It is, as it is just one machine and it needs to prevent interaction between different players, some policies will erase your steps automatically, though I would say it is a good practice to delete them yourself 
Fantastic box. Definitely one of the harder/longer footholds I’ve run into but I learned a lot. Also shout out to chatGPT for helping me with the hard part of foothold 
Feel free to reach out for hints!
Google unix timestamp.
Then if there was only a way you could use a for loop to generate a list of possible activation codes then FUZZ them against whatever the activation php file is.
If anyone is still around, I’m caught up in where I can slide something into the User-Prefs cookie (assuming that’s where it would go). Been stuck at this stage for a day or so now.
PM me if you still need any help 
No need to fuzz. The HTTP POST timestamp is valid source.
Can’t get the exploit to work. It deletes my generated key from the appropriate folder but I still don’t have root. I’ve tried a reset to no avail. Even tried to cp the root flag to /tmp with no luck. Any help?
Same here. Even touch /tmp/asdf doesn’t work. Is it broken?
I think it might be. Nobody else has answered. I’ll send a message to the creator.
*Edit: I was unable to figure out how. Can’t find him on the forums and there’s no option to do it on the app subdomain. I guess we’re just gonna have to get our points elsewhere 
Others are getting it in the last few hours, i’ll try again tomorrow when it resets a couple of times
Let me know. I’ve been trying for 5 days.
I got it, it’s not broken. Just need to look a bit better in the script logic
Hello, I’m stuck in this box, I’m like bill, but I can’t root, even doing the certificate trick, I can’t get root access, could you help me? Any tips?
Não consigo root também, nada funciona
Same problem here.
Nice Box. Had fun. Thx
Maybe you are missing some detail for exploit to work?