/1802?
#koth
nova tide
novel grotto
@fair adder yea not having much luck π
nova tide
Game N.o 1799,1801,1802,1803 All Tyler Lmao
lusty portal
oooof
nova tide
1800 didnt started or that would have been also tyler
@fair adder share invite link?
@novel grotto ^^^
novel grotto
im in 1801 mate . its ongoing. not sure can u invite whilst going?
fair adder
alr wonna play after you eat
fair adder
okay just tag me so i know
nova tide
ok
novel grotto
gg well atleast i got some points. not bad for a complete guess mess
near sphinx
ok
@nova tide are you guys in game?
fair adder
Im in bed lmfao
nova tide
@nova tide are you guys in game?
@near sphinx completed. Wanna start new one? @fair adder
@near sphinx playing alone?
near sphinx
currently in game right now
near sphinx
yeah me too
nova tide
ahan
gusty cradle
Just got the new machine(Fortune)!
terse willow
Enjoy π
gusty cradle
@terse willow I have foothold but still no flag, interesting box so far
terse willow
Hehe, wait until you play it again before you say that...
That box will never be the same twice..
terse willow
You can autopwn it -- I've got one for it, just to see if I could do it. Not that I would ever use it
But it won't be easy. The passwords and keys all autogen, as does the easiest privesc
stiff egret
Make them all like this!
weary kindle
Hopefully flag autogen will be implemented site side soon asw
terse willow
@stiff egret Hehe, soon
I've challenged myself for my next one
I want to be able to upload a script to an empty box
And autogen everything other than the flags
(Unless the site support for autogenned flags is out by then)
weary kindle
@full grove what was that script you used for the AD Forest?
gusty cradle
@terse willow So will the vulnerabilities be different each time?
terse willow
In Fortune?
Only one of the privescs (the easiest one)
The one I've got planned it'll be a little more diverse
(I.e. it'll be different each time, but still selected from a pool of possible vulnerabilities)
But full autogens are something that Dan is working on, so I'll leave that to him
quiet schooner
@stiff egret the next KoTH box also has randomised passwords etc.
stiff egret
@stiff egret the next KoTH box also has randomised passwords etc.
@quiet schooner I am loving it more and more every second!
gusty cradle
I doubt random passwords and flags would change anything, a good auto-pwn could still manage to work.
weary kindle
I made flag randomization with KoTH as a test bed, more so wanting it to be a sitewide rollout
So normal rooms also having random flags
gusty cradle
π€
weary kindle
KoTH also needs it, but it should be an easy port
winged charm
When playing a koth game today someone made it so that noone could change the king.txt file is this considered against the rules?
lusty portal
Its just using the chattr binary, look into it
nova tide
When playing a koth game today someone made it so that noone could change the king.txt file is this considered against the rules?
@winged charm happened with me as well when i started koth as a newbie, you gotta look up for chattr and how to get binaries from your machine to the other one
winged charm
I will didnt know you could do that ill look into it thanks
steep raptor
is there going to be a new competition this month?
fair adder
@primal stag
quiet schooner
Well that's a bug
primal stag
primal stag
fair adder
gg @primal stag https://tryhackme.com/games/koth/1861
i hadn't played fortune before. that's a fun box
primal stag
gg
stiff egret
@primal stag You played fortune?
primal stag
Yea, I got distracted with something else π
stiff egret
this is gonna take forever
coral maple
sup bois
stiff egret
sup?
coral maple
im xal3xhx
coral maple
haha
ive been having hella bad connection for some reason so this will be interesting
stiff egret
I hope this is fortune, never got it once
coral maple
this is my my first real attempt, so ive never gotten any π
primal stag
Nice @stiff egret
stiff egret
Thanks, Took hell of a time
primal stag
I thought I had it locked down pretty well π
stiff egret
Oh man, I almost lost hope
primal stag
@here anyone want to play agsint the new room?
quiet schooner
You can't use that tag
primal stag
Well, it looks like it worked.
quiet schooner
It didn't mention anyone.
primal stag
I don't care. It won't fire if noone else joins.
