Finally rooted! The hints here were helpful when I was stuck.
Nudge:
Have you checked ALL the forms youve found so far? I was in the same pitfall as you until I checked
1 Like
One letter per one minute? Well⌠kind a long⌠
Waiting for dumps to get initial footâŚ
Yup, thatâs the issue I was having. I had naively assumed it would be one and had forgotten the other.
9h with sleep() and I got 3 records from DB. lol
1 Like
Can you help me?
I got the reverse shell, but after searching for days and running linpeas I still cant get the private key.
I am stuck. Can you point me in the direction.
Greetz
Yes. This is hurting my soul. 
1 Like
Finally rooted!!
PS: For the root priv esc, for some reason firefox refused to work for me! Google chrome came to the rescue. Hope it helps someone!
OK, found the right page/form and payload⌠Now just waiting for it to produce the info I need.
Did you have any hints how to speed this up? I tried few things but it takes ages - any hints how to speed up mapping?
im stuck trying to bypass duplicati login. i tried several times, by different ways, changing browser, OSs, etc. Can somebody help me pls?
i intercept and forward the packets with burpsuite, but in the end i only get a 401 Unauthorized error
i am trying sql injection on forgot_password.php thing. and i am lost.
can u help me bro?
Is there anyways to speed up sqlmap? I tried --threads, --hex, -o, etc⌠So slow⌠Like hours
Yes. Go to sleep for 7h 
As far as I know thatâs the only solution here xD (see posts above ;))
Didnât someone root this in less than an hour? The Pwnbox instance is terminated every time I leave it unattended for that long lol
Yeah, something like that.
I just spent last 3h for try to bypass duplicati bug. I have no idea why the nonce is wrong.
I donât want to waste more time for this machine.
But good luck to anyone whoâll decide to try!
Maybe check the encoding? I got it to work, send me a DM