Official Search Discussion

system · December 18, 2021, 3:00pm

Official discussion thread for Search. Please do not post any spoilers or big hints.

saravet · December 22, 2021, 5:57pm

Hi, has anyone received “incorrect user flag”? however the file is correct.

looping404 · December 22, 2021, 6:01pm

Also incorrect root.txt flag. What appends exactly?

clure · December 26, 2021, 12:37am

ROOTED

I’d say I spent 15 hours on that one total ^^very nice one, kudos to @dmw0ng ^^

I could not get a final reverse shell though on the very last step and I’m wondering why it’s not working, if someone wants to talk about it?

Foothold

Look carefully in the website…
…And then go straight to LDAP enumeration

User.txt

A nice road trip from users to users but if you follow your LDAP enumeration routines and use bloodhound, it’s pretty straight forward
Just a tip: if you encounter a cert, try to use it in your browser ^^

Root

You have everything under your eyes from the beginning in bloodhound already

And as always… PM if stucked, but with detailed steps of where you are and what you did already
Enjoy HTB!

FelisLeo · December 31, 2021, 8:21am

really cute box. Rooted!

10/10 real - life environment fyi all

if you need help just dm.

XploitA · January 1, 2022, 1:39pm

i got usernames form the website is that enough or there is more on the website

XploitA · January 2, 2022, 10:02am

i have got usernames list and i tried aseproasting still no luck any hints?

clure · January 2, 2022, 4:37pm

There is more

0xPThree · January 4, 2022, 10:02am

Real fun and surprisingly easy box.
Found two different ways to root.
Didn’t even need a revshell

cmoon · January 5, 2022, 9:36pm

Regarding @clure’s hint on the cert, I had to use a windows machine to get it working. May have been an issue on my end as I’m using a Mac

lazytitan33 · January 23, 2022, 1:06am

I’m also having issues with the flags saying that they are incorrect. I’ve even tried resetting the machine. What is the problem here?

wshepherd · February 9, 2022, 2:18pm

Great box, realistic. If you treat it like a real engagement it will be straight forward. Kudos to the creator and @clure for the tips (pay close attention to them)!

ihatetom · March 17, 2022, 1:13pm

Just finished Active and Sizzle, still cannot seem to get a foothold here. Confirmed valid usernames but everything is coming back off after that. Exploits after that are patched or disabled. I like it, but wow is it hard

JuanMusic1 · March 21, 2022, 2:21pm

Just take a detailed look at the website

ihatetom · March 25, 2022, 9:33pm

oh geeze lol. I just found it. I must have skipped over that clue 100 times.

Fr3sh · April 20, 2022, 5:21pm

Just got root.txt but could not get a proper shell. As anyone succeeded ? If so, I could use some feedback.
Really Cool box.

grav3m1ndbyte · April 21, 2022, 6:25pm

I’m going through the accidental skipping right now…kind of annoying tbh!

00xData · April 23, 2022, 9:15pm

Got root., amazing machine took a few hours, but a lot of fun.
Analize the web will save you a lot of time.

if you need help send a dm.