u know this machine
#koth
fair adder
not my first time
vagrant monolith
Man try harder, but a lot of my stuff is timing out
desert kernel
i am
quiet schooner
!multivpn
pearl gladeBOT
TryHackMe
vagrant monolith
Well, getting in again
fair adder
did u patched something already ?
@desert kernel Nope
vagrant monolith
Nah @dapper escarp s
dapper escarp
I have patched some things
desert kernel
yea im not in optional ones
fair adder
not me
quiet schooner
Blind RCE, perfect
desert kernel
its not
coz with burp i see it
ok
now i cant read the flag
while im that user did u changed that ? ๐
fair adder
which flag?
desert kernel
bread
dapper escarp
bread rce should lead to a shell
fair adder
I didn't touch the flags
fair adder
wp
desert kernel
first time i played this machine
desert kernel
good luck
fair adder
waiting on nmap :/
desert kernel
heheh
have you guys already mooed today
๐
haha
copy cat
ok now it requires suddenly a password
quiet schooner
Maybe because someone patched it
desert kernel
its a ssh key
quiet schooner
Yes, if you remove the key then it goes to password auth
desert kernel
thats allowed ?
quiet schooner
I mean it's not DoS
quiet schooner
It's a valid patch
quiet schooner
@desert kernel You can find that out with some forensics
quiet schooner
dapper escarp
https://tryhackme.com/games/koth/291 best koth game in a long time
lusty portal
https://tryhackme.com/games/koth/291 best koth game in a long time
@dapper escarp Oo, what made it a good game?
dapper escarp
No constant shell deaths and people were fighting to maintain king
lusty portal
Eyy
lusty portal
Any other techniques used to keep yourself as king?
dapper escarp
Just porting in some other chattr binaries and hiding them
food has chattr on there without it being borked
lusty portal
Eyy:)
dapper escarp
some spicy one liners coming in
Gotta work on using files over nc tbh
as someone at one point just removed the chmod binary
lusty portal
I'd just base64 it, copy it over, debase64
dapper escarp
just use wget
lusty portal
or python web server
dapper escarp
or curl -o
lusty portal
Some point during next week we will ask how to make KoTH better too. So keep notes on what makes a good game / what to add
brazen cloud
PogChamp IRL
brazen cloud
kekw
quiet schooner
F
brazen cloud
nice lobby system
dapper escarp
Tyler I reeee
lusty portal
Oo he is playing without streaming
dapper escarp
shrek I cri
dapper escarp
Did I really win AGAIN
brazen cloud
pikachu acts surprised meme
dapper escarp
Expecting oreo to do some spicy stuff and win tbh
desert kernel
reset ?
lusty portal
why lol
dapper escarp
hard box that few can root
frank rampart
desert kernel
nope
if it was that easy
i wouldnt be in that shell
eveything longer then 13 chars gets segfaulted
dapper escarp
Falcon just comes in and claps some cheeks
lusty portal
Rather than random, I might rotate each machine. (Tyler -> Food etc..) or ensure the same doesn't come up again (right after the previous game)
fair adder
I think he wants Tyler again ๐
versed oxide
I dont seem to be getting points for having my name in king.txt
any thoughts or am i stupid?
terse willow
@versed oxide Make sure it's an exact copy and paste of your username
versed oxide
like, just the Plensu part, or the rank and stuff included?
terse willow
Nah, just the Plensu part
versed oxide
yea its in there
terse willow
So I would put in MuirlandOracle -- no extra spaces or information
Are you showing up as the King in the stats page?
versed oxide
nope
terse willow
Uh, chances are that someone is overwriting the file then
terse willow
What's the machine IP?
terse willow
There is no king in the file
versed oxide
hmm. ive been tricked then i guess
terse willow
Quite possibly
The machine will be broadcasting the current King on port 9999
Nothing's coming up from that IP
versed oxide
can i dm a question then just to verify there isnt an issue?
terse willow
Yeah, go for it
versed oxide
and not possibly post anything i shouldnt
latent quest
Agh. Freaking Tyler.
distant zealot
is it bug in king.txt ? some times it got empty and no one can write on it , i have permission and no got error
glass flare
๐
@distant zealot Have you messed something with /bin/bash? Maybe that's the problem.
distant zealot
you deleted it ?
