Official Gofer Discussion

HTB Content Machines
50

im stuck on .odt file. i follow this steps Using Malicious LibreOffice Calc Macros to Target Linux but this create a .ods file and when i do “customize” step, nothing happens! lol. where i can see the odt file? or what other solution do you recommend? thanks :sparkling_heart:

51

Then you are using the wrong application :slight_smile:

53

Should I do some brute-force ?

54

nope

55

Can I dm someone about the auth part ? I tried a lot of stuff, but could not bypass this. Thx !

56

Dont try to bruteforce, there are many different kind of tools to interact with the web :slight_smile:

59

Rooted. Did struggle a bit getting foothold, but after that rooting was pretty straightforward and fun progress. Good machine overall, learned a thing or two.

60

Finally rooted and learned a lot from this machine. Special thanks @OniSec, @Miloella007 and @3xpl01t for letting me learn a lot.

2 Likes
61

Grats on root!

64

In fact ffuf works, but it needs to be set correctly !

What you can do is :

ffuf -w wordlist -u url -mc all -fl nb_of_line(s)
# and to be sure about the results
ffuf -w wordlist -u url -mc all -fw nb_of_word(s)

In this way, you don’t have to use another tool .

Edit : as mentionned by 4wayhandshake, this is a basic example.

66

Agreed that you can use ffuf for this, but there’s more to it than what you’ve shown.

Without being overly explicit about it, the key to finding the result is:

  • using the IP address in the url
  • defining a certain header with the FUZZ variable
  • filtering out unwanted results (as you’ve shown)

It’s the first ffuf command I run whenever I find a webserver on the target.

67

Yes you’re right, thanks for the details ! :slight_smile:

68

Well done!

69

Could i DM someone about the auth part?

70

Yes

71

Yeah, I just said that because default command is what most use

72

My first box as an author, and the feedback is a real pleasure. I was expecting more negative comments but that doesn’t seem to be the case.

As for the difficulty, on my second submission I’d lowered it to “medium” because yes, I don’t think it’s “really” hard, there are just a few stages but they’re not particularly hard. However they still chose to leave it hard. I sincerely think it’s closer to medium (even easy if you already know the different concepts). And yes, I also give a lot of hints, which may have been a mistake, but I thought that without giving hints, it would quickly become a guessing box , and people don’t like guessing box in general. Inevitably, it’s clear that it does put you on the right track and therefore makes things a lot easier, but I’m more in favor of learning than struggling because you have to “guess”.

19 Likes
73

It’s a great box, straight forward in my opinion and it teaches a wealth of concepts and that is exactly what the platform is for.

74

Awesome box! I have already picked up a few concepts especially w/ binary exploitation. Thanks for putting that together!

75

Hey everybody, I’m stuck on exploitation for the user flag , can somebody dm me ? Thanks :slight_smile: