Official MetaTwo Discussion

ZuZu · November 8, 2022, 8:38pm

#Rooted ^^

User: Its a few Exploits to get it, but pretty straight forward…you just have to find that juicy…

Root: As someone said…its actually really easy…what directories do YOU have access to…

DM if you need help

arkan94 · November 8, 2022, 8:49pm

Any hint for user?

I found the ***gin and the ***i, but I stuck there.

nirz · November 9, 2022, 10:30am

Sometimes I’m not getting friend requests on discord, so feel free to pm me with yours and I will add you for hint if needed

cyfiz · November 9, 2022, 7:03pm

struck while uploading .wav file, anyone ready with clue.?

nirz · November 10, 2022, 5:35am

Sure, pm me and we could discuss on discord

W1ntercept0r · November 10, 2022, 1:46pm

Something is wrong with this machine. Startet to scan it some days ago and it gave me a full answer on FTP-Scan. Now I’m always getting back error 421 from FTP and a scan shows me tcpwrapper on port 21. Machine-Reset didn’t help either. Very anoying!!!

spindel · November 10, 2022, 3:07pm

Im encountering same issue

W1ntercept0r · November 10, 2022, 3:09pm

That saved my day. But did cost me a keyboard already

cyfiz · November 10, 2022, 6:45pm

True, actually there was issue with my vm. thanks for response.

ccgrsec · November 11, 2022, 9:02am

im stuck at first, the sqlmap tool does not work for me with a plugin. any ideas?

dg4ev · November 11, 2022, 12:22pm

Stuck here too, i found the CVE. I can upload the wav file but I don’t get what I expect.

saidalbahri1 · November 12, 2022, 9:54am

shoot me a DM I will help

saidalbahri1 · November 12, 2022, 9:54am

shoot me a DM I’ll help

aksika · November 12, 2022, 1:03pm

I couldn’t catch it with sqlmap either… Find a poc on github it will work in curl, then you can modify the sqlmap request giving the tool some aid

boronblack · November 12, 2022, 7:44pm

User : book the admin and inject him with needle to hypnotise and get the details from his mouth itself

saidalbahri1 · November 13, 2022, 5:31pm

rooted!

it was a fun box, tips:

for user: find the most important file in wordpress and go from there.
for root: don’t over-complicate things, look for clues within user itself.

WhoKnowsWhat · November 13, 2022, 5:58pm

when i wait for a confirmation in metapress.htb/events i get “Error: Network Error”
is this normal?

joe8ball · November 13, 2022, 6:10pm

Rooted! Fun machine, learned some stuff

4n07h3rm3 · November 16, 2022, 12:38pm

I would appreciate some help because I’m stuck with 2x $P$ and don’t know were to go. I tried with _a__cat but had no luck so far… wrong path?
Thanks in advance

cloz · November 17, 2022, 2:56pm

I’m literally at the point you’re talking about right now. Also found the user j*****n by reading /etc/passwd with the blind injection. No idea where to go from here. Can’t find config files and I’ve tried to get the wp-config in multiple locations and the nginx config in multiple locations. No luck.