icy flare
ember agate
probabbly the same knowledge you are using to vulnerable CTF boxes
but right now public boxes is hard to play because machines are known to many
if you have a friends or others who have not played, it will be most interesting to play with them
dapper escarp
There are a bunch of new machines
So actually itβs a great time to jump on
A lot of more experienced users got bored so itβs quite fair
nova tide
go ez on me @primal stag
lusty crown
any clues on where to look for flags in koth! (in general)
nova tide
most likely every user (may) have one and root have one
and find the remaining on the machine
you can use find command grep or any other possible ones or look into the machine on your own
primal stag
I haven't blocked the way in, no need to reset!
fair adder
i don't know that!
primal stag
You could have asked π
primal stag
devout jungle
In π
fair adder
in, but only if it's a good one
primal stag
KOTH boxes are like dogs, they're all good boys!
primal stag
Nice @brave pilot
primal stag
Ok, how'd you f' up the kingserver?
So the king service is messed up, I tried to fix it... should probably reset this box.
@fair adder @novel grotto @brave pilot ?
ty
gg!
fair adder
@primal stag gg, i had to step away part of the way though :(
full grove
grand ember
wicked nymph
@primal stag: really? all flags + rooting a koth box in less than 1 minute? do you have any reason why we should not report you? :v
novel grotto
haha no messing about
lusty portal
@primal stag Autopwn scripts are banned, if you're found to have used a script, you'll be banned from playing (we have our own internal logs we can check).
novel grotto
π
umbral meadow
can you invite friends to play a private koth game, even if they arent subscribed?
lusty portal
Yes:)
umbral meadow
oh
lusty portal
Its free to play
umbral meadow
lets go
nimble tangle
Glad to see the new update and plenty of new boxes now to play with!
primal stag
@lusty portal can I PM you?
lusty portal
@lusty portal can I PM you?
@primal stag Yes please
Glad to see the new update and plenty of new boxes now to play with!
@nimble tangle We're releasing 4-5 new machines every month:)
nimble tangle
@lusty portal Nice! I'll have to get back into it a bit more
stiff egret
https://tryhackme.com/games/koth/join/e2559774f044bffcbba067aa
9 minutes to go!
nova tide
@primal stag naughtyyyy
@void rivet but i thought i was naughty π’
when it gonna update? the invite links still make you join the game even after completed
nova tide
share invite link here?
primal stag
I'll play π
floral kernel
hello there
primal stag
gg
floral kernel
gg indeed π
floral kernel
gg bois
primal stag
Anyone want to play Hackers?
stiff egret
Can anyone please clarify Point number 6 in KOTH rules?
stiff egret
We are in same machine when in same lobby, So I don't understand.
OHK
Their machine as in their main pc?
quiet schooner
As in the machine they're connected to the VPN with.
stiff egret
As in the machine they're connected to the VPN with.
@quiet schooner Ah,Okayyy. UNDERSTOOD.
primal stag
I'll play @fair adder
chilly sandal
I've got some practicing to go before I can do any good in a koth π half the time I forget the syntax for the tools I'm using
primal stag
Step 1: Get root
Step 2: Take notes, and repeat.
Step 3: Write a script.
fair adder
yeah, skip step 3
chilly sandal
I need to find a group, because I'll definitely learn some tips & tricks if possible π.
fair adder
@primal stag jeez this room is hard
primal stag
It took me a few tries to get it
quiet schooner
@fair adder What box?
primal stag
It's a good one, I like to battle over king on windows π
fair adder
i truly don't understand the room
fair adder
Machine: Offline
quiet schooner
@primal stag You played hackers yet?
primal stag
Not yet..
fair adder
wow you wrrecked it
primal stag
It's still wide open.
fair adder
fr i was expecting easyer room π
fair adder
curl: (7) Failed to connect to 10.10.80.239 port 9999: Connection refused something's up with this room now :(
primal stag
I can't even ping the server any longer.
quiet schooner
Offline?
quiet schooner
Someone popped EB on it I bet
fair adder
EB?
primal stag
haha,
quiet schooner
Eternal blue(screen)
primal stag
you too @fair adder
fair adder
did you figure it out from your terminal session?
fair adder
i see you got malwarebytes on there, nice
primal stag
Thats what is calling the bluescreen.
terse willow
π€£ Are you lot adding anti-virus to the Windows machines to keep people out?
quiet schooner
@terse willow It comes with MB
terse willow
Ah, fair enough. Whole different world
primal stag
Interesting technique to consider....
sonic atlas
that would be lol
full grove
Muirland if someone added mb onto the box, all the fucking power to them lmao
terse willow
Did wonder π
quiet schooner
@full grove Thought it already had it?
full grove
it does lol
terse willow
Sure, Poker?
chilly sandal
I've never tried it so I'd be down π as long as you go easy
quiet schooner
Muri is Saw
terse willow
(These, for the record, are not randomly picked -- take the hints wisely)
You should see Monkshood James...
