if you didnt get the user flag yet, you need to access the subdomains you found, thru your web browser, and try to find an endpoint you can interact with (to read arbitrary files, hopefully!) and you will find something helpful!
Not sure if youâve figured this out yet, but there is no need to crack any hashes for this box. Instead, look for files that might look a bit out of place.
ok bet⌠ill have to go back to that one soon, ive been working on others but thanks
pwned! First machine with points as I do only retired easy boxes for now and I donât feel itâs a medium box. Easy retired machines could be way harder than that. Anyway cool box, everything were new for me. Ping me for hints if you stuck.
Stupid easy box, donât make things too complicated. For the foothold, use your brain, there is only 1 âfeatureâ so what could the path be? Why are there 3 occurrences of â*instant.htbâ in the source? Is there some admin functionality? Is it secure?
Pwned this in around 15 minutes. This should be an easy level box, but was still cool!