Possibly Related Threads…

Ghackz · Sep 22, 2024, 01:43 AM

any hint on escaping the docker?

h2kevo · Sep 22, 2024, 01:45 AM

(Sep 22, 2024, 01:43 AM)Ghackz Wrote: any hint on escaping the docker?

type history and you will see the root pass

dogedofedoge · Sep 22, 2024, 02:38 AM

(Sep 22, 2024, 01:45 AM)h2kevo Wrote:
(Sep 22, 2024, 01:43 AM)Ghackz Wrote: any hint on escaping the docker?

type history and you will see the root pass

I am not seeing root pass in history

maggi · (This post was last modified: Sep 22, 2024, 02:46 AM by maggi.)

check the bash_history in the container

I thought it was a taunting message about getting the container root and not the system, but it is no taunt: it is the way

dogedofedoge · Sep 22, 2024, 03:02 AM

(Sep 22, 2024, 02:44 AM)maggi Wrote: check the bash_history in the container

I thought it was a taunting message about getting the container root and not the system, but it is no taunt: it is the way

I was able to find something ecased in hastags #something# but it doesnt work for SSH root@trickster.htb, its not the flag either I think

random901 · Sep 22, 2024, 03:12 AM

(Sep 22, 2024, 03:02 AM)dogedofedoge Wrote:
(Sep 22, 2024, 02:44 AM)maggi Wrote: check the bash_history in the container

I thought it was a taunting message about getting the container root and not the system, but it is no taunt: it is the way

I was able to find something ecased in hastags #something# but it doesnt work for SSH root@trickster.htb, its not the flag either I think

try again with the password

random901 · Sep 22, 2024, 03:17 AM

(Sep 22, 2024, 03:16 AM)dogedofedoge Wrote:
(Sep 22, 2024, 03:12 AM)random901 Wrote:
(Sep 22, 2024, 03:02 AM)dogedofedoge Wrote:
(Sep 22, 2024, 02:44 AM)maggi Wrote: check the bash_history in the container

I thought it was a taunting message about getting the container root and not the system, but it is no taunt: it is the way

I was able to find something ecased in hastags #something# but it doesnt work for SSH root@trickster.htb, its not the flag either I think

try again with the password

Try SSH again? It doesnt work, do you suggest I try without the #

su to root rather than ssh

Detector6 · Sep 22, 2024, 04:13 AM

(Sep 21, 2024, 11:30 PM)wtfduw Wrote: sure. my pleasure
As for root, port 5000 is exposed for docker 172.17.0.2
it has changedetection.io installed, tried a couple of exploits but nothing. Anyone got anything?

That is a good find, nice one. netstat and ss didn't show anything as user james, how did you find the ip and port 5000?

maggi · (This post was last modified: Sep 22, 2024, 04:50 AM by maggi.)

(Sep 22, 2024, 04:13 AM)Detector6 Wrote:
(Sep 21, 2024, 11:30 PM)wtfduw Wrote: sure. my pleasure
As for root, port 5000 is exposed for docker 172.17.0.2
it has changedetection.io installed, tried a couple of exploits but nothing. Anyone got anything?

That is a good find, nice one. netstat and ss didn't show anything as user james, how did you find the ip and port 5000?

ligolo-ng to get at the container

mascon · Sep 22, 2024, 04:51 AM

Can someone explain how did you find the ip and port?

Possibly Related Threads…
Thread		Author	Replies	Views	Last Post
	[FREE] CPTS 12 FLAGS	pulsebreaker	66	1,789	6 hours ago Last Post: vlka
	[FREE] 300+ Writeups PDF HackTheBox/HTB premium retired	Tamarisk	370	92,593	11 hours ago Last Post: lifolifo007
	Hack the box Pro Labs, VIP, VIP+ 1 month free Method	RedBlock	23	2,218	Yesterday, 02:10 PM Last Post: kkkato
	[FREE] HackTheBox Academy - CBBH CDSA CPTS All Modules Flags	Techtom	20	2,526	Apr 29, 2026, 11:06 PM Last Post: op334
	[FREE] HackTheBox All Cheatsheets	Tamarisk	3	416	Apr 29, 2026, 10:36 PM Last Post: op334