distant zealot
i think you did , i can't write to king
distant zealot
but i didn't any error for writing
@quiet schooner told That'll be someone intentionally doing it ๐
glass flare
Only we two are active on Box lol
i cannot pty to /bin/bash, Maybe that messed with port 9999
distant zealot
maybe
glass flare
I cannot ping the box lol
sonic atlas
lol broke the box
glass flare
reset lol
distant zealot
Connection Refused , i thinks it again TOS ๐
glass flare
I did not did anything lol
distant zealot
you did ๐
glass flare
just did killall -u root
Even I cannot get into the box
My while loop for king.txt is helping me
quiet schooner
@glass flare That's a DoS
glass flare
What's DOS?
distant zealot
@quiet schooner yes he did
glass flare
killall -u root just kills all the users i think ๐ค
glass flare
๐คฆ
rigid raptor
๐
quiet schooner
Read the rules, probably not allowed
glass flare
I don't know that, Sorry!
quiet schooner
Don't run commands if you don't know what they'll do.
distant zealot
now what happen to this completion ?
rigid raptor
if you have to run a command without knowing what it does, it has to be rm -rf / --no-preserve-root on your own system.
gusty cradle
sudo rm -rf /* --no-preserve-root, there is an asterisk there ๐ฐ
gusty cradle
๐
rigid raptor
naah, -r makes it recursive, not the wildcard
gusty cradle
Poor VM
glass flare
hmm
gusty cradle
Nope
@quiet schooner Does the asterisk make any difference?
quiet schooner
Breadth explained it
glass flare
I have even tested it on my own box, and re-installed my kali
quiet schooner
The difference is shell globbing
rigid raptor
oh, so that's what it's called.
quiet schooner
It's really useful to learn
rigid raptor
it's awesome
quiet schooner
Globbing will bite you otherwise
gusty cradle
Ah, thank you for informing me, now I will tell people to run rm -rf / --no-preserve-root on their system ๐
glass flare
lol
rigid raptor
... yes. A very important correction :p
floral cloak
@glass flare You aren't the only one. I did a command john typed in stream and accidentally got me banned via a box. :/
it's a big oof
not doing that again for sure
tidal beacon
in KOTH it is allowed to deny ssh access for others?
Like adapting the authorized_keys file?
fair adder
seems like deleting /etc/passwd is allowed, so, sure?
tidal beacon
thats the thing, I am never sure what is allowed and what is going too far
fair adder
yeah, machine botching is kinda vague
and No attacking other users means their systems on the VPN, or their sessions on the box?
seems like killing user processes is ok though
quiet schooner
@fair adder depends, you can't kill the services running on the box, only patch
gusty cradle
So can we use iptables to only allow my connection for ssh?
fair adder
firewall rules to stop all communication makes me think not
one probably can't set invalid static routes for the other users too
can one remove the php file with a command injection vuln, or is it expected that the php file is modified so escapeshellcmd() and escapeshellargs() are used instead?
quiet schooner
I think you're expected to patch it
tidal beacon
Like editing the authorized_keys file
dapper escarp
Just quick public service announcement
If you are on a spacejam lobby and someone closes port 3000.
DON'T
RESTART THE BOX
FIND THE OTHER WAYS IN
tidal beacon
Why is the host in KOTH so often down for me :/
cobalt jackal
wdym?
tidal beacon
when I try to ping it, or connected via ssh/telnet etc I often get host unreachable/down
cobalt jackal
maybe your vpn?
tidal beacon
its only on KOTH
tidal beacon
and it also kicks you out of everything every 5 minutes?
cobalt jackal
maybe it gets reset
tidal beacon
it does not
its sad that I cannot get a good experience with it this way ๐ฆ Was yesterday and Today with Space Jam and also with Production once
rugged pumice
My VM is not even on :dddd
tidal beacon
If you are on a spacejam lobby and someone closes port 3000.
@dapper escarp Can you close ports? If so how many?
cobalt jackal
I believe the only port you can't close is 9999
cobalt jackal
3000 thousand is a good port if you look hard enough ๐
dapper escarp
666 you've done spacejam enough to know
rugged pumice
I know, but does that count as a backdoor of some sort because it can be exploit ;/d
cobalt jackal
why is it taking so long to boot a machine?
37 minutes left and the machine doesn't load up
steep raptor
is it a windows machine?
steep raptor
oh KOTH game machines. Don't know then
rigid raptor
did someone grab king and DoS it, @cobalt jackal? Or did it just never boot?
rigid raptor
What's the match id?
cobalt jackal
I'll try again later maybe, if I'm up for it
rigid raptor
c:
steel needle
join in kill of hill with me
gusty cradle
Someone broke ssh
Not only ssh a few other services as well.....