It's shaping up really evilly
quiet schooner
Chess seems a little unrelated
chilly sandal
does someone wanna do a "learning" koth with me? I'd like to give it a go to see how it is and how I'd do. I can join voice chat so if I have any questions I can ask π
fair adder
Nice
chilly sandal
I would appreciate it though so I could leave and join you.
or neo you could join too and we can hop in VC
i have a invitation Link I think
@fair adder
fair adder
I can't join VC right now but you can definitely dm me
zealous saddle
any tips on space jam
jovial dune
I have few questions about koth rules
for "7. Scripts that automatically hack and/or harden the machine are forbidden" - What if i will create some kind of rootkit which will maintain my access in system, its including to this rule ?
What about killing other users process (reverse shells, scripts) ?
Changing for example address,port for service is legal ?
What about automated script which will overwirte king.txt with my username ?
What about chaning permission with chattr ?
What about chaning programs names (for example chaning bash name) ?
This one isn't about rules
All machines have same number of flags ? If no how i can check that I got all flags ?
fair adder
the machines have different numbers of flags @jovial dune . When you hover over the flag icon next to the flag submisison box, it tells you the number of flags on the box
unofficially, it seems like rootkits for persistence, killing other user processes and automating overriding king.txt is ok
full grove
- Rootkits, we have no official stance on yet. I know one person in particular is working on one lol
- Traditionally, that's been okay
- the goal is to patch the vulnerabilities, if you want to take the security through obscurity method, I'm sure that's fine as long as the services remain up.
- That's fine
- That's fine
- I'd stray away from stuff like shells because that may be considered a dos, but cat and other binaries, traditionally that's been okay. Just remember to not turn the box into a DoS state
fair adder
wait, so it's ok to move sshd to a different port?
full grove
as long as the service is online, I see no issue with it
I'd run it by higher powers to verify, but I think it's a fair mitigation method seeing as all someone needs to do is re-nmap the box
nova tide
So no closing ports? not even a single like ssh,ftp,mysql etc?
full grove
iirc the only time its acceptable is if the service cannot be patched
i.e. Limited shell in Prod
nova tide
what about space jam 3000?
full grove
change the variable
nova tide
ohk
full grove
make people fuzz for it
or if you really wanted to be evil
drop someone into a container lol
grand ember
start a honeypot on 22
nova tide
still trying to learn mysql so can get in or patch it
btw we can run simple bash/python scripts right? like on king.txt?
glossy vessel
yes
nova tide
no autopwn,no closing services thats all the new rules, right?
full grove
while True:
do echo "Naughty" > /root/king.txt
done
^^ yup
full grove
100% okay
nova tide
chattr...
full grove
go for it
nova tide
yeah one more thing once i deleted check.sh( i think that was the name) from shrek that wont let anybody ssh in into shrek even using key or the pass and even delays the time to ssh in with donkey as well.
or should i simply rewrite it instead of deleting it?
full grove
Not sure what check.sh does tbh
basically
if you're making a service inaccessible to anyone
it's a no-no
nova tide
@gusty cradle this is what i deleted that wouldn't let you ssh in that day
full grove
if you can access it, then you're fine
because with ssh you can do some super strict filtering and that's fine
gusty cradle
@nova tide I see, I was wondering why I couldn't ssh in π€
nova tide
well it just stops the person using the id_rsa that they received
gusty cradle
Also couldn't ssh in as donkey
nova tide
well i changed the pass for donkey, not sure if there was any other way in
gusty cradle
tomcat
full grove
I thought you got www-data?
nova tide
but thats all i did that was causing all the issue with ssh, so wanted to make sure if its against the rules
full grove
I see no issue with ssh-keygen and rm -f ~/.ssh/authorized_keys
that's basically the same effect
full grove
same with changing password
nova tide
in ^
fair adder
@glossy vessel i like your pfp
fair adder
axaxaxa
fair adder
its hahaha but not english version
nova tide
https://tryhackme.com/games/koth/join/876963f540debe6adb7d9019
join in 5 more minutes to go
quiet schooner
What box did you get?
