Jan 26, 2025, 06:55 AM
|
BigBang a Linux - Hard Machine
by StingEm - Saturday January 25, 2025 at 03:24 PM
|
|
Jan 26, 2025, 08:29 AM
zlib is not active on the machine
This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.
Jan 26, 2025, 09:02 AM
└─$ python3 LFI.py /etc/hosts
PNG URL: http://blog.bigbang.htb/wp-content/uploa...01/1-7.png File Contents: GIF89a\nM127.0.0.1 localhost ::1 localhost ip6-localhost ip6-loopback fe00::0 ip6-localnet ff00::0 ip6-mcastprefix ff02::1 ip6-allnodes ff02::2 ip6-allrouters 172.17.0.3 bf9a
Jan 26, 2025, 09:14 AM
b'eHNzYjNXbkRNeGt5MThaandqdHhPdDdCVlFta253TnZTOHJSN1I2T2FtU1dEVHJqNzM='
2 [*] The data:// wrapper works b'c0psVThwclhZenJ0WlBoczVIV3NQT2RzRU5wSnlNTkRrU1lPaTBsa3hDOWxJVVhQMXE=' 2 [*] The php://filter/ wrapper works b'K3UO8kyPygzPTgouCfOPCnJLcgotCoksKSpNzQo18zUyNakyzTN1tEjzK4kIdUy28AkCAA==' 0 [+] Exploit preconditions are satisfied b'RTU0dWx4c2V4Z29wN1pINFowd3Nlb0YxV21tSUpCY3ZCSEdCbzBTQ3RQOENhb0k0dGg=' 2 [*] The data:// wrapper works b'MVRWbFBnRTMzbGpLREtRZ0NWeGk0YzZlbEFoZ2NGbTRUbFdHSWNESEExOFlsUE5OYkM=' 2 [*] The php://filter/ wrapper works b'y60wdww2LypIKw8NsggKyknKdytyMfQOL08tC6hwNwipCjY3NTAoDkt0DXLKcPUsDfYFAA==' 0 [+] Exploit preconditions are satisfied [x] Error Invalid base64-encoded string: number of data characters (81425) cannot be 1 more than a multiple of 4
Jan 26, 2025, 09:37 AM
(Jan 26, 2025, 09:14 AM)gwen12345 Wrote: b'eHNzYjNXbkRNeGt5MThaandqdHhPdDdCVlFta253TnZTOHJSN1I2T2FtU1dEVHJqNzM=' How did you get the zlib to work ? You cannotnjust delete zlib from the checks, if there is no zlib the exploit will fail as zlib is used to chunk stuff in the exploit... This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.
Jan 26, 2025, 09:48 AM
Exactly, there is no zlib on the box and looking for alternatives how to get around that.
Jan 26, 2025, 09:52 AM
(Jan 26, 2025, 09:48 AM)peRd1 Wrote: Exactly, there is no zlib on the box and looking for alternatives how to get around that. I think I will stop looking personally. Like I can have a good life without being a PHP expert ... Slept only 5 hours last night because of this ... If someone find the zlib alternative please share ... This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.
Jan 26, 2025, 10:43 AM
Reading file isn't an option here. All we've to do is to execute a rev shell
Jan 26, 2025, 10:48 AM
Jan 26, 2025, 11:10 AM
(This post was last modified: Jan 26, 2025, 11:10 AM by k0iwdxlaxtjxpomup.)
something with create posts without login?
the form has an upload files field too |
|
« Next Oldest | Next Newest »
|
| Possibly Related Threads… | |||||
| Thread | Author | Replies | Views | Last Post | |
| [FREE] CPTS 12 FLAGS | 66 | 1,789 |
6 hours ago Last Post: vlka |
||
| [FREE] 300+ Writeups PDF HackTheBox/HTB premium retired | 370 | 92,593 |
11 hours ago Last Post: lifolifo007 |
||
| Hack the box Pro Labs, VIP, VIP+ 1 month free Method | 23 | 2,218 |
Yesterday, 02:10 PM Last Post: kkkato |
||
| [FREE] HackTheBox Academy - CBBH CDSA CPTS All Modules Flags | 20 | 2,526 |
Apr 29, 2026, 11:06 PM Last Post: op334 |
||
|
[FREE] HackTheBox All Cheatsheets | 3 | 416 |
Apr 29, 2026, 10:36 PM Last Post: op334 |
|