Could someone please give me a nudge on user2. Read the whole forum pages
I was easily able to get in user1. Then later read the notes and bash history. Found the file lu*it. But when i try to run it using sudo it throws an error and disconnects my shell. Heard people talking about using lua to write the file but lua is not found.
Thank you
Just rooted.
root@traceback:~# whoami
root
root@traceback:~# id
uid=0(root) gid=0(root) groups=0(root)
root@traceback:~#
Hints :
Foothold : Examine the home page and source code. Google combination of words.
User1 : Easy… Just a reverse shell away.
User2 : Read carefully whats in user1’s home page files. Google about how to execute commands using what you have. Man pages will help you.
Root : Look for whats going on in the system. Examine the processes and google about how they work. Once you understand, its easy 
Feel free to pm for help.
Something weird is going on with the SSH session. I got it by copying my pub key, then I got kicked off because someone obviously reset the box. I then followed the same technique and cannot get in again…even though there are both versions of the a*********_k*** file.
I have owned user, I just need to concentrate on root now.
Thinking of stepping away until its quieter or going Premium, too much activity with this box!
the idea to root was some how taken from this walkthorugh :
https://www.hackingarticles.in/fowsniff-1-vulnhub-walkthrough/
Just got my user 2. For those who have read the whole forum and are frustrated, Here’s a little nudge which people haven’t mentioned, Be interactive or else it’ll not execute. This might be stupid to few but it helped me a lot.
Could someone please give me a nudge on getting root. I found mod file in etc and ow**d.mg in /o*t.
Thank you
Very nice box and thank you to the creator.
Learned a valuable lesson about certain message files.
Now that I’ve gotten user, it seems impossible to use a “certain command” to shift into another account from the web shell interface with the php shell?
The only way for that command to work is pivoting from the web shell into a more stable (terminal) shell via keys manipulation, right? Can someone PM me and tell me if I just messed up somewhere, or if getting user flag from the web shell was even possible.
Rooted
Really nice Box.
Learned alot too.
Thank you @Xh4H for that awesome experience.
If anybody needs some help PM me.
Type your comment> @mava said:
Rooted
Really nice Box.
Learned alot too.
Thank you @Xh4H for that awesome experience.If anybody needs some help PM me.
I need some help on root …
Type your comment> @dj3bb4ran0n said:
Type your comment> @mava said:
Rooted
Really nice Box.
Learned alot too.
Thank you @Xh4H for that awesome experience.If anybody needs some help PM me.
I need some help on root …
Check the banner you get when you ssh, find out how it gets displayed in the console and where does it coming from. Monitor the process running in the system.
Hint for user please! I’ve found what w***n can run as So however I cant get it to work properly. When I try to execute it, I get a error saying “no tty present and no askpass program specified”.
PM me please, thank you!
Edit: I got user! working on root now! PM me if you have any questions about users
Type your comment> @Ursa said:
Finally got it. Feel free to DM for help and/or ping me on discord.
ty Ursa
Foothold : Read everything you see and try it . Tweets
User : basic enumeration and google it
30 seconds its pain in the ■■■ haha, rooted
Definitely spent too much time overthinking this one. Always enjoy learning new things, though! Much thanks @Xh4H 
Foothold : Read all the details, OSINT, and google.
User: Enumerate and understand what you can do. No real need for anything fancy
Root: Really the answer smacks you as you gain access but is very easy to overlook…file and process enumeration will bring it all together.
Rooted!
Thanks @Xh4H I learned heaps!
Thanks to @0zxyx and @Joker122402 aswell for the much needed nudge!
If anyone needs hints send me a PM!
Need a hint please…got foothold, used s* -* to find what I can do…Found I have access to a directory with l##t, but no matter what I try I cant run any command against it using s*** ? Do I need to find a way to access w*n via the open s port and get a full shell before I can access /l##t using s ??
Rooted, awesome box thanks a lot @Xh4H!
If you need a hint feel free to PM me 