I am struggling as well for the privsc. The files are deleted each time someone is executing the script it removes what goes into build and dist.
So it is pretty hard to understand everything if it’s deleted every 2 secs tbf.
1 Like
Could I get a hint on username? Guessing isn’t working so far
I wasn’t able to get sqlmap+websocketproxy working. Instead, I managed to manually get credentials.
I’m not able to guess correct username
Maybe using wireshark to get what is wrong would help…
PM me. I think I know what you’re trying to do
1 Like
i got it, thx! i’m going to find out the username now
If you find yourself struggling with sqlmap, try increasing the risk and level : )
yep! i used level=5 and risk=3, this works
3 Likes
Their deletion may help you, you just need to trick it to give you a shell 
The trick is that build and dist aren’t exactly removed, they are moved somewhere else, and pyinstaller has a parameter which lets you send them to wherever you want before it is moved, so you get an executable file
1 Like
It takes like forever?
nop, about 2 minutes for me
I took forever for me. Don’t worry about it.
Well, if it takes more time than your normal span of life, try increasing the threads.
1 Like
Humm… rooting felt WAY to easy for a medium box. Am I missing something? Did I encounter another situation where someone has left something on the box? But I reset it… strange.
Any way, if someone needs help let me know.
I literally can’t submit my flag??
this helped me allot.
i did escape the qoute so my script qould break but never tought about escaping the escap so it would break the json.
Hi,
Now, risk, level and threads did work.
Thanks
yupp still not working hackthebox really does hate me
yep! i used level=5 and risk=3, this works
As it turns out, the level is what I was missing.
Gosh I love being able to rely on this community to learn and improve. 
3 Likes
try to shorten the fullname, like how you would make your username if its already taken
Dump the replies table.