Possibly Related Threads…

LukaXYZ · Oct 31, 2024, 10:01 AM

Thanks for sharing!!!!!!

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.

Takas · Nov 13, 2024, 02:24 AM

I was stuck after finding the main vulnerability but couldn't get the proper payload. Thanks for the directions!

htb-bot · Dec 23, 2024, 09:40 AM

very easy))
* is treat directly, not wildcard

blaster07 · Dec 27, 2024, 01:08 AM

im still stuck here "name=';CALL+EXEC('echo "ss" > /tmp/revshell')%3b--" after creat alias

whare · Dec 30, 2024, 03:07 AM

any idea of how to get the flag?

whare · Dec 30, 2024, 05:54 PM

Im stuck here name= ' or 1=0; CALL EXECVE('ls'); -- -

0xbeef · Dec 30, 2024, 06:32 PM

(Oct 30, 2024, 09:45 AM)Art10n Wrote: Use it in the POST and with Burp Suite

I did that but I am getting a `500` error. Someone please help !

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching.

StingEm · Dec 30, 2024, 07:27 PM

(Dec 30, 2024, 06:32 PM)0xbeef Wrote:
(Oct 30, 2024, 09:45 AM)Art10n Wrote: Use it in the POST and with Burp Suite

I did that but I am getting a `500` error. Someone please help !

You may have already done this... but...
Usually when that happens during a challenge - and I know all is correct - I reset / STOP the instance and then wait 2 minutes and estart - I usually get another IP and things work as they should.

I just had to do it on Replace Me and it fixed the issue I was having - 30 minutes of double checking things to find out it was my Instance of the Challenge I was using.

I hope it helps!

whare · Dec 30, 2024, 07:41 PM

I made a free post of how to do this challenge step by step

0xbeef · (This post was last modified: Dec 31, 2024, 03:16 AM by 0xbeef.)

(Dec 30, 2024, 07:41 PM)whare Wrote: I made a free post of how to do this challenge step by step

Just saw it and saw my mistake too, I skipped something in the process

(Dec 30, 2024, 07:27 PM)StingEm Wrote:
(Dec 30, 2024, 06:32 PM)0xbeef Wrote:
(Oct 30, 2024, 09:45 AM)Art10n Wrote: Use it in the POST and with Burp Suite

I did that but I am getting a `500` error. Someone please help !

You may have already done this... but...
Usually when that happens during a challenge - and I know all is correct - I reset / STOP the instance and then wait 2 minutes and estart - I usually get another IP and things work as they should.

I just had to do it on Replace Me and it fixed the issue I was having - 30 minutes of double checking things to find out it was my Instance of the Challenge I was using.

I hope it helps!

Thanks for you reply, but I was also missing a step but will think of restarting next time

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching.

Possibly Related Threads…
Thread		Author	Replies	Views	Last Post
	[FREE] CPTS 12 FLAGS	pulsebreaker	73	2,330	3 hours ago Last Post: louikizzz
	[MEGALEAK] HackTheBox ProLabs, Fortress, Endgame - Alchemy, 250 Flags, leak htb-bot	htb-bot	89	8,096	4 hours ago Last Post: Xploitd
	[FREE] HackTheBox All Cheatsheets	Tamarisk	10	625	7 hours ago Last Post: chufoni
	[FREE] HackTheBox Academy - CBBH CDSA CPTS All Modules Flags	Techtom	28	2,848	7 hours ago Last Post: chufoni
	[FREE] 300+ Writeups PDF HackTheBox/HTB premium retired	Tamarisk	375	93,670	8 hours ago Last Post: Johe