Official Runner Discussion

willowOwO · April 21, 2024, 4:21am

Finally rooted! This one was rough, foothold wasn’t too bad, I just kept making it more complicated than it needed to be. Root was really challenging as portainer’s documentation doesn’t cover what we needed to do at all.

Foothold: Don’t overthink it. Once you’re in, don’t look for some fancy exploit, just sniff around.

Root: Not too much I can say here without giving it away. Look into how you can use docker to access a host’s files.

If anyone needs a nudge, feel free to reach out! Good luck!

Nyctophile09 · April 21, 2024, 6:03am

Any hint from backup file? I got user’s password, but it doesn’t work on ssh

CosmicDebugger · April 21, 2024, 8:12am

same

nks · April 21, 2024, 8:23am

I’ve gained shell access as user “tc***,” but I’m currently stuck. Do I need to escape the Docker container?

greder · April 21, 2024, 8:35am

I’ve spent hours trying to figure out what to do with docker

alone44 · April 21, 2024, 8:41am

key has no password. ssh2john is giving this error for key. do i need to reset machine ???. only found that comment

Nyctophile09 · April 21, 2024, 8:42am

how did u get the shell access? Any hint?

CosmicDebugger · April 21, 2024, 9:37am

any hint on where to use the m*****w creds?

rizcyber · April 21, 2024, 11:44am

I have tried with both subdomain, vhost but didn’t find anything interested … is there any other hint?

rizcyber · April 21, 2024, 11:58am

i have also tried with the worldlist created from website by cewl

an0mal1a · April 21, 2024, 12:54pm

Try with other tools, i use wfuzz

alone44 · April 21, 2024, 1:39pm

got the user flag but cannot find what to do next . can someone help ??

hatto · April 21, 2024, 2:06pm

Where do I use m*****w credentials?

4wayhandshake · April 21, 2024, 3:07pm

Got it! I disagree with some of the folks posting here about the difficulty of root. For me, it was pretty equally spread between foothold, user, and root.
My best advice is this: remember that it’s a puzzle, not an actual machine! When you find yourself achieving the next step, think of how you can leverage that step to reach new places that you haven’t yet had access to.
Best of luck to everyone in the rest of the season

Dedsec007 · April 21, 2024, 4:01pm

Any hint for container escaping please!

phantom · April 21, 2024, 4:19pm

Hello Guys,

I have find the first entry point and got a shell on the machine.
To find the entry point, i used ceWL and Ffluf.
Now it’s time to find things on the machine…
Taking break and rest can sometimes help

Thank regards

N4v4S · April 21, 2024, 4:28pm

Do I get right that we have something to do with the “Create project from a repository URL?”

hshakilst · April 21, 2024, 4:39pm

Hi bro, what’s up? Can you help me? I sent you a dm.

N4v4S · April 21, 2024, 4:41pm

Nevermind, the step was way more stupid than I thought.

phantom · April 21, 2024, 4:44pm

Hello guys,

I will answer here, but you should look the version of the website