@quiet schooner Just wanted to tell you someone broke your machine and pretty much broke all ports, probably used iptables to only allows his ip via ssh
gusty cradle
I know, but are we allowed to do the iptables thing?
quiet schooner
You're not allowed to do that but it's a free week so if they get banned they'll just come back
dapper escarp
You just report the person who did it to
koth@tryhackme.com
and it can be investigated
gusty cradle
I might do that but since KoTH is free for a week, they would probably make a new account and start playing again
gusty cradle
I might still win, since I still have more points I won
dapper escarp
@lusty portal any chance you can reset game 388
think we have an afk in the lobby and I may have borked it
lusty portal
Oh really? Booked the lobby?
Not at my pc atm
Did you sort it?
Ping Ashu if not:)
weary kindle
It's done
north cedar
light scaffold
cobalt jackal
@woeful sundial I was randomly checking your profile and I see this xD
woeful sundial
?
woeful sundial
Mwahahah. Thanks so much!
cobalt jackal
btw our koth machine is taking too long to load
I don't why that happens I can't even ping it
fair adder
I've been using the kali room, and it seems to work better since I have a pretty bad connection
tepid forum
does anyone have some linux detection evasion resources? it would make koth a bit easier if the entire world couldn't see that I have a shell login
dapper escarp
one of the main ways to find someone is by finding the tty they have
if you run /bin/bash for example
you will suddenly have a massive target on your back
or get slapped with a wall of urandom
sly lichen
Brimstone, you seem to be in pretty much every cybersec discord I'm in.
cobalt jackal
yo this vpn issue is really getting on my nerves
I regend, changed the servers still nothing
steep raptor
how long have you had VPN issues
had issues like 3 weeks ago
@cobalt jackal not sure if you are getting the same problem. Where your scan just fail because they can't see the rhost machine reeE
spice elm
anyone available to play !
cobalt jackal
guys joing the KOTH-1 voice channel if you're in the koth lobby. That's why it was made lol
distant zealot
yup
primal stag
For KOTH do you get a openvpn config to connect to to hit the targets?
harsh obsidian
Okay, I just got my a$$ handed to me on KotH. Has anyone played Space Jam yet?
@glass flare that was a painful KotH for me. Mind if I ask you some questions?
full grove
Spacejam is a relatively easy one lol
rugged pumice
find / -perm -u=s -type f 2>/dev/null
distant zealot
king.txt deleted ?
distant zealot
gg
nova tide
https://tryhackme.com/games/koth/join/8aa3676a7b8ac8fcba0e2dfa
@cobalt jackal its still making on click to join the game even though it ended hours ago?
distant zealot
lusty portal
@wicked tangle Removed you from Monday's competition game
As you're already in another
distant zealot
whats is monday competition game ?
wicked tangle
@lusty portal why??
lusty portal
You're already in another game:)
wicked tangle
Which One I confused
lusty portal
Tuesday's game:)
wicked tangle
Why is that
distant zealot
๐
lusty portal
Are you able to play Tuesday?
lusty portal
Great thanks:)
wicked tangle
Pleasure @lusty portal
late quest
@gloomy shale bella!
gloomy shale
finalmente italiani๐
hot remnant
Hi there.
Kingofthehill starting in 15 minutes: https://tryhackme.com/games/koth/498 feel free to join.
Hi @devout gulch !
devout gulch
hi
late quest
@devout gulch gg on food man
devout gulch
thanks
steep raptor
@lusty portal is everything on for next week? "KOTH competition"
steep raptor
cleaned out that email can you please send another one sorry
late quest
@woeful sundial did you kill me 
late quest
F
i was so close to a flag too
ahaha
@devout gulch @hot remnant do you see the box up?
devout gulch
nope
woeful sundial
Well we don't seem to have enough people even playing to reset the box... ๐คฃ ๐คฃ ๐คฃ
late quest
if peach answers we should
rugged pumice
shoot me inv link, I'll join if you need a reset ๐
fair adder
huh, one can join games in progress, that's intersting
rancid pewter
How do I join the KOTH competition
The link that I received in the email is for the logo competition
lusty portal
Well we don't seem to have enough people even playing to reset the box... ๐คฃ ๐คฃ ๐คฃ
@woeful sundial I'll update it so the number of resets are based on users playing:)
dapper escarp
Wait is John playing koth again? I need to queue up and snipe him again ๐ค
glossy vessel
is anybody going to stream the competition?
