Official Static Discussion

rooted. foothold took the most time - it turned out I had the right approach, but it wasn’t working in the release arena, maybe due to a network timeout. trying again in VIP it worked first time.

thanks @ompamo for a fun box!

putting correct totp still not getting logedin

@hoangvietitvn said:
file.gz has corrupted , how to repair ? :neutral:

there are some github tools

anyone got time for a nudge? need help with root, not sure I really understand ert*

Type your comment> @Reddsec said:

anyone got time for a nudge? need help with root, not sure I really understand ert*

maybe you can print your own format :wink:

maybe you can print your own format :wink:

yeah, after a lot of going in the wrong direction, I managed to root.

Type your comment> @varshitmodi said:

@hoangvietitvn said:
file.gz has corrupted , how to repair ? :neutral:

there are some github tools

actually problem was not with tool it was with the machine. I changed server to EU3 and it worked fine.

I’m in Australia. Even when changing to a server in my region, where the timezone is the same as my host, the machine won’t validate the totp. Shame, seemed like a nice box. Disappointing by HTB release team to allow a box with such a fickle variable. Would have been better off exposing ntp so we could sync our time to the box.

I also have trouble with totp it fails even after reset in eu-free-1, I also tried us , also fails… gotta check other regions

Type your comment> @coldBug said:

Well, if someone else has problems with the t**p step … make sure your time is synced :wink:

To make this more understandable: You have a secret and need to generate tokens for the login… (make sure you know how t**p works). For the latter your time should be synced…

Quick tip on OTP… I just added it to my Google Authenticator on my mobile, and no trouble … xD You guys overthink too much sometimes

I cannot get this to work. The otp part.

I can’t login with the otp. I have the user, the password and the otp. But when I enter the otp, i come to the login page again. Can someone help me, or is there a problem with this machine?

Type your comment> @f1x1t1x1f said:

I can’t login with the otp. I have the user, the password and the otp. But when I enter the otp, i come to the login page again. Can someone help me, or is there a problem with this machine?

I got it work. It was a problem with the time.

whats the time problem?
I know the time should be synced. I have done that.

Type your comment> @drforbin said:

whats the time problem?
I know the time should be synced. I have done that.

it worked for me after I set the time the same as the response time from the webserver. i think that it must not be more than 30 seconds difference

ok

Type your comment> @personne said:

I also have trouble with totp it fails even after reset in eu-free-1, I also tried us , also fails… gotta check other regions

There is nothing to do with the server you connect to, you just have to ‘sync’ and then create the token with the secret. If you are still stuck DM me.

Finally, have been able to get root by using the ‘maybe you can print your own format’ way! Feel free to PM for a nudge if stuck - great machine :slight_smile:

Hey, I was able to connect with the internal servers, more particularily with the “web” one. But I just can’t load the file i***.p*p at the root of the server. Which is kinda strange : I can interact with the server, and other files normally, but this particular file just seems to load forever.

Tried resetting, using different browser / HTTP CLI, change regions, but nothing works. Did anyone experience this ?