This is a not not a guess box. Its dificult to me .
this box is bullshit
I’ll be nice and leave this statement if you can’t explain how this works You didn’t beat it You were helped 
Type your comment> @wabafet said:
I’ll be nice and leave this statement if you can’t explain how this works You didn’t beat it You were helped
but I think I may have been a little harsh on the owner of the box I think I see what is going on and I think guys hate to say this ■■■■ but apparently what is wrong with this box is something neither you nor I know so lets stop whining and kick this things ■■■ we need to learn this method it I can say for sure is 100% viable to exploit this and was found in the wild and he knows more than us so if we message each other and spend as much time on this challenge as we do complaining one of us will beat it
I will also add this due to this being shown to me I now have a better idea of how to find something like this in the future and get paid for it as for the actual exploit here who knows but the method or one of is crazy I have never seen a var of that sort attackable now my program will have to get an upgrade for sink locations for fuzzing thanks @creator @peek
Type your comment> @redhot said:
25, 465, 587 …
is this supposed to be a hint because if it is I think I might follow your point can u pm me?
Spoiler Removed
I am not chatting with myself I am quoting a persons comment and asking them if it is a hint how the f** am i chatting with myself quoting some asking them a question?
so therefore let me ask u this are u talking to yourself because you just did the same thing you accused me of but your post was actually useless as it had no point but to try to be cute and I actually asked a question so if that’s the case why would you compound the problem when I am using the normal function of a forum they did make quote for just that.
But seeing your such a funny guy I will actually just come out and ask since u seem to be the authority of who can ask what
@redhot is your post to the forum about the three ports mean this ?
10.10.10.126 pop3.unattended.htb
10.10.10.126 imap.unattended.htb
10.10.10.126 smtp.unattended.htb
people talk on riddles on here to avoid this but I am not going for you throwing shade at me because you cannot figure a challenge out
Type your comment> @wabafet said:
so therefore let me ask u this are u talking to yourself because you just did the same thing you accused me of but your post was actually useless as it had no point but to try to be cute and I actually asked a question so if that’s the case why would you compound the problem when I am using the normal function of a forum they did make quote for just that.
But seeing your such a funny guy I will actually just come out and ask since u seem to be the authority of who can ask what
@redhot is your post to the forum about the three ports mean this ?
10.10.10.126 pop3.unattended.htb
10.10.10.126 imap.unattended.htb
10.10.10.126 smtp.unattended.htbpeople talk on riddles on here to avoid this but I am not going for you throwing shade at me because you cannot figure a challenge out
i was reffering to the previous posts. you can always make 1 post instead of 4 btw.
If i misunderstood your intentions i am sorry.
so I ll put an input to redeem myself… initial access doesnt have to do with those ports.
I can have fun with you know I mean come on you sort of left yourself out there obviously im f***** with you I am far from serious just very bored lol
as a side note I just learned how to use quote today and I also just realized I did not need to make as many posts I do not use social media or forums much so forgive the douchery
if you need help pm me I am onto something I do not mind helping you maybe we are stuck on same spot and yes i was trolling got bored sorry
Guys, calm down, this box isn’t broken or something, it is just very hard (not medium) and quite trolly (not that we should expect everything we see to be a hint on the intended way anyway).
I am not sure what the intended way is, since @guly mentioned nobody got it yet above, but the hardest part is the one the domain name hints on, so I assume that’s the intended one.
Still looking for root though…
dont take the hints on the forum too seriously, they are too much confusing.
we have 2 documents, if you read them carefully, you can have a shell
dont blame the author, he is very nice and helpful.
So the ports and that md5 is just troll?
Type your comment> @krypt said:
So the ports and that md5 is just troll?
My guess is juts a rabbit hole
Well… Can anybody tell me if my dirbusting is missing some content? I’ve that site with the troll id’s, a dir saying it was moved to a new server and a way to fetch data that would take years to complete. Is this all I get to figure out a way in or am I missing something?
If some one can PM me I have few questions about this box. I have a lots ideas but not sure for the good way
Type your comment> @krypt said:
So the ports and that md5 is just troll?
md5 is a troll, for the ports, it’s complicated to answer
BTW if you can only do the slow dump. I recommend flushing, increasing threads and not using burp or a proxy
Honestly, this box is not a guess box. Try use the nikto tool. Should be a really good start for foothold if you look closely at the output.
SQL injection is very slow any hints what should I be looking in the database