Official Trickster Discussion

wy1d · December 24, 2024, 1:11pm

Enumerate the version… look for exploits…git gud

aaronstx · December 24, 2024, 5:09pm

im stuck in d****r, any hint to gain access to root?

aaronstx · December 24, 2024, 9:07pm

a lot of enumeration in d****r but finally i pwn trickster

simpletester · December 25, 2024, 10:25am

I’m stuck on it too since yesterday

simpletester · December 25, 2024, 1:33pm

May I ask for any hint what am I missing so far?

Even if I’m receiving a root user from notification (not the one with root.txt) I still can not move forward. Caps? Or is it a d*ck** bug to exploit?

Thanks

simpletester · December 25, 2024, 4:10pm

Ok got it. Case was to investigate files from Brasil

Thanks for all the hints and good luck!

L4urenss · December 26, 2024, 3:23pm

I am stuck with the priv esc. i am in the container as the root user but i can not find a way to escape it.

simpletester · December 28, 2024, 8:50pm

You are close to it. Sudo with L and linpeas will help you to move forward.

Good luck!

mr9hacker6 · January 4, 2025, 4:26pm

The private key where I found, doesn’t work for adam (maybe will there stands “api_private_key”). And also all other possible hashes (secret.txt from zip-file and the secret in parameters.php) are not crackable. Also with the database-credentials for adam doesn’t works… Do I overlooking something? Thanks for any hints

Chirag777 · January 5, 2025, 5:05am

bro whree are u stucked?

mr9hacker6 · January 5, 2025, 8:03am

To find the credentials for adam. Read my last written message…

Chirag777 · January 5, 2025, 8:55am

i have done this machine a month ago i think they are in .br file

mr9hacker6 · January 5, 2025, 11:59am

yes, that is clear. But where in this .br files? The private key where I have found doesn’t work for adam in ssh login. And the other credentials where i have found in the .br file were credentials for the DB for adam (where by the way also don’t go ERROR 1698 (28000): Access denied for user 'adam'@'localhost'). How can I login as adam, via SSH?

Chirag777 · January 6, 2025, 3:55am

there are more .br file in backups folder check them

v1nd1c4t10n · January 6, 2025, 4:19am

Yes, try the creds for SSH.

mr9hacker6 · January 6, 2025, 7:24am

I’ve already tried that with the found private key in a backuped .br file ssh -i path/to/id_rsa adam@trickster.htb, without success… Is the command wrong?

mr9hacker6 · January 6, 2025, 8:45pm

extremely confusing, using a password stored as a database password for ssh login, instead of the private key which was also discovered…

WhiteCar · January 7, 2025, 8:02am

I escalated my privileges and now in docker. I decompresed all br files. How to find password? May be any filters? Help me please

mr9hacker6 · January 7, 2025, 4:05pm

unzip the two zip files in Backups folder and inside there decompress the .br files. There you will find a file with creds inside

kommpn · January 7, 2025, 6:10pm

am I really supposed to use all the rockyou.txt to crack the hash? what the heck, my pc is dyin

Topic		Replies	Views
Official Axlle Discussion Machines	95	2396	October 13, 2024
Official Caption Discussion Machines	114	3980	January 24, 2025
Official Infiltrator Discussion Machines	55	2315	January 23, 2025
Official Keeper Discussion Machines	336	14946	September 20, 2024
Official Cicada Discussion Machines	208	10001	January 13, 2025

Official Trickster Discussion

Related topics