late quest
you are playing vs him
glossy vessel
why are you not taking part?
dapper escarp
I don't fancy taking part in a "who has the better autopwn" comp
quiet schooner
I thought these were different boxes?
fair adder
it looks like the box is still up after https://tryhackme.com/games/koth/498
that seems odd
did the reset confuse something?
lusty portal
It will be up for 2-3 mins after
fair adder
ah, ok
quiet schooner
skidy fix it so save yourself some AWS credit
brazen cloud
boldly assumes skidy has credit and not debt to AWS
late quest
i even forgot how i got to skidy account
fml
i did it because i got the flag but i forgot to note how
fair adder
the box from 498 is still up it seems
devout gulch
i might have reboot it during the match, might be the cause ? ๐
fair adder
after the reboot at ~45 minutes in?
devout gulch
nope, it got reset a couple of times after my reboot
latent quest
If anyone still wants to join, the link is here:
@low whale Thank you!
fair adder
@lusty portal not to be a jerk, but the box from game 498 is still up. i just want to let you know this looks like a problem
it's been nice, i've had more time to figure out how onushin horked it
devout gulch
i should have removed my scripts from tmp ๐
fair adder
where are they, i'll remove them for you
:)
i guess, since the box is still up, you can remove them yourself
devout gulch
@lusty portal how do you guys shutdown boxes on timeout? hope it doesn't involve ssh
terse willow
@devout gulch They're AWS instances. They can be shut down from the backend without actually touching the services on the box
Like pressing the power button on a computer
lusty portal
Expires in 1 minute apparently
Hmm
Should have expired way sooner
Its dead now
@fair adder Thanks for letting me know, will investigate
oooooo
If you reset the box
It adds an hour to the start time
Thats annoying
quiet schooner
Dammit skidy
lusty portal
Need to still keep the old expire date
quiet schooner
Well, that'll save your kidneys
devout gulch
lol mystery solved ๐
fair adder
@lusty portal i love a good mystery, a mystery with an ending
What's the bug bounty on here? ๐
flat remnant
Isn't there meant to be at least 1 way kept open for KOTH?
@rancid pewter are you on the box with me?
quiet schooner
@fair adder There's definitely a security bug bounty for THM
@flat remnant You're allowed to patch them, but the services can't be stopped
fair adder
Not with that attitude
surreal sonnet
lusty portal
You can check by hovering over the flag icon on the flag submission box
fair adder
closing one port is allowed right?
Generally the accepted guideline is don't shut anything down
nimble tangle
As long as there's an entry point you're fine.
rigid raptor
^
fallow birch
someone for a question on shrek ?
vagrant monolith
@rancid pewter is that you in the koth game?
rancid pewter
yeah
vagrant monolith
nice job
vagrant monolith
Yep, you were really fast
rancid pewter
You did a nice job too
late quest
how many flags are in food total?
rancid pewter
8
quiet schooner
@late quest Impressive
late quest
today it took me a whole hour to do nothing on food machine
quiet schooner
food is one of the easiest
nimble tangle
@late quest I think we all do that sometimes, just spent 20m to do a simple SQLi
quiet schooner
Watch the spoilers
nimble tangle
Sorry
gusty cradle
I only have 7 flags, still need to find the last one on Food
late quest
what are the hardest machines?
lusty portal
Tyler
steep raptor
one of the ports on tyler is slow as dirt
late quest
i got all the flags on that too
heady robin
Can people in king of the hill just drop down a service?
steep raptor
no
heady robin
Oreo?
steep raptor
closing the port isn't allowed only patching it but leaving the service open
done with that game
started 30 mins late whoops
that's right I'm Oreo
dapper escarp
@steep raptor if you leave other ways in
fair adder
along with "reset" this needs a "change the box"
heady robin
With the tag 0xD and god i thought we had lost in the beginning
dapper escarp
I deem closing port 3000 patching on space jam
dapper escarp
Not really
People only know 3000
If you spend time finding the other two ways in youโre golden
dapper escarp
๐๐๐
late quest
But even getting King or root flag becomes hard after few minutes because people make it harder
Gotta be fast
heady robin
Stupid question but how do i connect to an host with a key file?
