Official PermX Discussion

0xn4if · July 9, 2024, 4:02am

I am in www-data user, need help

insomnia · July 9, 2024, 4:02am

hey bro, send DM!

A9eNt47 · July 9, 2024, 7:16am

Is there any way to upgrade to a full shell out of the php web shell (after file upload)? Executing one command at a time is tedious

SpiritWolf · July 9, 2024, 7:43am

yeah, via python shell upgrade

SpiritWolf · July 9, 2024, 9:03am

Better DM for such questions, cause it’s not good to openly discuss the steps of the box

SpiritWolf · July 9, 2024, 9:04am

Though, as already said in this topic, you don’t need to crack anything.

0xn4if · July 9, 2024, 10:53am

No way, I was trying to crack all the hashes

bsnun · July 9, 2024, 12:38pm

Why not try the obvious after running Linpeas/manual enumeration?

You have a username and then you have a password… Why not try it in the running services?

Users normally reuse passwords, so many times you will find that a password that works for a service, also works somewhere else

SpiritWolf · July 9, 2024, 1:25pm

Yeah, but after latest boxes it felt too easy, you know?

JimShoes · July 9, 2024, 1:42pm

Generally, I’ve found it’s a better route to assume password re-use than to not. It doesn’t take that long to test that theory either in a lot of cases.

Sp00n3r · July 9, 2024, 2:45pm

Yes - upload a php reverse shell instead. There’s a really well-known one you can find in /usr/share/webshells on Kali (not sure the location on Pwnbox but I assume its the same).

ringbuffer · July 9, 2024, 5:02pm

xLe0x · July 9, 2024, 6:40pm

YAY!

xLe0x · July 9, 2024, 6:42pm

1 - NMAP
2 - VHOST enum
3 - fuzz
4 - search for cve
5 - exploit and get a rev shell

C1775scow · July 9, 2024, 8:22pm

I’m still working on priv esc but I don’t think what you’re doing is the right path. As you can see in the error message, you can’t execute your shell script as root as mtz

FroggieDrinks · July 9, 2024, 8:26pm

If youre having issues with the script. Dump it into CHATGPT and tell it to explain it to you whats happening.

Then break it down. Ok i need a file to be somewhere but i cant move files to that location. Use your google-fu and figure out how to make files or give access to files from one location to another in linux.

After that you need to figure out a file you want to abuse. IF you can abuse any file on a system what would be your first stop? Somewhere where user creds are stored perhaps?

bsnun · July 9, 2024, 8:29pm

I was talking about this exactly with @T2M5

You’ve mention one possible file. I can think of another that can give you higher privileges, which was how I abused it.

C1775scow · July 9, 2024, 8:51pm

I feel like an idiot for not getting that faster ■■■■. As soon as I read your comment I understood haha.

T2M5 · July 9, 2024, 9:20pm

Exactly

insomnia · July 9, 2024, 10:07pm

Those who need help already know where to find me!

Topic		Replies	Views
Official Pov Discussion Machines	59	3378	May 20, 2024
Official Administrator Discussion Machines	162	6364	January 22, 2025
Official Resource Discussion Machines	153	4678	November 23, 2024
Official FormulaX Discussion Machines	17	2347	July 12, 2024
Official Horizontall Discussion Machines	174	24823	December 12, 2024

Official PermX Discussion

Related topics