im stuck in jail, need some help with a breakout if someone is willing to nudge.
PS, what I got is, 1. the jail (i can enumerate all files from jail, but not get their contents) and 2. access to two other service users (i can read files with one of these) 3. a family guy which seems to be a total rabbit hole.
PPS. This is a seriously cool box
Is the countdown timer a rabbit hole? Having a hard time with the initial foothold.
Edit: seems so. Got something anyway, nvm
Is the upload form a rabbit hole? keep getting 404 when trying to access uploaded files.
why server is not compressing my file after uploading avi file ? it says no file selected
Hey there, I’m stuck at a place where I can upload things. Would anyone mind giving me a small nudge what to do there to move on? Thanks in advance!
/e: Alright, moved on. Thanks to a little nudge from @Leonishan .
Anyone any hints on how to get out of jail?
If anyone needs help at this step:
Look at known OH vulnerabilities, don’t get distracted by the p*l version.
got tired of watching so many videos guys , give me a hint on initial shell. thanks in advance
@ScreenSlav3r said:
why server is not compressing my file after uploading avi file ? it says no file selected
May be it is looking for other format than avi ?
rooted a days ago, but it’s really great box, got root in two different ways 
thanks for the creator 
So I’ve read all the comments, enumerated vhosts, files (at least I think so), saw the error for a short time :), but still can’t figure out how to proceed.
I’m pretty sure I’m missing some piece of information to advance.
Will appreciate a nudge.
Please let me know if I can contact anyone for discussion.
Thank you
Rooted. And I’m still surprised that root part turned out to be much simpler than initial foothold and user parts. Took me about 2 weeks, and I cannot say why it happened so, but most likely because I was too lazy
Thanks
just did it, awesome setup, awesome line from enumeration all the way to root… I give it a 10/10 had fun… (minus the 4-5 hours I wasted trying to figure out why something was not working and turned out I just needed to reset because someone changed it…)
Finally rooted! Can I just say that this was an awesome box!?
Loved the recon stage and how you always had to come back to a place you’ve been before to retrieve the information found there to move on.
First of all I have to thank @MrR3boot for creating such a challenging box.
I’ve had so many knowledge gaps during the research of the box that it took me
several discord chats and more than a week of research/frustration/little wins to actually
complete the box.
As others pointed out the user part is much harder than root (although it took me some time and another chat to get to the right path for root as well)
As always I learned much more than actually was required to complete the box 
Thanks again @MrR3boot
Could anyone please give me a nudge on how to get the initial foothold? I’ve done the basic enums found the vhosts etc, but I can’t find the door.
I would also like some guidance if possible. please?
stuck the uploading page
I am bored with these videos
Fucking Excellent box
I enjoyed the user more than root
My hints:
User: Enumerate too much here and google every suspicious word. when you get hidden apps, first understand very nice how is working, don’t start hacking nothing. Then, don’t try to escape from nothing, just search for exploits (in the forum there are very nice hints)
Root: Is a combination escalation between a classic technique and vulnerable code
@MrR3boot Thx, for this box, was amazing and very real.
Can anyone help me with root?
EDIT: Rooted! I kept complicating things for my self. DM me if you need help.
Also, big thanks to @MrR3boot for creating this master piece. I learnt a lot during this.
rooted it was a crazy box
really user more hard then root
Thank you for this box