Official Pilgrimage Discussion

HTB Content Machines
57

Dear person who removed the files I was using to enumerate. Thanks sm…

image
image1650×48 9.35 KB

2 Likes
60

Found the path to initial foothold… trying to make it work…

61

I have same issue before… I hope in future this can be trackable :')

1 Like
62

Got the user… trying to get to the root… :woozy_face:

1 Like
63

Any hint to root :frowning:

64

still trying…

1 Like
65

Hey did u get any hint after this?

66

Any hint for root?

67

just rooted the box…
for the root, you have to look carefully, or you will end up doing nonsense like I did for like 2 hrs…

nice and ez box :fire: :white_check_mark:

2 Likes
68

Can you drop a hint for foothold / user, I don’t know if im doing the right thing but get fucked over cause of a dumbass syntax error or if im trying something thats a dead end. dm if you prefer

69

shoot

70

User on this machine was straightforward enough, but with root I feel like I’m walking into a brick wall? Should I turn around?

71

dont… keep walking

1 Like
72

I need a hint for foothold . furstrated because it stop working

73

i found the vuln for foothold, but i dont know how to use it to get access
can someone help?

1 Like
74

Hey everyone, so far I’ve gotten to the foothold and I think I’m close to getting root I just can’t figure out the injection for the scanner script. Is anyone else working on getting root that would like to work together?

1 Like
75

Fun machine. A dumb error wasted a lot of my time, but finally rooted.
User hint: Don’t waste time bypassing image file, just enumerate technologies and read the source code. Concat with the exploit and that’s it.
Root: This is very easy, just keep your eyes open and see what is running when an user uploads something and the rest is in Google.

If you need help, feel free to DM. I’m happy helping anyone wanting to learn :wink:

4 Likes
77

my box dies after serveral vhost enumerations. does anyone else experience this? everytime i have to reset it. pretty nice experience…

1 Like
78

Note, the initial exploit for foot hold was not working for me on pwnbox, I kept getting disk image malformed error. Worked the first time i tried it on a different VM. I think it has got to do with the way the text is copied in the shell, but not sure why.

2 Likes
80

i found .git/ but nothing was there any hint.