Need a nudge on the LFI part . Am I on the right path?
Need help for from i*sr user to the ch**s user.
Rooted.
Fun and very excited.
Thank you
Spoiler Removed
C:\Windows\system32>whoami
sniper\administrator
It was fun, but man, I hate powershell XD
user:
For anyone like me who is struggling with initial reverse after you get execution search here → http://ippsec.rocks
Initial reverse shell like ■■■■ literally 
really hate windows cuz of that.
special tnx to @j3wker ! very fun box! Message me for help
Spoiler Removed
( hmm…i said too much! )
Finally Got the initial shell. thanks to all those who helped me out.
Finally rooted !
That was a tough box to be honest… Don’t hesitate to PM me if needed
I managed the initial shell and I now have 2 sets of creds but struggling to get much further.
I feel I’m missing the obvious but can’t see the woods for the trees!
Type your comment> @WheatleyInd said:
I managed the initial shell and I now have 2 sets of creds but struggling to get much further.
I feel I’m missing the obvious but can’t see the woods for the trees!
I have a doubt about port forwarding but not sure. I’m stuck at the same point.
I’ve got shell access finally … and have 2 sets of credentials. Any hint on how to get user.txt?
Excelent!!! this box was very fun
My hints:
User: don’t use traditional script. Never will work. When you get shell enumerate simple way and use your imagination when you have necessary information
Root: Finish the work of the user. How? Enumerate to know what you have to do
I love this kind of machine. THX
props to @MinatoTW and @felamos - this box was great and you should feel great. Much, Much better than some of the other stuff I’ve seen released here recently.
Hint for user and root
Keep going back to your initial foothold
I am stuck with lfi. can read files, but don’t know which ones I should read. non-local attack is not working on me. any hints?
Type your comment> @FatPotato said:
I am stuck with lfi. can read files, but don’t know which ones I should read. non-local attack is not working on me. any hints?
You are on rite path !! have u tried remote ? ?
there is an awesome blog post from the Indian hacker community explaining this kind of attack …
read that and follow it blindly
Hmmm… I think I may be having issues with the box itself, either that or my initial reverse shell.
My meterpreter shell seems to die every time I try to launch a user shell.
I’ve verified credentials against other services and have a specific service I’m now trying to get a reverse shell via and every time, it hangs and then my meterpreter session/msfconsole seems to die.
Not sure if it’s the box or my initial reverse shell/handler that’s causing it.
Even tried it from a Windows machine too in order to eliminate my script.
Edit - Also tried a number of resets
Anyone else had similar issues?
EU VIP 6 too!
Anyone wanna pm me a hint for initial user foothold?
I’m quite sure I know what to exploit and on what page, but I simply can’t make it output anything