Official Passage Discussion

Rooted ! pm me for any hint but tell me where you are , what you tried :slight_smile:

Yay, my first non-retired box that I rooted.
Thank you for the machine

Finally … rooted
Very clever machine…easy when you know it.

Spoiler Removed

Apparently I explained my mistakes too much, was considering spoiling x)
Rooted as well. PM for nudges

root@passage:~# whoami && id && hostname
root
uid=0(root) gid=0(root) groups=0(root)
passage

rooted!!
after tons of hours digging in the wrong places able to solve this don’t overthink it just keep it simple
I need some hints PM and ill do my best to help
thanks to @gs4l for the boost I needed

Hey! finally rooted it after hours. And mainly by finding a super helpful article by an accident :smiley:

Could anybody pm me pls what the correct approach was (rooting phase)? I mean mainly the hints “Stay at home”, “read a novel”, etc. It did not help me at all. Even after rooting the machine I don’t get these hints

But overall I enjoyed it. Thanks! :slight_smile:

Spoiler Removed

@maurotambo

Brute-forcing isn’t the way. Just read some articles in google about the WebPage.

Rooted . Easy box. PM for help!

in case anyone is stuck where I was: try

sed ‘s/[[:blank:]]*$//’

i am actually really confused for user 2 looked at so much stuff, but no result. Any hints?

Type your comment> @LegendHacker said:

i am actually really confused for user 2 looked at so much stuff, but no result. Any hints?

What is a file that could belong to another user?

Type your comment> @limelight said:

Type your comment> @LegendHacker said:

i am actually really confused for user 2 looked at so much stuff, but no result. Any hints?

What is a file that could belong to another user?

used the find command but still nothing interesting :frowning:

Type your comment> @LegendHacker said:

Type your comment> @limelight said:

(Quote)
used the find command but still nothing interesting :frowning:

Don’t look at ownership. Look at contents.

Type your comment> @limelight said:

Type your comment> @LegendHacker said:

Type your comment> @limelight said:

(Quote)
used the find command but still nothing interesting :frowning:

Don’t look at ownership. Look at contents.

I don’t get it lol

Im stuck after getting the reverse shell. Can somebody give me a hint where to search for getting the access to one of the users?

Rooted. I got the foothold nice and quick then found the required details for the next user… only to not use it and forget I’d found it. Got there eventually.
Feel free to PM for pointers.

Deleted.

Genuinely enjoyable box and pleased that I could make progress after about 8 hours of total fail on laser.

The flow is fairly methodological. Enumeration (as always) is key and public exploits get things started.

It’s a good box to practice copying files off and scripting translations between encoding.