Just rooted, i would say that this is pretty strait forward machine, in my opinion the user flag is harder (it took me some time fuzzing…) getting root is quite easy.
For anyone stuck feel free to drop me a PM.
2 Likes
I started this again today and it’s a completely different box. Originally, I would only receive 401 for any page, the homepage I see now was never loaded. Did I do something wrong the first time?
Easy box, not a lot of steps to user and root. Refer to NeverHackMe’s post above. For user there is a rabbit hole and the statement - A parameter will be your blind ally is quite useful. The path to root is pretty common as well, check what you can do.
I had issues with accessing the website over the release arena VPN, so had to use the pwnbox to complete. This also happened on the last release (ambassador) as well. Nmap scans and Ping work, but cannot load and access the site on a browser. I can access normal machines just fine, not sure if anyone is facing this issue with the release arena VPN as well.
3 Likes
Got root, user and root are straightforward. Hint for root: stay basic and google what you do not recognize.
Looking for some help with this if someone can chime in via dm.
Rooted! DM me on discord (n3hal#1527) if you need any hint 
1 Like
Rooted…
For Foothold:
I probably misunderstood some hints here but I disagree that the parameters are a “blind alley”. They are important and need to be fuzzed. Maybe there’s one parameter that some may pay too much attention to. So be sure to fuzz each parameter. Think about the pages function and what it may be doing on the back end.
For Root:
Pretty standard stuff. Pay attention to what the user is able to do. There will be something to look at and when you see if ask your self is this using relative path or absolute path
1 Like
See what you can do with the download picture request.
Rooted yesterday. If you need hints I am happy to help via DM.
1 Like
Gotta be one of the easiest boxes on here in a long time. Feel free to reach out for a nudge but let me know what you’ve tried!
Rooted in the end, thanks to the people that helped. Generally entertaining box that’s for sure.
Great box, user flag is defiantly harder to get, thanks @nullb1te for the help. If anyone needs help just PM :).
1 Like
Rooted. Was there any cve that could be used?
Its not about LFI. At least LFI wasnt my path.
i thought CVE-2019-18634 could help, but didnt manage to make the exploit run.
Can someone dm me telling me how to crack this machine. Need it for my assessment tomorrow.
Could someone DM me a nudge for gaining a foothold? I’m so out of practice I have no idea what I should even be looking for lol
what have you done until now ?
NeverHackMe wrote all the nudges you need for this box, don’t read much because you will get confused
Root is very easy I figured out easily what to do but still couldn’t pull it off for hours because I’m an idiot 
Hint: Read The F’ Manual
Remember this should be an Easy box, so simplicity is the key here
1 Like
Just a nudge if i have to use port 8xxx, as i get “Unable to connect” i know there is files at that port, but if it is possible to finish without a connection to that port.
Also: Try to break the request, you mind end up finding something useful.
Where should i fuzz the blind ally parameter?
anyone there ? need a nudge