This machine is driving me nuts!!!
So with some help I’ve managed to get pro and get a shell as www-data…
I just can’t see how to get to the user …
is it to do with the hidden directory ?
No hidden directory. Enumerate a little bit, think about where you can find usernames and passwords.
1 Like
Legend!
1 Like
Finally, after a week and a half, this “script kiddie” has rooted format. It was definitely a very humble experience pwning this box. Huge shoutout to @otter for helping me understand not only the techniques but the whole concept behind getting pro and to @zemunk3y for pointing me in the right direction with the root part. And big thanks to the creator of the box. Format is awesome. Good luck everyone who is still working on it.
3 Likes
Was more of a brainfvck for me but I Finally pawned it. Id consider this machine hard not medium. Shout out if you need a nudge!
what should i do after finding token endpoint?
(jwt attacks dont work and token cant be used with -1 to reach DR)
Well this was a ride but I enjoyed the struggle. Foothold was crazy to me falling into many rabbit holes. After getting PRO, remember you gain write access to something.
Anybody willing to hint me with this one a bit? I’ve been working like crazy for days on this one. Got through the first steps, got an idea and found the two first vulnerabilities and got a general idea of what to do but I cannot see how to upload the webshell for the first steps of the pwn
Any help will be greatly appreciated