me too
Iāve finally got root on that amazing machine! I htink that was one of the best machines this year, very satisfying to pwn.
Some hints:
- User: the road is long and hard, you need to find and configure right tools for a lot of things. be ready to code some stuff. serve first to be a client later.
- Root: the road is pretty straightforward, but there are a lot of hurdles on the way. Move things around and look how they change after that. I had to code quite a bit here as well
Kudos to the machine creator, and good luck to everyone struggling with this machine
5 Likes
For people struggling with using the auth token - you can use docker pull with the right settings. Google is your friend here.
can i dm you about shell access ?
im struggling with using the tokens ,i got the idea and how to use them as per āgoogleā which is clearly easy to understand how ever i still keep getting āUNAUTHORIZEDā ,can someone DM me for sanity check
Mind if I DM you about root? My brain is fried after finally popping user.
1 Like
This was definitely an insane level machineā¦ i have some issues along the way, but finally i was able to root itā¦ for anyone stuck feel free to drop me a PM .
PS not that much of coding is requiredā¦
4 Likes
Is anyone else getting redirected to 127.0.0.1:8080 whenever they try to access a particular page using a particular method?
Iām only getting redirected on the exact pages where that particular method should be working. No, Iām not running a browser proxy - and I get the same result in cURL anyway.
Please DM if youāve experienced the same thing or have somehow gotten past it.
intercept the response for this particular request and just remove the Location: 127.0.0.1:8080 before forwarding it to your browser.
Never mind. Rooted this bad boy.
Iām open providing hints, but I will not walk anyone through the box. Let me know where youāre at and Iāll nudge from there.
1 Like
Does the re******ure page have any value or a rabbit hole?
This machine is too crazy. I am starting to doubt the meaning of life.
5 Likes
its a small step in the right direction in this long journey
1 Like
Delete.
Hit me up with a DM, I can nudge a bit, but I still havenāt finished it myselfā¦
From user to root, something in rā¦y.jar ?
2 Likes
If it gives anyone hope about the coding thing, I coded next to nothing for this box. Thereās plenty of tools that do 99% of the work for you with minimal adjustments.
2 Likes
I had the path but i couldnāt make the tool work ! everyone has my same problem? i m so unlucky
I guess it depends what tool youāre using. I had lots of issues along the way.