fair adder
and im stuck
nova tide
Hackers
quiet schooner
@nova tide @fair adder Drop me a spec link?
quiet schooner
I made hackers, no point in me playing it 
glossy vessel
quiet schooner
Cheers
nova tide
oh ok
harsh obsidian
Starting in about 5 mins if anyone wants to join: https://tryhackme.com/games/koth/join/7278b3cd35d383879e0ede74
stiff egret
Hey @quiet schooner I think I found a flag, Its not correct tho. Can I DM?
quiet schooner
@stiff egret For Hackers?
stiff egret
Yes.
quiet schooner
Uh sure
See if skidy entered it wrong
@lusty portal You missed a flag from Hackers I think
Flag matches my doc
distant zealot
do not DDOS users !
quiet schooner
I somewhat doubt it's a DDoS
distant zealot
send urandom in sessions is DDoS
quiet schooner
No, it is not.
glossy vessel
DDoS is multi-source attack
distant zealot
Attack other users is legal ?
glossy vessel
in case if you don't make the machine unavailable for them
quiet schooner
The session is on the victim machine
somber agate
Westar was here π
terse willow
TTY flooding isn't even DOS, let alone DDOS
floral kernel
hello there
nova tide
ohk, will try to find that out
GG all, i am in the machine still can't find a way to privesc
will try to play this one again
quiet schooner
No root, perfect
nova tide
anyone wants to play again? Hackers?
quiet schooner
@nova tide Did you get user?
nova tide
yeah
quiet schooner
Nice.
nova tide
starting in 15 minutes: Hackers
https://tryhackme.com/games/koth/join/e259fdd2fa75dabcefe8312d
imma get something to eat till then
quiet schooner
@nova tide Drop me a spec link once it's going
I don't know if anyone has rooted hackers yet
nova tide
really?
i don't think any one else is coming so i will join from my other account and try rooting it my self
there were some redirects but i only found one of those.
2 Minutes to start if someone wants to join in??
nova tide
LMAO
nova tide
π π
quiet schooner
fair adder
I liturally hate you !!
fair adder
Bruh i thought nobody is playing so just captured one flag and left
Didnt know naughty will strike again
quiet schooner
That's definitely a then
fair adder
It really doesnt have anything to do with that lmfao
nova tide
i think i "may be" able to root it in this try
quiet schooner
If you kept going, trying harder, you might have got more flags
fair adder
Nah the point it i thougt everyone was afk
So it was on purpose 1 flag
@nova tide lets play together that room later
nova tide
i am playing rn
harsh obsidian
gg
quiet schooner
@nova tide If you had a flag that wouldn't submit last time, that's now fixed
nova tide
Ninja someone got king
quiet schooner
Oooh spicy
floral kernel
π
nova tide
GG's ^^^
floral kernel
β€οΈ
space jam
What machine do you think is the hardest for root in KOTH ?
nova tide
offline?
floral kernel
because it's windows π ??
quiet schooner
I'd personally say tyler but that's only because I haven't got user on it. I've got an instant path to root once I get user
coral maple
bro @floral kernel i keep looseing connection is that your or is all my stuffs F, (not shell, i cant even view the website)
terse willow
PG13 please π
floral kernel
hahah the censorship
coral maple
π
terse willow
@floral kernel this is a learning environment -- i.e. there might be younger students, or indeed teachers around
We'd like to keep it a respectful place for them
floral kernel
Where can I read the rules for koth, please?
quiet schooner
@floral kernel For the discord or KoTH?
floral kernel
for koth, i read them right now thanks
i thought that patching vulnerabilities = no gaps π my bad
thanks for clarifying
quiet schooner
You're allowed to patch all vulns
floral kernel
IRL if you are in that kind of situation the first thing to do is to close the service, but nvm, we are playing here we have to follow the rules. π
bro @floral kernel i keep looseing connection is that your or is all my stuffs F, (not shell, i cant even view the website)
@coral maple to be honest, i closed the apache2 service for a moment to test my webshell, if it's sending packets to port 80
coral maple
alright np!
floral kernel
alright np!
