stuck on root any hints!
A couple of us have been discussion root for a while - we’ve got ideas but nothing solid
1 Like
there is no way that python3 binary is just there by accident
I would agree
i dont get why it is saying the operation is not permitted, if i set the exact same perms on my local machine it works as intended
I found a hash in the database. I have been looking at source code for the hashing function for a while now.
Any1 able to help with the login form? have a username but because of a login timeout im guessing I should know the password but am stuck. any able to help?
I got a reverse shell with the user without the password. Im stuck on priv escalation. I’m trying to find any .db or some strings hidden but only found some default hashes without result. Any hint anybody about what’s going here?
2 Likes
how’d you access the database? i couldn’t find any config or binaries related to that
Just a note to everyone, the python3 binary is an accident, it’s leftover from the QA testing.
Thank you sir
Does that mean you got root another way?
I think it’s somewhere in the DB files, I’m trying to figure out an efficient way to get a DB dump right now
I’ve got a hash from the DB files another way, but I’m pretty sure it’s a rabbit hole. (edit: less sure)
just want to say it’s first easy machine i see where out of almost 700 user flags there are only about 100 root flags owned
1 Like
look at the bottom of the first web page
You can tar the db directory and use the ij tool locally to look around the database, I’m downloading the archive rn
1 Like
I cant seem to find these databases you are mentioning
1 Like
I’m officially stuck. I’m going to get some sleep and try again tomorrow.
you can use hashit or any other program that identifies hashes, i still have no clue where you are finding those dbs