Rooted !
Very cool box, PM if needed 
Can some help me please?
Got the user flag. Also with p**y found an interesting process related to m****d. Not sure if Iām on the right track or not and how to proceedā¦
Thanks in advance.
Where did the /t******/ folder go on this box ?
I came back to continue this box after a couple of days and the folder can not be found by URL bruteforcer anymoreā¦!?!
any hints for user
Just Got Root.
user 1: Look at to your monitor, find out in google, read the line of code and you will see paradise.
user 2: look at back in smile face. got the user flag.
root : just running enumerate tools, read the line, cat the fileā¦ you get root flag.
too simple? actually noā¦ Feel free to PM for nugget
rooted thanks for all
footholder/user1 :
read the index source code and use google
itās CTF like not like reel life
user 2 :
what can you run as the user2 ?
how ssh connection work ?
root :
what file are wirtable with user2 and what process are frequently running ?
so think simple to read root flag
if itās helpful you can give respect 
3 days on root, cos that *** doesnt trigger my payload, any hint ?
itās just freaking annoying all the people overwriting that connection file.
ill go on with root when not 20 people are working on it at the same time
the authorized keys is still the fucking same, but it still asks for a password for web***** when i put the private key in, what the actual ā ā ā ā
Others overwerkte iT while youre budy
I have a problem doing the ssh-add I keep getting āError loading key ā/root/.ssh/id_rsaā: invalid formatā. Can someone help plz what am I doing wrongā¦
Type your comment> @L1nk0n said:
I got a reverse shell after tinkering with the web shell for a bit, any pointers on how to privesc to a more useful shell would be appreciated
Run Basic Enumeration Scripts and take a look at the home directories. Enumeration is the key ! ?
Type your comment> @s1lv3rst4r said:
I am doing osint but no progress what to search
Box Authors love to include their findings in the boxā¦ try discovering who the author is and common webshells will be found
Rooted this box. The many resets have driven me insane, but managed to root this box. Thumbs up for the creator, it was a nice box.
Type your comment> @Supremacy said:
I have a problem doing the ssh-add I keep getting āError loading key ā/root/.ssh/id_rsaā: invalid formatā. Can someone help plz what am I doing wrongā¦
You wanna generate ssh keys or what ?!?
very good box!
I really enjoyed this vm.
Hints.
Shell - VIew the source and find the connection.
User - Read the file its easy to inject the console.
Root - you have everything in your connection, the message its the clue.
Iāve added my id_rsa.pub to the authorized_keys but I still cant get a ssh without a password being requested. Can someone give me a nudge please. Thanks!
Need a nudge plsā¦Found the backdoor, S***k, but need username and password. Googleād author, tried all know aliases as user and password + combinations of certain txt that stand OUT in sourceā¦still no luck entering the backdoorā¦ 
@Psyfer said:
Need a nudge plsā¦Found the backdoor, S***k, but need username and password. Googleād author, tried all know aliases as user and password + combinations of certain txt that stand OUT in sourceā¦still no luck entering the backdoorā¦
If you found the shell, read the source code on the github and it has the password in it.
@Supremacy said:
Iāve added my id_rsa.pub to the authorized_keys but I still cant get a ssh without a password being requested. Can someone give me a nudge please. Thanks!
Lots of reasons. Most common are
- Someone else changed the file before you tried to SSH in.
- You arenāt using the right account to ssh in.
- You didnāt add the key correctly.