@coral maple this game is fun btw π
floral kernel
secrets π€«
coral maple
and i think me loosing connection is partly my end as well, been having trouble past few days
floral kernel
i'm too lucky that my neighbor has the wifi password same as the ssid π
coral maple
lmao
alright i think you got this one in the bag, connection keeps dying π¦ gonna have to fix that
thing is my internet is perfect so its just vpn
gg
full grove
@floral kernel feel free to DM me, I created the machine
floral kernel
n3ko-chan thans
nova tide
@somber agate can i dm you? correct me if i am wrong somewhere in hydra command
quiet schooner
You playin hackers?
quiet schooner
You can DM me
somber agate
Yo, can I dm you aswell
quiet schooner
I won't spoil it but I can fix your syntax
somber agate
Something is not right here
quiet schooner
Sure.
jovial dune
I have next question for rules
Changing user password is permitted ?
quiet schooner
Yes.
astral belfry
@jovial dune from my understanding that falls under patching which is actually recommended to do
chilly sandal
I'm stumpt on this fortune one. I dont get it at all π
somber agate
I'd like another round of hackers, I got root but would like to find another way
Anyone down for a private hackers game?
chilly sandal
is hackers a semi easy one?
chilly sandal
dang and your lvl 9, I'd probably never get it then
chilly sandal
lol will it make me better? π I definitely need brain cells but I don't wanna keep getting stuck.
fair adder
no no this game will legit give you brain cells
chilly sandal
can I leave an active koth?
fair adder
yes yes
nova tide
Hello from the other side
somber agate
Did you manage to do it, naughty?
nova tide
you can leave the one that is not started yet. but after the clock hits 0 you can't leave
raw bear
oh hey @nova tide
fair adder
naughtt
nova tide
just ate for the fast and got back
raw bear
oh damn I think im screwed...
fair adder
ah heck he joined
raw bear
lol gl all around though ofc
fair adder
jk i love to play vs u
fair adder
alr alr haha
nova tide
Thanks π
fair adder
baaaaahaaa
nova tide
imma try hackers after this game in private one...
somber agate
Yeah I got ti
fair adder
@nova tide wonna play together ?
nova tide
sure
raw bear
@nova tide could I join to get some experience on the box?
nova tide
sure, will share the invite link here as well
raw bear
awesome thanks π
nova tide
lmao Fortune
imma make Hackers lobby instead, haven't played it either
if someone wants to join in into hackers:
https://tryhackme.com/games/koth/join/8f63b239d001b3d04189a3d2
4 minutes^
nova tide
lol its raining here just got back, and there are multiple ppl now in game lol
quiet schooner
1-(555)-HydraFixer here, what's your problem?
That's the best link for anything hydra http
HTTP is the only one that's difficult with Hydra normally
nova tide
ok its raining heavily outside... electricity may turn off at any moment
rancid pewter
Can we reset the box I did a little error
rancid pewter
No I have overwritten shadow
rancid pewter
gg
nova tide
imma watch the movie then
coral maple
damn that box is hard
quiet schooner
Which box?
coral maple
hackers
coral maple
lets go again
quiet schooner
I wouldn't say it's hard
rancid pewter
Is there only one way ?
coral maple
re
terse willow
Koth boxes always have at least 4 ways
nova tide
so hackers have 3?
coral maple
has anyone gotten root yet?
quiet schooner
yea
nova tide
one guy so far
terse willow
Certainly weren't posed as guidelines to me, but fair π€·ββοΈ
rancid pewter
I failed my privesc by completly overwriting the shadow file
quiet schooner
F
nova tide
i have no idea what that .sh file do
fair adder
so we are basicly no lifing hackers ?
rancid pewter
I am root in 10 min for sure
rancid pewter
I didnt brute force ...
nova tide
you got in through production or gcrawford?
quiet schooner
@rancid pewter DM me
rancid pewter
Why ?
rancid pewter
Rooted
raw bear
well done... im stuck lmao
this is the second time I got somewhere cool and just lost the ability to use my brain haha
rancid pewter
Maybe it more simple than you think
rancid pewter
.lock ?
rancid pewter
GG
raw bear
damn i finally made it in haha
raw bear
im down, would be cool to learn more of it, can make one if u need
vast kite
raw bear
lmao @vast kite me my first time on the box lmfao
vast kite
lmao
quiet schooner
As a note, Hackers is semi broken by AWS
It's still playable, but will be more replayable once patched
raw bear
it was fun @quiet schooner first time I really tried doing this by myself, and I managed to get root after some looking around...