steep raptor
ssh -i private_ssh_key username@rhost
dapper escarp
Nah
steep raptor
the public ssh-key is the one that goes in the authorized_hosts file
heady robin
If That's what you are asking
@late quest Oh yep thank you
steep raptor
OSCP guy in the background "Try Harder harder.."
late quest
Curious to see shrek and finish priv esc on production
Wish You could choose the machine
agile oak
Hi, I signed up for koth, but I can't participate that day... but I couldn't find where to cancel
does anyone know?
or I don't need to cancel?
quiet schooner
@lusty portal
latent quest
If editing is possible I'd like to tweak mine a bit as well. I looked at my calendar after signing up. 
agile oak
rugged pumice
lol, thank god im not in this 1, tar๐โโ๏ธ autopwn
native plume
fallen portal
lusty portal
or I don't need to cancel?
@agile oak please let me know: ben@tryhackme.com
manic hamlet
anyone up for koth ?
vagrant monolith
koth is addicting
vagrant monolith
haha @gusty cradle patched the privesc even?
gusty cradle
@vagrant monolith Yep
vagrant monolith
Nice
gusty cradle
๐
lusty portal
koth is addicting
@vagrant monolith https://tryhackme.com/games/koth/556
The King is catching up:)
fair adder
haha
vagrant monolith
I was a bit lucky; @gusty cradle learned me a new trick ๐
late quest
im so bad at patching up and disrupting others
gusty cradle
@vagrant monolith ?
vagrant monolith
I joined another game @gusty cradle and got Tyler again
gusty cradle
๐
vagrant monolith
And you happen to just teach me the hard way you can also just patch the privesc
gusty cradle
๐
late quest
can i learn it too? ๐
vagrant monolith
Me too btw @late quest , I'm to focussed on myself
late quest
i need to find shrek and production
vagrant monolith
Yea, those are nice too. I like all the boxes actually
devout gulch
there should be an option to leave for a limited time if you join a ongoing match ๐
late quest
@vagrant monolith do you want a tip for the 6th flag ๐
vagrant monolith
Ohh yeah sure
late quest
oh cmon
someone deleted everything in the box
can someone join to reset the box really quick?
they removed the whole cms lol
glossy vessel
@late quest do you know who exactly did that?
late quest
i was so happy i finally got shrek for the first time
ruined
@low whale can you do anything?
low whale
what exactly do you need?
low whale
do you know who exactly?
and by deleted, you mean literally deleted the files?
they could have edited the web server to not show the routes to those pages
late quest
would that be against the rules aswell? but ye iirc it was 404 errors on all those resources
dapper escarp
Yall would hate doing food with me. First thing that happens is the user pasta gets kill all and user deleted
low whale
@late quest mind sending us an email at koth@tryhackme.com
with the game ID and the user you think is doign it
late quest
yeah i think it also counted a flag twice
dapper escarp
Thought it was koth@pearl glade for complaints?
low whale
yess it is @dapper escarp ๐
young walrus
Hi evryone,
In https://tryhackme.com/games/koth/576 someone killed SSH & HTTPD
my guess is it's the current king, that previously deleted everything in /var/www/
glossy vessel
@young walrus yeah this was just submitted by @late quest ^^
young walrus
@glossy vessel that's sad..
glossy vessel
i know, behaviour like that is not tolerated :(
dapper escarp
Lol
young walrus
vagrant monolith
Hi evryone,
In https://tryhackme.com/games/koth/576 someone killed SSH & HTTPD
@young walrus
Is it a level 1?
I had some weird experience also when a level auto pwnd the whole box in 2 secs
young walrus
@vagrant monolith no, it's BlackMrx that is playing dirty
late quest
i think its lvl 2
young walrus
fair adder
sorry guys ๐
that's me
i was just messing around
@late quest @young walrus @vagrant monolith ๐
sorry guys
glossy vessel
you should have read rules beforehand
fair adder
is disabling SSH and HTTPD against the rules ??
young walrus
@fair adder patching is ok, removing everything is not
glossy vessel
fair adder
then i saw resets and went for SSH and HTTPD disabling
ah i didn't really read the rules !
sorry
anyway i have a game that starts Friday if anyone would like to join
this time i'm gonna play fair
quiet schooner
@fair adder You have to keep services running.
full grove
^
There's nothing saying you cant enable certain security features in ssh's config ๐
lusty portal
@fair adder thanks for being honest though, you saved me some time having to investigate the machine to find out who was messing around.
