TUTORIAL Laboratory.htb id_rsa for root and the root key
by ARhOmOuTEd - November 16, 2020 at 05:54 PM
#1
Laboratory id_rsa for root and the root key
Hidden Content
You must register or login to view this content.
#2
you can get the user.txt and root.txt, when you are logged in as root.

cat /home/dexter/user.txt
cat /root/root.txt
#3
This is the easiest way to get the flags. Have fun!
#4
Here can you find some write ups for the box:
https://shubhkumar.in/htb/laboratory/
https://0xprashant.github.io/posts/htb-laboratory/
#5
(November 16, 2020 at 05:54 PM)ARhOmOuTEd Wrote: Laboratory id_rsa for root and the root key
[Hidden Content]
.
Hi,
Is it really working? please let me know
#6
(November 18, 2020 at 01:37 PM)bindastbol Wrote:
(November 16, 2020 at 05:54 PM)ARhOmOuTEd Wrote: Laboratory id_rsa for root and the root key
[Hidden Content]
.
Hi,
Is it really working? please let me know
Yes, why shouldn't it? It's the id_rsa key from the root user.
#7
Here is still the id_rsa from the root user.
#8
Are u still looking for the easy way to get root on this box?
#9
Can't unlock it. Could you make that public?
#10
(December 10, 2020 at 02:58 PM)3n1gm4 Wrote: Can't unlock it. Could you make that public?

This machine is fairly simple, grab the id_rsa from dexter GitLab repository and SSH with it. Once you're in, you can enumerate using lineum or w/e and lock your target on SUID that will point you to a docker-security path. Read the file 'docker-security' and you can see a path variable misconfig which you can exploit

https://www.hackingarticles.in/linux-pri...-variable/

Possibly Related Threads…
Thread Author Replies Views Last Post
SELLING HTB Spectra root rsa qporraisso 0 3 Yesterday at 01:05 AM
Last Post: qporraisso
FLAG HTB Phonebook Script, Run and Done echo1911 0 166 February 25, 2021 at 09:19 AM
Last Post: echo1911
TUTORIAL Ophiuchi HTB mini writeup + Root hash bugbunny 5 455 February 23, 2021 at 05:33 AM
Last Post: riskyblooky

 Users browsing this thread: 1 Guest(s)