Official Sau Discussion

otter · July 10, 2023, 12:53pm

sure, either here or on discord

Sumpark · July 10, 2023, 3:02pm

Guys i need help with the reverse shell. I already managed to exploit the machine and got the user flag. All the rev shell payloads that i’ve tried don’t seem to work.
The way i’m currently doing things is piping the output of the commands to the nc command. Which becomes very tedious after a while.

olliz0r · July 10, 2023, 3:33pm

why not skip that step and go for the next one regarding access directly?

hu8813n · July 10, 2023, 4:02pm

Hey machine website i found is not open on browser please anybody help me!!!

Francisco1915 · July 10, 2023, 4:04pm

try do a nmap

hu8813n · July 10, 2023, 4:46pm

i tried on 5***5 but no response from webste

Ceyostar · July 10, 2023, 5:21pm

Maybe you tried while machine was resetting. Try again.

tumehh · July 10, 2023, 5:36pm

I might need a nudge getting rev shell. out of options after hours of trying.

Daviran · July 10, 2023, 5:49pm

Rooted. Thanks to @5105 , @lim8en1 and @panda08s for the tips on the foothold.
PrivEsc user to root is really easy.

Feel free to DM me as i will try to answer your DMs

Rahul_Baylan · July 10, 2023, 6:32pm

hi bro got the attack vector, but not able to excute can you tell how perform attack ?

Rahul_Baylan · July 10, 2023, 6:34pm

can you tell me about the foothold?

L4bb3rs · July 10, 2023, 6:48pm

Pretty sure I have the attack vector but stuck in a loop. Not sure how to get further anyone DM a little advice?

Hurr1cane · July 10, 2023, 7:26pm

Hi guys. Everybody just telling about second service… I’m stuck can’t find it, is it just wrong dictionary I used or here is the other way to find this service?

Kimi · July 10, 2023, 7:29pm

Try to understand what S*** is really capable of doing.
Google it out and try out on most obvious locations there are.

Ceyostar · July 10, 2023, 7:53pm

I think something wrong with this machine right now. Because i am pretty sure i could see the m******l login page before. But now it simply gives 401 unauthorized access failure. Did someone with admin privileges changed the page rules?

surfinerd · July 10, 2023, 8:01pm

Read about SSRF

Disturbante · July 10, 2023, 8:03pm

i also see the page with a 401

yelbirb · July 10, 2023, 8:30pm

Anyone can help me with getting anything else than the request headers with the vulnerability?

sk1b1d1_t01l3t · July 10, 2023, 10:44pm

hi everyone im stuck on the SF i got it to do a get to my python server but i cant read anything from the local machine | edit: look for sf to rce but it is not possible, I also tried s**f to access the local network but it does not allow me to do so, it only makes the request but I do not receive a response

Parzival1 · July 10, 2023, 10:57pm

I cant connect to the web application, it just keeps loading, I cant curl it either. Did anyone have the same problem? Also on my nmap scan it says that port 80 is “filtered” instead of “open”.

Topic		Replies	Views
Official University Discussion Machines	16	1014	December 26, 2024
Official Resource Discussion Machines	153	4565	November 23, 2024
Official Love Discussion Machines	215	35114	August 10, 2021
Official Secret Discussion Machines	147	11311	March 24, 2022
LaCasaDePapel Machines	696	109508	November 8, 2019

Official Sau Discussion

Related topics