
Can someone help me with the inital foothold? I got into the āsecretā page and saw some interesting info, researched some things and tried some exploits with no luck.
Could someone pm me pls?
@hashtagdeg said:
Someone give me a nudge please.
I changed a param by burp, and it took me into a special page, throught that page I saw souce code error messsages and some important information, but I donāt know what should I do next. Thx.
Try to find out more about what you see 
@LiamKRP said:
Can someone help me with the inital foothold? I got into the āsecretā page and saw some interesting info, researched some things and tried some exploits with no luck.
Could someone pm me pls?
Youāre on the right track.
You either need to dig further, or check the exploitsā params
Nice box! Very funny especially the part of the second user! Congrats @egre55 and @mrb3n !
Pm if anyone need a nudge.
Type your comment> @panicfox said:
Would someone be able to nudge me? I know where i need to change a value to escalate my privilege on the website but I have no idea how to go about finding the correct value to use, nor how to properly enumerate. I tried burp intruder but only received a bunch of errors.
Iām also curious as to whether the site should look broken? None of the links I click work correctly, not even logout. I have no idea if itās intentional or not.
If u have already escalated ur privilege on the website then maybe u should try to search for some other portal for logging in as a privileged user
i get root but flag is error
Rooted. For some reason, I did not notice the first step for foothold for quite an embarrassing amount of time. Sometimes it helps to go very slow at the start of your investigation and examine everything carefully. Itās so dead obvious, you cannot miss itā¦ I guess I was expecting something to be found at a later step. It really is easier than anything I have seen before on here so I guess I didnāt expect it to be there. A good lesson in being thorough I guess.
The rest of the box flowed fairly quickly and did not require any brute force or scanning. Everything can be done with off the shelf tools and this box really did feel easy for once. Nice box to get me back in the mode after a couple month break, I enjoyed it!
Spoiler Removed