Possibly Related Threads…

lolo_hacker_was_here · Oct 28, 2023, 01:38 AM

i'm totally stucked at priv esc for nix02, and hints for got it

optimusoggy · Oct 28, 2023, 05:44 PM

DO you have shell using forward shell script?

pwns4k3 · Oct 28, 2023, 10:27 PM

(Oct 28, 2023, 01:38 AM)lolo_hacker_was_here Wrote: i'm totally stucked at priv esc for nix02, and hints for got it

it's been a long time, but if I am not mistaken lxc container manager is installed on the box and is accessible for joe's user so the way to get root was about uploading my image and making it run as a privileged container.

lolo_hacker_was_here · (This post was last modified: Oct 28, 2023, 11:10 PM by lolo_hacker_was_here.)

(Oct 28, 2023, 05:44 PM)optimusoggy Wrote: DO you have shell using forward shell script?

yes, i used ippsec script to get shell

(Oct 28, 2023, 10:27 PM)pwns4k3 Wrote:
(Oct 28, 2023, 01:38 AM)lolo_hacker_was_here Wrote: i'm totally stucked at priv esc for nix02, and hints for got it

it's been a long time, but if I am not mistaken lxc container manager is installed on the box and is accessible for joe's user so the way to get root was about uploading my image and making it run as a privileged container.

joe user isn't in lxd group, also i can't upload any files to nix02

optimusoggy · Oct 30, 2023, 04:22 PM

(Oct 28, 2023, 11:08 PM)lolo_hacker_was_here Wrote:
(Oct 28, 2023, 05:44 PM)optimusoggy Wrote: DO you have shell using forward shell script?

yes, i used ippsec script to get shell

(Oct 28, 2023, 10:27 PM)pwns4k3 Wrote:
(Oct 28, 2023, 01:38 AM)lolo_hacker_was_here Wrote: i'm totally stucked at priv esc for nix02, and hints for got it

it's been a long time, but if I am not mistaken lxc container manager is installed on the box and is accessible for joe's user so the way to get root was about uploading my image and making it run as a privileged container.
joe user isn't in lxd group, also i can't upload any files to nix02

its forward shell , please check the logs in whcih focus on wrong ssh root password attempt

lolo_hacker_was_here · Oct 31, 2023, 01:15 AM

(Oct 30, 2023, 04:22 PM)optimusoggy Wrote:
(Oct 28, 2023, 11:08 PM)lolo_hacker_was_here Wrote:
(Oct 28, 2023, 05:44 PM)optimusoggy Wrote: DO you have shell using forward shell script?

yes, i used ippsec script to get shell

(Oct 28, 2023, 10:27 PM)pwns4k3 Wrote:
(Oct 28, 2023, 01:38 AM)lolo_hacker_was_here Wrote: i'm totally stucked at priv esc for nix02, and hints for got it

it's been a long time, but if I am not mistaken lxc container manager is installed on the box and is accessible for joe's user so the way to get root was about uploading my image and making it run as a privileged container.
joe user isn't in lxd group, also i can't upload any files to nix02
its forward shell , please check the logs in whcih focus on wrong ssh root password attempt

i found this line in powershell.log and i tried password but it dosen't work
ScriptBlock_Compile_Detail:ExecuteCommand.Create.Verbose] Creating Scriptblock text (1 of 1):#012invoke-command -computername 192.168.24.89 -scriptblock {c:\users\joe\desktop\get-logs.ps1 -name joe -p HWaKJkUFgRe56WzG} -credential (Get-Credential)#012#012ScriptBlock ID: 012e044e-199c-47af-9680-9a8e876b5597#012Path:

FR133NDS · Feb 16, 2025, 12:58 PM

There is any hint on NIX 03 ?
i found the description for client_banking user, but the password not working at all.
i also already collect all password from beginning and still not working

Possibly Related Threads…
Thread		Author	Replies	Views	Last Post
	[FREE] 300+ Writeups PDF HackTheBox/HTB premium retired	Tamarisk	369	91,704	5 hours ago Last Post: sabbyahmed
	[FREE] HackTheBox All Cheatsheets	Tamarisk	2	339	Today, 08:19 AM Last Post: hibreackignos
	CBBH Write Ups	hiddenhacker	22	6,206	Today, 06:39 AM Last Post: Usercomplex
	[MEGALEAK] HackTheBox ProLabs, Fortress, Endgame - Alchemy, 250 Flags, leak htb-bot	htb-bot	86	7,787	Yesterday, 11:39 PM Last Post: my4ri0d0
	rev_dudidudida	cavour13	1	246	Yesterday, 12:25 AM Last Post: 0xcreep