im in the same spot
Can anyone provide a hint on root? Iām out of container and have user flag but canāt see anything that could be used to escalate. I see john has sudo access but canāt see a way to pivot.
Any tips for root (from m***** user to root) i does linpeas already
1 Like
Stuck at the doorā¦ i have found the payload but i got connection refused every time, encoded or non 
well itās good to learn new thing
1 Like
also stuck here - created a listener to recieve some informations but also nothing
Pull the docker container and test it locally - it helps with knowing when something is working vs when it isnāt
Iāve managed to get a foothold, struggling to escape, if you know what I mean 
Can anyone help? DM please.
1 Like
Look in the shadowsā¦
Also look on Hacktricks for ways out of the jail, you may find some tool in the list very useful
1 Like
Iāve gained admin access to the service beginning with F. Struggling to find a purpose for it.
Anyone care to drop a small hint please?
Edit: Finally figured it out. Rooted. Not sure why it has low reviews I thought it was great.
How did u do that? I have some creds but they did not work
1 Like
Guys noob question, is this machine so slow or itās problem on my side?
Isnāt slow for me. Someone could be slowing it down - try a different VPN/server.
Iām new to this, do I need to download Froxlor?
i Found a subdomain and all now i feel stuck. what should i do. i did also find some interesting ports.
the subdomain can be exploited
look for CVE related to the something that is used there
2 Likes
I am on the s**pad and all I feel is stuck any hints?
stop refusing 
there is a specific vuln for that service version
2 Likes
can anyone help me on the blind xss in froxlor?
2 Likes
i found the specific vuln for the application and version. But i canāt find a ready to go exploit. I know the sort of vuln. Do i have to write an exploit for my own? or is there one available on the internet? (pls dont link , i only need the information for searching :D)