Possibly Related Threads…

lolo_hacker_was_here · Oct 28, 2023, 01:38 AM

i'm totally stucked at priv esc for nix02, and hints for got it

optimusoggy · Oct 28, 2023, 05:44 PM

DO you have shell using forward shell script?

pwns4k3 · Oct 28, 2023, 10:27 PM

(Oct 28, 2023, 01:38 AM)lolo_hacker_was_here Wrote: i'm totally stucked at priv esc for nix02, and hints for got it

it's been a long time, but if I am not mistaken lxc container manager is installed on the box and is accessible for joe's user so the way to get root was about uploading my image and making it run as a privileged container.

lolo_hacker_was_here · (This post was last modified: Oct 28, 2023, 11:10 PM by lolo_hacker_was_here.)

(Oct 28, 2023, 05:44 PM)optimusoggy Wrote: DO you have shell using forward shell script?

yes, i used ippsec script to get shell

(Oct 28, 2023, 10:27 PM)pwns4k3 Wrote:
(Oct 28, 2023, 01:38 AM)lolo_hacker_was_here Wrote: i'm totally stucked at priv esc for nix02, and hints for got it

it's been a long time, but if I am not mistaken lxc container manager is installed on the box and is accessible for joe's user so the way to get root was about uploading my image and making it run as a privileged container.

joe user isn't in lxd group, also i can't upload any files to nix02

optimusoggy · Oct 30, 2023, 04:22 PM

(Oct 28, 2023, 11:08 PM)lolo_hacker_was_here Wrote:
(Oct 28, 2023, 05:44 PM)optimusoggy Wrote: DO you have shell using forward shell script?

yes, i used ippsec script to get shell

(Oct 28, 2023, 10:27 PM)pwns4k3 Wrote:
(Oct 28, 2023, 01:38 AM)lolo_hacker_was_here Wrote: i'm totally stucked at priv esc for nix02, and hints for got it

it's been a long time, but if I am not mistaken lxc container manager is installed on the box and is accessible for joe's user so the way to get root was about uploading my image and making it run as a privileged container.
joe user isn't in lxd group, also i can't upload any files to nix02

its forward shell , please check the logs in whcih focus on wrong ssh root password attempt

lolo_hacker_was_here · Oct 31, 2023, 01:15 AM

(Oct 30, 2023, 04:22 PM)optimusoggy Wrote:
(Oct 28, 2023, 11:08 PM)lolo_hacker_was_here Wrote:
(Oct 28, 2023, 05:44 PM)optimusoggy Wrote: DO you have shell using forward shell script?

yes, i used ippsec script to get shell

(Oct 28, 2023, 10:27 PM)pwns4k3 Wrote:
(Oct 28, 2023, 01:38 AM)lolo_hacker_was_here Wrote: i'm totally stucked at priv esc for nix02, and hints for got it

it's been a long time, but if I am not mistaken lxc container manager is installed on the box and is accessible for joe's user so the way to get root was about uploading my image and making it run as a privileged container.
joe user isn't in lxd group, also i can't upload any files to nix02
its forward shell , please check the logs in whcih focus on wrong ssh root password attempt

i found this line in powershell.log and i tried password but it dosen't work
ScriptBlock_Compile_Detail:ExecuteCommand.Create.Verbose] Creating Scriptblock text (1 of 1):#012invoke-command -computername 192.168.24.89 -scriptblock {c:\users\joe\desktop\get-logs.ps1 -name joe -p HWaKJkUFgRe56WzG} -credential (Get-Credential)#012#012ScriptBlock ID: 012e044e-199c-47af-9680-9a8e876b5597#012Path:

FR133NDS · Feb 16, 2025, 12:58 PM

There is any hint on NIX 03 ?
i found the description for client_banking user, but the password not working at all.
i also already collect all password from beginning and still not working

Possibly Related Threads…
Thread		Author	Replies	Views	Last Post
	[MEGALEAK] HackTheBox ProLabs, Fortress, Endgame - Alchemy, 250 Flags, leak htb-bot	htb-bot	92	8,461	3 hours ago Last Post: unionstorm
	Hack the box Pro Labs, VIP, VIP+ 1 month free Method	RedBlock	25	2,521	10 hours ago Last Post: cry_elite
	CBBH Write Ups	hiddenhacker	25	6,580	10 hours ago Last Post: cry_elite
	[FREE] CPTS 12 FLAGS	pulsebreaker	84	2,922	10 hours ago Last Post: justhelpmefly
	[FREE] HackTheBox Academy - CBBH CDSA CPTS All Modules Flags	Techtom	33	3,096	10 hours ago Last Post: justhelpmefly