Official Trick Discussion

DM me If needed

I got it finally! Thanks

Finally Rooted…

Thanks @Nevuer for help

1 Like

I managed to find a subdomain by guessing based on another one I’d previously found. I’d really like to know how to find it properly though so would someone be willing to talk it through with me?

2 Likes

I’m not having luck accessing other folder conf files with the bypass or anything except html’s. not with ccll or bbpp ect… any hint?

I have managed to gain a privilege esculaton to root but can only keep It for a limited amount of time until it resets. Is there anything I can alter in the .conf file to allow hydra to keep trying.

nevermind I wasn’t doing my lfi correctly… :face_in_clouds:

What passwords is everyone talking about on the 2nd subdomain? Im having trouble finding them, Im pretty sure I have the user from the 3rd Domain but cant get any further than this. Ive looked at all the processes and just see usernames, can I get a nudge on where to look

If you know the names of users on a box, then what files might be handy to look at? Where might those files be for the users?

1 Like

Key unlocked!!! Thanks for the nudge @JacobE

Box completed! Still new to all of this, excepte box though. If you need any judges, fell free to DM

Currently trying privilege escalation, I know I have to modify the configuration of f******* but I can’t trigger the event, am I just not doing it fast enough or do I have to do something else before trying? :smiling_face_with_tear:

If your following the guide from Google then that’s all you need. I wasn’t doing it fast enough and needed something like hydra to get it to work

same here. I am admin but don’t know what to do next/ Please message me too

Using hydra did it, thank you!

more enumeration, dns.

Please explain a little, my nmap scan shows only 4 ports open (22,25,53,80). i used the -p- flag to scan all ports. I am using ā€œlab_{username}.ovpnā€ file. should i download some other file?

at last! THX to all !

TIL/FYI… My 3rd party VPN client (not HTB/openvpn) client was blocking my DNS enumeration efforts. I realized I couldn’t query public DNS servers. Disabled the VPN client and enumeration started working after a few hours of beating my head on my desk. :grimacing:

I reconfigured the VPN client to allow use to my own DNS servers instead of the VPN provider’s ā€œprivateā€ DNS servers…Back in business.

Hi guys
I just find p******-p******.t****.h**
What is the problem?