S***** doesn’t loading the a**** page, is that normal ?
Put down a HUGE amount of time before finding the thing under the surface, after that the box was a smooth ride. DM if you need a nudge.
Finally rooted. For an ‘easy’ box it was really tough. As said previously by others, make your way with CVE ! You can DM if you need a nudge
I’ve found it and trying to brute force the login…thanks for the tips. I will take it from there> @SkyStorm said: > found the login page but can’t seem to enumerate further. would appreciate any nudges 
You can PM me
Box done ! PM me if you need help
really nice box. I don’t think you will need any hints for this one. just give it some time. and enumerate as much as you can. but still, if you want help, Discord:- luckythandel#6053
If I know what guy i should ask for *** location, I will save my afternoon PM me if u need.
Stuck on trying to get a foothold, I’ve ran directory searches and tried gobuster vhost to find subdomains but not returning anything. Anyone able to give me a nudge ? *UPDATE* found it, should of changed my thought process and do some more manual digging
Been trying for two days to get the subdomain but without any luck. Help needed 
Type your comment> @TRex90 said: > Been trying for two days to get the subdomain but without any luck. > Help needed Hope this isn’t too much of a hint however… it seems like you are lost. have you looked at the map? I’m also lost but trying to get root - going over all the basics again.
Type your comment> @xc0m said: > Type your comment> @TRex90 said: > > Been trying for two days to get the subdomain but without any luck. > > Help needed > > Hope this isn’t too much of a hint however… it seems like you are lost. have you looked at the map? > > I’m also lost but trying to get root - going over all the basics again. I got the user. now I’m stuck in root too 
Stuck for few hours exploring root exploits… It appears I am doing something wrong… Can someone give me a nudge please!
I’ve found the login page and did some manual inspection. Any hints as to what I’m not seeing or how to approach the A**? Edit: Burp helped me out. One request and that was all she wrote. Now to get user.
Not sure why, but I had issues getting root even with the correct exploit. Did anyone else have issues? I followed the POC yesterday and got nothing then I tried again today and it worked. If it wasn’t for that I would have rooted in ~3 hours not 8. If you think you know the right exploit, try connecting to a different environment and try again. PM for a nudge but let me know what you’ve already tried.
This was an interesting box for sure. Takeaways: User/Foothold: Debuggers clear things up… Enumeration will help it make sense. Root: Debuggers make things dirty too.
Not sure how you find the version of the CMS, it isn’t leaked in any page source / headers that I can see. edit: of course as soon as I type this I find it edit2: rooted, fun box
rooted… finally ■■■
ok, i’m a bit stuck now. I got the root flag from /root/root.txt ( starting with ‘fc’ and ending in ‘f8’) but when I try to submit it, HTB says it’s incorrect. Is there something I’m missing? Is this a decoy file ? Can anyone please help point me in the right direction?
Totally stuck at root, not sure if I need to move to the de****** user or just try and go straight to root.
I got root, a good box, but the root part was very annoying, I had troubles even after finding the door. I learned about a useful tool for it. Feel free to message me for nudges.