Mud
October 25, 2022, 6:49pm
23
Great Box, on the easier side for medium, nearly rabbit holed myself for a while though.
User: basic enum, some research, obtain a database file, look in tables other than the usual one…
Root: little confusing if you have never seen this software before but look for a .git dir and read up on some documentation/exploits and you should be good.
Rooted.
If anyone knows how to root manually, please PM me. Spent several hours trying to figure it out.
Just rooted, box was a lot of fun the whole way through. Was really nice to see a Hugo site on a box too, my personal fav static site gen.
Hi! Any hints on the priv esc please? I feel I’m really close
jwuzke
November 5, 2022, 4:43am
29
You want to make sure things are HEALTHy . be sure to CHECK if they are. A running service should be willing to do it for you.
Lnevx
November 23, 2022, 5:16pm
32
How to fix (trying to connect to mysql)? Plugin caching_sha2_password could not be loaded: /usr/lib/x86_64-linux-gnu/mariadb19/plugin/caching_sha2_password.so: cannot open shared object file: No such file or directory
UPD: fixed by using docker mysql (dk why kali mysql not work)
Lnevx
November 23, 2022, 6:38pm
33
Rooted. Not a medium box, more like easy.
PM me if you need a nudge
4ji7h
November 24, 2022, 3:44pm
34
How to find the grafana username and password?
I did not find in the python file
I can’t log into the mysql server even though I got the password for it. (I copy pasted the password)
hmznls
November 24, 2022, 8:43pm
36
Same as you, got gr**** username and d****** password but I have access denied when trying to access. Did you solve that ?
UPDATE
Do not miss the ‘!’ when copy pasting
already solved; I misspelled the username
hmznls
November 24, 2022, 9:09pm
38
How did you do to submit the flag ? Does not work on my side
I’d say keep looking in databases and its tables that may have an another password in mysql server
also if you’re still stuck on access denied, here’s a hint: there is one f in the username.
hmznls
November 25, 2022, 9:01am
40
Did you resolve this ? I have the same issue with user.txt and root.txt flags
hmznls
November 25, 2022, 2:24pm
41
Am I the only one that has error message when submitting flags ?
1 Like
adip
November 25, 2022, 4:09pm
42
Facing the same issue here with both user.txt and root.txt.
Should we be calculating any specific hash or just paste the value directly?
d3f4u17
December 6, 2022, 6:48am
44
Rooted…a pretty straightforward but interesting box, DM if anyone needs a nudge.
Hey man, I am stuck at getting a foothold on ambassador… I spent alot of time trying to use the ppp service , brute forcing mysql and the ssh.
h6x
January 5, 2023, 1:27pm
46
Fun and easy box!
My privesc was a bit weird:
Try an exploit - Doesn’t work.
Change things in the exploit code - Still doesn’t work.
Revert all the changes - Exploit works now.
1 Like