quiet schooner
Try the other routes
raw bear
will do for sure, its still pretty hard to even find half of the stuff butonce I find it I do pretty well...
harsh obsidian
22 minutes to go: https://tryhackme.com/games/koth/join/d92e82102a3c8fc35e2cafc9
raw bear
LMFAO i just logged myself out of root after I patched my entrance... what a brain I have
vast kite
fair adder
https://tryhackme.com/games/koth/2005
https://tryhackme.com/games/koth/join/b344ccbec0daacec8af55cda
glossy vessel
are you still trying to root hackers? 
glossy vessel
yeah production is easy
nova tide
slept in the morning after getting productionm need to privesc still
glossy vessel
mhm but itβs on gtfobins
nova tide
it worked for you?
glossy vessel
yeah
nova tide
wait, what?
glossy vessel
production has an easy priv esc
glossy vessel
idk I canβt say without spoiling π
somber agate
I'd love to play, but currently at work.. You got this man!
nova tide
well so far i only know of 4 ppl who got root, including u,westar, mydonut and one more guy
somber agate
@glossy vessel Can I dm you? Wondering how you did it
glossy vessel
do you really want to know? π
somber agate
Yes.
glossy vessel
i think itβs better if you figure it out yourself
somber agate
I already got root, I'm just wondering how you got it
glossy vessel
oh oh alright
finite turret
@fair adder gg
nova tide
Hello from the other side 
stiff egret
Yo!
nova tide
i got 6 flags and production so far.. and i think remaining will be in other 2 uers and one in root
nova tide
getting production is easy... but cant figure out how to privsec.. everyone is saying it have an easy privesc
played Hackers like 4 times so far. almost there
nova tide
got it once but left coz i wanted to play hackers
nova tide
many people have rooted that so i dont think it will be that much difficult
but iwant root in this one xD
will try at night
nova tide
found a couple of pirvesc methods for Hackers.. gotta try them later
i wonder if theres ever been 10/10 lobby in koth
this is the highest i have seen so far
i hope its Hackers
stiff egret
this is the highest i have seen so far
@nova tide True
I bet, Most of them are ultra pros with fake accounts.
nova tide
well NaughtyHacker is mine not sure about others xD
stiff egret
Youuuuuuuuuuuuuuu π€£
stiff egret
how?
nova tide
why the box is sooo slow?
nova tide
HMU if someone wants to play Hackers
nova tide
want to ask a few questions about ssh keys, can i dm someone? so i wont end up messing up with my own pc instead
somber agate
@nova tide Really depends on how advanced your question is, but DM me and I'll try my best hahah
spring trail
game any one ?
nova tide
@mystic quiver invite for koth?
mystic quiver
@nova tide Sorry bro i didn't saw the message.It's over bro.
nova tide
np
nova tide
How to make sure someone is not using autopwn in koth?
somber agate
You really canβt I guess? If they get king and all flags within a minute it canβt not be an autopwn, but otherwise.. idk
somber agate
Nice, I think I know where to look, but just havenβt found it yet
nova tide
So the rule saying: "No Autopwn" how that works?
quiet schooner
@nova tide Skidy got logs
@somber agate Let me know if you find the instaroot, I'm gonna be patching it friday so you have until then
raw bear
@nova tide https://tryhackme.com/games/koth/join/8781effc41a9fa704c74160e hackers? 15mins
nova tide
always up for hackers β€οΈ
quiet schooner
@nova tide @raw bear https://github.com/swisskyrepo/PayloadsAllTheThings/blob/master/Methodology and Resources/Linux - Privilege Escalation.md
Works on most boxes π
nova tide
Thanks β€οΈ
quiet schooner
I've posted in resources and all over the place a few times
raw bear
π β€οΈ
nova tide
i have got some what idea what mydonut did to get root but i cant completely follow the way.. found a few more things today gotta try those this time
lets see how it goes
imma grab some food brb in a minute
quiet schooner
Hackers is designed so that you need to understand the steps that you're taking
raw bear
I have my own way that has worked to get root, but I was gonna look into just looking for other ways to go about getting in...
quiet schooner
You can't just copy/paste from GTFObins
nova tide
@raw bear no changing anything
raw bear
naw I wasnt planning on it, but I am getting root
nova tide
imma try to hack this badboy today
raw bear
@nova tide yeah, im root
raw bear
yeah, i just took it
void rivet
@rugged portal U livestreaming koth??
