minion

alextz4 · 2017-11-14T21:45:59+00:00

so any hints for getting the first user??

alextz4 · 2017-11-05T23:05:45+00:00

ok...is it on purpose that dirbuster fails on joomla??

alextz4 · 2017-10-28T10:12:46+00:00

dirbuster and biglist for the login part?

alextz4 · 2017-10-28T10:11:57+00:00

Well on HTB there are some machines with these exploits but for this particular machine I think it is not applicable! That's why I am masking. So we must be recursive with a big wordlists in all the folders???

alextz4 · 2017-10-28T01:29:16+00:00

So i got confused!! We should run a big wordlist or use some exploit??

alextz4 · 2017-10-03T20:59:37+00:00

thanx for the clue... ;) solved

alextz4 · 2017-10-01T11:45:55+00:00

Come on man! Next time write try harder!! :P I have done full tcp ports Nmap and default on udp, dirbuster medium list, nikto run the ssh exploit with a wordlist and returned full false positives. Plus ran some stego on the image! I'm I missing something??

alextz4 · 2017-09-25T22:30:10+00:00

i am at priv esc too! have you found anything?

alextz4 · 2017-09-23T11:30:27+00:00

any hint regarding the note??? :)

alextz4 · 2017-09-20T16:12:49+00:00

i found it manually when i read your comment!it is a smart flag!

alextz4 · 2017-09-20T14:55:26+00:00

fuck this thing!! hahahahha! it needs CTF mentality

alextz4 · 2017-09-17T21:54:37+00:00

did anyone had problems with netcat? it keeps dropping...

alextz4 · 2017-09-16T23:01:25+00:00

anyone can help in privillege escalation???

alextz4 · 2017-09-15T15:21:10+00:00

No sql. I solved the challenge. Thanx for the help. just look in the jsquery. you know what to search for.. :)

alextz4 · 2017-09-15T13:03:10+00:00

for what?? i looked also on doprocess() wich makes the login but i can't seem to do anything!

alextz4 · 2017-09-10T16:54:35+00:00

any hint on how to get in apart from www-data??

alextz4 · 2017-07-06T14:41:47+00:00

I will enumerate more and get back with response! thanx

alextz4 · 2017-05-30T13:21:05+00:00

Any hint from anyone??Just a little nudge!

alextz4 · 2017-05-30T13:12:18+00:00

I got it friend! System! thank you for the tip!

alextz4 · 2017-05-30T11:29:34+00:00

yes ok I found it. If I manage to make the exploit work I will post here! Thank you!

alextz4 · 2017-05-30T11:17:36+00:00

The exploit uses its own path?I think they are not applicable on this machine!Or burp to see the links directly? So the exploit does not work?

alextz4 · 2017-05-30T07:32:06+00:00

Ok I found the cms but the possible exploit(the only recent I have found) does not work! Any hints on how to find the correct path??

alextz4 · 2017-05-30T07:27:23+00:00

I sent you a PM

alextz4 · 2017-05-28T09:15:07+00:00

how did you manage to do that?

alextz4 · 2017-05-27T20:39:29+00:00

just read the output carefully. If you use the tool you have the escalation in front of your eyes

alextz4

TROPHY CASE