fair adder
i have a question
if you mess up with the ssh private key is it alright ?
cloud sand
why is it always tyler
weary kindle
regening keys is okay
nimble tangle
@fair adder I feel ya on that one, we had atleast 2 hours of Production last night
full grove
yeah, regenning keys is good. its a method of mitigating an exposed private key
nimble tangle
Is Pain supposed to be active? I retrieved a file containing a flag yet the site says there's no flags to collect on the box?
rich narwhal
was it from the http?
nimble tangle
Nope
rich narwhal
oh
nimble tangle
The site also says there are no flags to collect. I also got a password but it doesn't work for the given user (That doesn't really mean anything as it could just be a file that exists etc. but yeah) starting to get a bit stumped for ideas at this point
nimble tangle
User is implied within the file
late quest
well the ones i tried didnt work
fair adder
that's against the rules
nimble tangle
xb8 Idk how you've claimed 5 flags when there's only 4 on the box???
vernal gust
@late quest ^
nimble tangle
That's super weird
fair adder
So my mouse slipped and I might have accidentally joined the above linked game by @spice elm
late quest
i already sent an email to koth@pearl glade about it
nimble tangle
Colio
nimble tangle
Hmm
fair adder
Is there any way to leave a KOTH game?
lusty portal
Options, top right
fair adder
There isn't an option to leave?
nimble tangle
Someone needs a reminder about Rule 3
fair adder
he means in a game that already started
late quest
https://tryhackme.com/games/koth/598 saving koth id for mods so they can check out the flag this
nimble tangle
Yeah this round has been slightly borked as someone was playing with the koth binary and it's stopped recording points
quiet schooner
@nimble tangle If you find out who, I think skidy was explicitly banning messing with the service on 9999
nimble tangle
Unfortunately the only thing we have to know it was happening was the commands used were in .bash_history and by that point I think most of us were root
devout gulch
looks like you are killing it ๐
rancid pewter
Hello
manic hamlet
how can u add name in king.txt i am trying for 40 min
deletes ur .vim file
pls tell
rancid pewter
chattr
young walrus
@rancid pewter Something wrong with your submission? :3
rancid pewter
Gg
young walrus
@rancid pewter <3
dapper escarp
@lusty portal bby is it too late to sign up to the koth tourny ๐
fair adder
Optional is scary lol
terse willow
optional is terrifying
fair adder
You have nothing to fear but fear itself
dapper escarp
doubt
lusty portal
@lusty portal bby is it too late to sign up to the koth tourny ๐
@dapper escarp Nope, can I put you in the wednesday game if you want?
rugged pumice
lol, optional vs sherlock, that would be tense to watch
lusty portal
what time?
@dapper escarp Can I be a pain and ask you shoot an email over to ben@tryhackme.com - On my laptop downstairs. It will respond me, unless you wanna ping me later
dapper escarp
Yeah no problem man, will send one in a sec
rugged pumice
I wonder how many people who are in the 267 forgot they had a comp today ๐
fair adder
anyone streaming ?
fair adder
quick, already 6 flags: o
fair adder
@rancid pewter God ur scary
rancid pewter
Why
fair adder
ur fast as hell
rancid pewter
Ohh yeah
fair adder
i want your king.c :)
rancid pewter
You wont get it
fair adder
worth asking :)
rancid pewter
Yeah
fair adder
Yes gimmi ur king
rancid pewter
Soo good luck I am all setup
fair adder
lol
cobalt jackal
tf happened
anyone getting a connection from tyler?
maybe it's me I'm gonna restart
fair adder
I got stuff
keen vine
floral cloak
what rank is required to play KOTH?
rugged pumice
lol, finally got time to patch :3000 on spacejam
late quest
You can pwn space jam much easier than 3000
rugged pumice
that's a KEKW right there hahahahahahaha
fair adder
hello, there is a sql injection in that box or its just nmap false positive?
primal estuary
usually defeats the point of KOTH if ppl give you hints ๐
floral cloak
For some reason, dc is running an event. However, I can't join it
weary kindle
You might havce to change your experience level in your profile
potent oyster
hola!
desert kernel
i got 2nd flag u already got king
potent oyster
๐
potent oyster
1st time
desert kernel
sureeeee
potent oyster
yo!
