[RaidenZX]

Would anyone like to give a clue about the manor...? and fullhouse I lost the script to make the footprint and I don't remember how to do it again hahaha

---

Remembering that anyone who doesn't want to help, please don't get in the way... <3 I was stuck in the solar footprint, I don't understand why I can't find anything listing the host folders

[Kazukisora]

Would anyone like to give a clue about the manor...? and fullhouse I lost the script to make the footprint and I don't remember how to do it again hahaha

---

Remembering that anyone who doesn't want to help, please don't get in the way... <3 I was stuck in the solar footprint, I don't understand why I can't find anything listing the host folders

am also stucked there there is hidden directory related to .zfs file system like a snapshot or backup that will not be showing with ls -all

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching.

[0xb043]

this is nice, thanks

[onetxguy]

this is nice, thanks

what the fuck are you talking about, there's nothing here?
what exactly is nice?

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Scraping | https://breachforums.ai/Forum-Ban-Appeals if you feel this is incorrect.

[Pierluigi2497]

this is nice, thanks

what the fuck are you talking about, there's nothing here?
what exactly is nice?

With "zfs list", you can see the backups mount point, the with "zfs list -t snapshot" you can see the snapshot for each backup.
The one that teorically is useful is /backups/neptune/usr/local/fileserver/, inside that folder there is the snapshot that isn't visible with "ls -al".
Just cd into it and go to /backups/neptune/usr/local/fileserver/.zfs, in that directory there is the snapshot/ and inside, the binary fileserver.
Teorically you must RE that file and do some stuff but idk what beacouse i'm stuck on that

[Kazukisora]

this is nice, thanks

what the fuck are you talking about, there's nothing here?
what exactly is nice?

With "zfs list", you can see the backups mount point, the with "zfs list -t snapshot" you can see the snapshot for each backup.
The one that teorically is useful is /backups/neptune/usr/local/fileserver/, inside that folder there is the snapshot that isn't visible with "ls -al".
Just cd into it and go to /backups/neptune/usr/local/fileserver/.zfs, in that directory there is the snapshot/ and inside, the binary fileserver.
Teorically you must RE that file and do some stuff but idk what beacouse i'm stuck on that

Yup am back to it i will ping you guys if i found something

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching.

[choucco]

Hey guys, you need to overflow the password field into the port number. From there you can interact with the local web server, but I'm stuck here.

[Kazukisora]

Hey guys, you need to overflow the password field into the port number. From there you can interact with the local web server, but I'm stuck here.

yeah exactly and we can like over flow the host from the password field with _*512 and _ get striped out cause the _ is not a valid char in the host see that sanitaze host function but am still trying to make it able to request 8080 cause there is a local server runing there and remamber we can upload pdf on www.solrsystem.htb we can play with magic bytes to upload php fiile but i didn't manage to escape .pdf ext and also i don't know where the file is stored 
```struct url {
    char scheme[16];
    char user[256];
    char pwd[256];
    char host[256];
    int port;
    char* doc;
    int netrcfd;
};```

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching.

[Kazukisora]

also we can't use null bytes to keep port eq 80 and write on host -> doc to request like a file from the server

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Leeching.

[choucco]

Oh, how did you manage to upload pdf?