Official Instant Discussion

if you didnt get the user flag yet, you need to access the subdomains you found, thru your web browser, and try to find an endpoint you can interact with (to read arbitrary files, hopefully!) and you will find something helpful!

Not sure if you’ve figured this out yet, but there is no need to crack any hashes for this box. Instead, look for files that might look a bit out of place.

ok bet… ill have to go back to that one soon, ive been working on others but thanks

pwned! First machine with points as I do only retired easy boxes for now and I don’t feel it’s a medium box. Easy retired machines could be way harder than that. Anyway cool box, everything were new for me. Ping me for hints if you stuck.