Hi guys, i’m stuck at the latex part, i can read one line but everything i have tried so far in order to read everything is not working due to blacklist. can anyone help?
Thanks a lot
if you want to read full content of the files, hacktricks is a great place…
its so easy…
1 Like
it didn’t work at all I used to /loop one to read multiple lines it did’t work I can read 1 line by hacktrickes
look closely… thanks me later
1 Like
seems like alot of you guys having trouble with hacktricks.
yes… you cant directly use it to read full content of files… you have to read the l***x documentation and understand how it works…
2 Likes
yes 5105 , guys you need to keep searching for a way around don’t stop only at hacktricks etc
Managed to find a solution to read multiple lines and the file I was targeting contains special characters which prevents it from loading. Tried to use catcode to workaround the error but no luck.
I’m sure there is a way to read that key file and it seems like the obvious intented route of the box. I had no luck writing to the file system as all the commands are blacklisted.
I’m not enjoying the learning experience on this box so I’ve given up and look forward to reading the solutions in a few weeks or so.
5 Likes
I agree. Found the basic vul, but this feels like a very niche box.
1 Like
Finally rooted. Very obscure box for being rated as easy. Big thank you to @5105 for the pointers
2 Likes
you are welsome 
Yes I did the -t 5 and --delay 1s but the issue remained its very difficult to get my scans working most of them end of with erros after only 5-10% of the scan
1 Like
that took ages … foothold is a MF
PS
Checkoway, Shacham, Rescorla. You’re welcome.
1 Like
Finally, rooted!
Foothold/user hints:
- You don’t need to read the whole files, the way to the foothold can be found on the first line of some file
- That file is not related to the app that lets you read files, you need to enumerate other parts of the box to find it.
I hope, it’s not a spoiler.
6 Likes
Please stop restarting the machine!!!
1 Like
Finally rooted, Big thanks to @podsrus 
thats because the main domain itself does not require a hostname to be added to your hosts file
but to find actual subdomains you do
I didn’t need to read files to get a foothold so
the intended way is reading files of the box… there are two ways we can read files without errors… or we can drop a shell and get a reverse shell same as you did…
1 Like
thanks for letting me know , i will check it later
i swear some boxes make me feel like i should just get a job at mcdonalds. i just cant crack this one. might need to take a break and come back another day
10 Likes