spring trail
is it ok to change passwords in koth ?
quiet schooner
That's been answered many times @spring trail
spring trail
thanx
quiet schooner
It was a yes.
nova tide
But if there's a guy named "Naughty" in game you are supposed to send that new password to him, so he can make sure nothing is wrong with the machine.
high anvil
definetly nope
nova tide
sad noot noises
stiff egret
Anyone KOTH?
nova tide
i still have to massage my Dad's right arm will play after that.
btw play hackers with me? π @stiff egret
stiff egret
You mustve gotten root on that
quiet schooner
You say that
raw bear
He knows my way in
quiet schooner
It's designed to be harder
Well, not harder. You just have to actually understand a little more
raw bear
it wasnt that way for me? i just had to keep looking through what I knew already
I can share my notes with u ninja if u want
nova tide
yO @raw bear @stiff egret
raw bear
yo
stiff egret
yo
nova tide
So no closing ports and no spamming kill shells
stiff egret
no defences but kill shells are allowed
nova tide
No Spamming
stiff egret
maybe π
nova tide
lul
terse willow
(Pretty sure there's no rule against that)
nova tide
(i know)
raw bear
oh great a box i dont know at all π
stiff egret
I freaking manually typed the commands
nova tide
well i dont want to fight with you yet still looking for persistence on this
so i can get back in any how
so you are not allowed to open ports?
are you?
stiff egret
uh? Well I havent closed or changed any ports.
nova tide
no i am asking
if you can open a port that wasnt open by default? π
if anyone can answer that? ^^^
stiff egret
I think you can, Since you cant kill main services, you can always shift them to the ports down the list, like 40923 etc
nova tide
lets suppose i was supposed to open a port so i can set my way in from that port? is that allowed?
take ssh as an example
stiff egret
Thats backdoor, I'd say thats allowed, but still depends on Mods/Admins.
stiff egret
thanks, took me a while
nova tide
well i almost finished my late night dinner
stiff egret
gg @stiff egret @nova tide I do enjoy a good KOTH battle!
Same here,
nova tide
Hackers?
raw bear
im down
nova tide
@raw bear but you have to find the other way in
stiff egret
I gotta get some sleep now lol
raw bear
I am
raw bear
No im going to look into it
raw bear
dang, i have gaming peripherals so mine are pretty good
nova tide
well its Logitech G102 i believe
raw bear
G502 is pretty good its lasted me a while and was relatively cheap
nova tide
yeah that one is around the same price like this one but i like this one more
i play sixsiege on this one instead of that. tried that i kept on clicking those extra DPI buttons right next to the left click
raw bear
I turn them off, i only use 400 dpi
nova tide
lets remake and set timer to 5 minutes
which games you play?
i play Sixsiege,Dota 2,Fortnite,Tekken 7 and GTA V
Clash of clans also if that counts
nova tide
yeah i have played some apex as well.. a few of my friends still play it, i was somewhere lvl on 35 i think
high anvil
Can i join?
quiet schooner
@rancid pewter @somber agate Thanks for reporting and helping me diagnose that
Sorry myDonuts for patching the other vuln you found, it was too powerful π
rancid pewter
Yeah sure
quiet schooner
@somber agate I can discuss it if you want too, I have the code
floral snow
Fortune machine is too hard π i can't
terse willow
Ach, Fortune is a kitten.
You can literally get from nothing up to root by pure luck.
stiff egret
Admin/Mod for Fortune? I may have something you wanna patch.
quiet schooner
@terse willow you're up
terse willow
@stiff egret yep, feel free to DM π
sudden axle
guys, how many flags are on fortune machine? i dunno if i found all of them
fair adder
@sudden axle fortune has 8
sudden axle
thx
fair adder
mouse over the flag icon next to the submission box to double check
@quiet schooner the number of flags needs to be more visible
quiet schooner
@fair adder #522158404614225920 or #544951750801752079 if you have an idea of how it should be done
quiet schooner
@sudden axle What box?
sudden axle
fortune
quiet schooner
Ah nice
sudden axle
just finished it
chilly sandal
lol I never even got 1 flag in fortune, I fixed my kali box so ima be messing around with koth's later today taking notes of everything for future reference
sudden axle
if you are a beginner it's kind of expected
but dw, you will learn with time
are the rooms equally difficult @quiet schooner ?
