Official Topology Discussion

pandaxar · June 10, 2023, 11:20pm

Well, that’s not a solution, there is a too long error message, so you can’t read the whole file, am i wrong ?

drazse · June 10, 2023, 11:52pm

I can read 3-4 rows of a file but keep getting the illegal command detected message for any other command. Any hint on how to bypass the filter? Or is this not the right track?

LetohLetoh · June 11, 2023, 12:42am

You are on the right track.

AM2418 · June 11, 2023, 12:50am

That was a fun box! Pretty easy to go down rabbit-holes that lead you nowhere, but definitely interesting once you figure out what you need to do!

Notorious1 · June 11, 2023, 2:01am

Weirdly enough none of the read commands worked for me. I am going to reset the box and try again tomorrow. Been an interesting box so far.

MagicBytes · June 11, 2023, 2:42am

i cannot get past the restriction to only read 3-4 lines.
There is no way to execute commands and there does not seem to be a way to get past this restriction.

Why is this an easy rated box ???!

AM2418 · June 11, 2023, 4:22am

Just a hint for everyone trying to read multiple lines, it can be useful but it’s not where you’ll find the foothold. The one file you could use to bypass the step between has special characters making it throw an error when you try to read it… It just gives you more information about the system before you get a shell and start enumerating.

guruprk · June 11, 2023, 6:44am

any clue on how to find which file i need to perform LFI on?

thetempentest · June 11, 2023, 7:28am

You can beat that special char.

sores · June 11, 2023, 8:53am

somoene onlyne rn ? got some problem whit revshell …some help ?

sores · June 11, 2023, 8:55am

p.p.s what i usually do after upload sc its ?**=revshell … but aaint work in burp , curl or browser directly

lliadan · June 11, 2023, 10:39am

hi, i’m just allowed to find the first line into passwd, no other commands works “illegal” any tips ?

baadam · June 11, 2023, 10:50am

Hey, that seems to be a rabbit hole. I am rn trying to figure out how to circumvent the write restriction.

gotti1312 · June 11, 2023, 10:53am

I’m having some troubles with getting the foothold, some commands just gets an error and some are illegal. Any hints?

coaaa9 · June 11, 2023, 10:56am

same here

ayhnbsyldz · June 11, 2023, 11:06am

Finally Rooted ! thank u

togrul · June 11, 2023, 11:18am

Can you give any hint in getting the foothold

IscarioteSXIII · June 11, 2023, 12:25pm

Second box i’m trying, just found the latex subdomain and i modified hosts file, but ■■■■, the machine is so slow.

rocksxebec · June 11, 2023, 1:06pm

I am able to create files, but for some reason they get created without any content in them. Any tips?

coaaa9 · June 11, 2023, 1:26pm

i think there is option to overwrite them, my problem is that whenever i use it i can see that they are modified but no content is in them because size is 0