Official WifineticTwo Discussion

system · March 16, 2024, 3:00pm

Official discussion thread for WifineticTwo. Please do not post any spoilers or big hints.

m4rsh3ll · March 16, 2024, 10:47pm

Dear HTB, please, disable shared instances until wednesday (while we can play with release arena VPN). Many people just used the information that was left in the box and got root.

TheUpbeatAres · March 17, 2024, 10:42am

Got user flag thus far. Feels a bit underwhelming that most of the time I was consumed by solving some technical problems around the box, rather than looking for actual vulnerabilities.

Feel free to reach out for help. Haven’t looked into root yet.

Hrishi · March 17, 2024, 12:23pm

got the user flag. Any update on root ?

cromiphi · March 17, 2024, 1:39pm

Gut user too. No leads for root yet

nks · March 17, 2024, 3:13pm

any hint for root?

longlivedavemustaine · March 17, 2024, 3:31pm

I’m stumped on user. Am I on the right track with trying to troubleshoot rce via the C code in the hardware tab or am I missing something?

cromiphi · March 17, 2024, 3:40pm

it’s the good way

thefilebender · March 17, 2024, 5:26pm

So user flag is pretty easy to obtain. I suspect that im doing it wrong though. Can someone with user flag DM me so we can chat about how to obtain the user flag correctly? I seem to brick the application each time (can only get a shell once, if it interrupts or I accidentally do ctrl + c, I need to reset)

gh0stm5n · March 17, 2024, 6:15pm

I use the reverse shell from the known exploit. The exploit itself does not work for me.

thefilebender · March 17, 2024, 6:22pm

Yeah keep trying with it. The fix is a little bit stupid.

longlivedavemustaine · March 17, 2024, 8:21pm

Is there a workaround that I need to figure out or is the box just broken? Did you get it just with a POC script/unaltered revshell?

thefilebender · March 17, 2024, 9:01pm

not unaltered

wrf · March 18, 2024, 12:18am

nice box.
for user you don’t need the available exploit, you can login into the application, upload and start a program with some malicious code.

for root you need some wi-fi hacking skills…

waeln · March 18, 2024, 12:59am

no man you can check what the explooit is doing and do it manually. I kept on trying for hours, then did it manually and it worked like magic.

lonelywolf1981 · March 18, 2024, 2:23am

In code, “/” in paths is important

cromiphi · March 18, 2024, 7:16am

Use pwncat-cs instead nc for a robust and stable shell

dzxw231 · March 18, 2024, 7:34am

is there a problem in makiana right now, the http request is automatically redirecting https

odin · March 18, 2024, 7:48am

IMHO getting the user flag is pretty simple for a medium box but the real challenge is getting the needed tools on the box to proceed further with the root flag

gh0stm5n · March 18, 2024, 10:05am

Yes and then all the resets makes it very hard.

Topic		Replies	Views
Official Search Discussion Machines	17	2941	April 23, 2022
Official Moderators Discussion Machines	12	2478	October 17, 2022
Official Flight Discussion Machines	70	5498	May 7, 2023
Official Resource Discussion Machines	153	4659	November 23, 2024
Official OnlyForYou Discussion Machines	186	12490	September 7, 2023

Official WifineticTwo Discussion

Related topics