Official Inject Discussion

CommanderKronos · April 13, 2023, 4:27am

I’m having a lot of issues finding a way to root. I’ve gotten access to both users but I really have no clue where to look for privesc. I thought that using binaries with SUID bits set would work and tried looking at GTFObins but that didn’t get me anywhere. Could someone DM me with a hint that points me in the right direction?

B1ghead · April 13, 2023, 9:10am

DM if anyone needs tips

Fth3r · April 14, 2023, 2:44pm

Rooted after a couple days of sporadic trying. The hints in this forum are plenty to get you through it. Huge thanks to @Paradise_R for those. It took me a little while to get the initial part of the foothold but I think I was maybe forgetting a ‘/’!

SPYer · April 17, 2023, 11:04am

Finally rooted
User part is amazing! Got to exploit new vulnerability

reddish · April 19, 2023, 11:44pm

Just rooted! Was stuck for a while on finding initial foothold. I had already written off the vulnerability that led to user, but @Paradise_R hints were super helpful and helped me loop back and try harder

jhax · April 22, 2023, 1:52am

Okay I must be going insane here. I have one user, I found a file with a password in it, but it won’t let me use it for the other user. ssh says permission denied, and trying to su from the first user just ends up hanging due to lack of tty I think.

Can anyone help me out, is this password just a rabbit hole? Am I on the right track or what?

Paradise_R · April 22, 2023, 5:06am

Su should work, maybe you should change to /bin/bash before using the command

bacs2009 · April 22, 2023, 10:40am

Rooted. Thanks to @B1ghead

m3ll0 · May 2, 2023, 11:05pm

This was easy box more tedious than some medium boxes but GG lol

ForP44 · May 4, 2023, 3:34am

Suddenly getting a 500 internal error while searching for foothold.
This happened last night too.
I can’t even update a new image file, something breaks I guess.

Katon · May 4, 2023, 11:48am

Getting an Internal Error 500 is to be expected as pointed out by a previous user. What exactly have you tried doing?

BuZuS · May 8, 2023, 7:05am

I was struggling to get a foothold with the default payload. Using a different one worked for me then.

scamwork · May 24, 2023, 10:03am

Someone can help me pls !! I tested the payload it work for touch a file, so the rce is working, but any curl, wget or other isn’t working ?! i cant get a foothold ?? HELP !!!

dora · May 24, 2023, 11:44am

hey do you know how to solve this
ssh is not working for me even if i give the correct password

scamwork · May 24, 2023, 1:12pm

like i upload a file, then execute it but i dont have the reverse shell ?!

Paradise_R · May 24, 2023, 5:12pm

Sometimes the machine won’t let you connect by ssh and you will need to use “su ” inside a shell

dora · May 24, 2023, 5:27pm

got it and it worked thank you

AFrenchBanana · May 24, 2023, 8:09pm

My yml files delete and don’t run. any advice?

fernx2023 · May 26, 2023, 7:45pm

Pawned it!!! This has become one of my favorite challenges. If anybody needs a nudge, just DM me.

whale3070 · June 14, 2023, 2:05pm

try msfvenom generate a payload.elf, upload and execute