desert kernel
i call bullshit
desert kernel
yea but on production
there is some limited shell
i tryed so much to break out of it
and i always get locked out of ssh
when i play koth
dapper escarp
Again itโs not a forgiving game mode
Gotta be fast to get in through low hanging fruit
desert kernel
i was in
getting in is not the problem
its also not fair when u play against people who already rooted the box 10 times
dapper escarp
Sounds like salt
Iโve played a decent amount of these boxes, yet I still get put down by people on their second time
It just depends on your own ability
desert kernel
its not salt
if you know the method how to get root etc and others dont
ofcourse you win
rancid cove
As @dapper escarp mentioned above, Try Harder
The Motto of OffSec
Repetition of a task can translate into proficiency at doing it.
brazen cloud
Especially with KOTH - hopefully as more blue team content get's developed, it'll be easier to pickup skills like that ๐
weary kindle
Hell, I made Production and people still beat me on it
latent quest
I think I could way to put it can be ""Keep Trying". If you don't get it keep looking. Find another way in. And root doesn't mean win. You can defiantly pick that up from snagging other flags and making life difficult for other peeps.
brazen cloud
^^
dapper escarp
I can echo that. Iโve played these rooms way too much and still get beaten
Usually by crisco as that user is insane
weary kindle
Like, I have the root password that no-one else has and I still get my ass handed to me
dapper escarp
Itโs no different to playing csgo or something. You need to expect to lose before you get better
desert kernel
no
rancid cove
Just as an open air question, could I get banned from KOTH for spending my time on the box tripping others up?
latent quest
And still lose when you are better. ๐คฃ
brazen cloud
As long as you follow the rules @rancid cove
rancid cove
I don't think it's to far off from anything in life.
If you don't fail, how will you know what you need to get better at to not fail again?
brazen cloud
They're the only stipulations - if you stick within them i.e. not turning services off then tripping others up is part of the gamemode ๐
rancid cove
Since we're using CSGO as an example, I always play games on the highest difficulty possible. I get murdered and frustrated, but it makes me better so that when I do win or finish the task, I know that I overcame the best it could throw at me and I (eventually) came out on top
dapper escarp
Shade in all honesty it just sounds like youโre moaning because youโre being beaten
desert kernel
lol
its not that
when u play against people who know how to root the box, and they lock you out of ssh
well production is a box your not coming back on then
but dont worry i wont give up
i will keep trying
im just bad at blue team stuff ๐
quiet schooner
if ssh is your only way in, you need to find more
desert kernel
also found some limited shell
you cant escape from
and some backdoor i dont know the pass off
quiet schooner
Instead of spoiling the box,
neon sleet
also
desert kernel
spoiling ?
neon sleet
desert kernel
you make alot of sense
desert kernel
not
dapper escarp
Shade
neon sleet
?
dapper escarp
Iโm gunna be brutally honest, you have a limited shell. You are limited to 11 chars plus enter
desert kernel
i know
dapper escarp
You gave up
neon sleet
There's 4 ways of entry to all the boxes.
neon sleet
Chances are, if you found a a limited shell; there's a way to break out of it or use it for something else.
neon sleet
I haven't personally done that box.
neon sleet
No
brazen cloud
lmao
neon sleet
Honestly, he hasn't told me a thing about it.
desert kernel
๐
weary kindle
The only other person that I've told how the 9002 shell works is sp00ky, and that's because he wrote the server script
weary kindle
You can either bruteforce or exfiltrate the pass via another access method
weary kindle
It's not too far down in rockyou tbf
desert kernel
weird
weary kindle
~30k
weary kindle
I could have put it at 1.3 mil, so
desert kernel
im already in
stable narwhal
Oh new rotation is out?
quiet schooner
@stable narwhal 2 new boxes
desert kernel
who is crisco
desert kernel
why ?
dapper escarp
Because they know what they are doing and causes a challenge
desert kernel
guy got king for 36m already
desert kernel
dude
dapper escarp
He is beatable
desert kernel
try harder is not gonna do anything
just saying that
im a beginner with koth
its just sounding arrogant
dapper escarp
Like just because someone beat you, doesn't mean share it with the world
desert kernel
while i am
quiet schooner
Try harder is a state of mind
void rivet
@desert kernel what box is it anyway?
quiet schooner
Both of you play nice
void rivet
he obvs just knew the way to root
void rivet
oh wait i think food is the easy root one
atomic shale
Lol if someone is scoring more goals in a football game is that cheating too?
void rivet
yh ik aha
desert kernel
oh yea