quiet schooner
No
FoodCTF is quite easy, production is too
Hackers is harder
Tyler is decently hard
chilly sandal
...production is easy?... im screwed then π
sudden axle
and i guess there are multiple ways in
as it is in fortune
still dunno if web way is exploitable or nah
vast kite
@nova tide send invite link
quiet schooner
Public game I think
quiet schooner
I'm watching along
nova tide
i dont know why people think tyler is hard.. i mean i literally got root in the first try in a few minutes
vast kite
it's fine go ahead and pick tyler
stiff egret
takes me 10 seconds
nova tide
"First Try"
quiet schooner
I haven't tried it much
spare scroll
god what have I signed up for, I am about to get my ass kicked by you so hard
stiff egret
takes me 10 seconds
@stiff egret then peeps start spamming ban button
like dude i manually typed the code, pardon lmao
nova tide
or "Nice Scripts" xD
stiff egret
or "Nice Scripts" xD
@nova tide no scripts till i am in shell
fair adder
there's a fine line behind good notes with a high wpm and an autopwn script
stiff egret
there's a fine line behind good notes with a high wpm and an autopwn script
@fair adder hear hear
quiet schooner
Scripts to harden the box aren't allowed IIRC
stiff egret
Scripts to harden the box aren't allowed IIRC
@quiet schooner hear hear
nova tide
thats what people say when you get root in seconds..<<<thats what i meant
quiet schooner
Hackers had a lovely instaroot vuln
Single command, straight to root shell
That was fixed.
stiff egret
Hackers had a lovely instaroot vuln
damn it, cant get root on that one yet
quiet schooner
Hackers is designed to be harder than Food
nova tide
i still want to get in through production. Got only one way so far
quiet schooner
Designed so there's a little research and direction
stiff egret
i still want to get in through production. Got only one way so far
@nova tide easier once you are inside
always easier to find vulns from the inside
quiet schooner
not exactly
stiff egret
Designed so there's a little research and direction
@quiet schooner Yeah I figured, i was soo close to break my laptop when i found the exploit and couldnt complile it, if you know you know
quiet schooner
@stiff egret DM, which exploit?
nova tide
always easier to find vulns from the inside
@stiff egret well i am in production but cant privesc from that to root
spare scroll
@nova tide is there any ways left to get in?
nova tide
well there are still 2 ways that i know of to get in
spare scroll
damn
nova tide
that i have no idea how to patch xD
nova tide
oh i think i patched one of those
spare scroll
lmao i have no idea how to find them so you should be good
vast kite
i'm stuck after upload my file haha
spare scroll
is it allowed to quit? haha
vast kite
never give up
spare scroll
thanks for the motivation but i dont think i will get anywhere in 40 min
vast kite
It's also the first time I've been involved in this kind of challenges
kinda hard 4 me but easy 4 @nova tide
spare scroll
yea lmao we are getting a beating
stiff egret
@nova tide you blew up node?
nova tide
Hackers ^^^
starting in 4 minutes
wont change or patch anything in this ^^^
@quiet schooner you made changes in hackers?
nova tide
imma just eat,wait and look at my screen to finish its job
sudden axle
I guess I was too slow figuring out a way in
nova tide
nmap will show you the way
btw who was the guy who set listener on tyler? and reconnecting to it?
sudden axle
me
spare scroll
guys, any hints for fortune?
terse willow
Can't really help with Koth boxes I'm afraid
But speaking as the guy who made it
You don't need to be able to hack to do it
You can literally get to root on pure luck
spare scroll
for real?
quiet schooner
Hackers is broken sorry
sonic pecan
hello everyone, i am new here, do we get the private room links here for koth?, cuz no one joins the public rooms
spare scroll
@sonic pecan we are in the same game and it is like five ppl there
sonic pecan
@spare scroll can i join midgame ?
spare scroll
you are in the game
spare scroll
no worries bro
sudden axle
@quiet schooner dynamic passwords on Fortune seems to work fine. I had different creds this time
quiet schooner
@sudden axle Yeah
I hadn't tested it because it wasn't my box
@nova tide patch is coming btw
stiff egret
space jam is supposed to be easy right?
coral maple
yes
stiff egret
yeah its either that or i have become ultra pro lmao
latter is not possible, so i figured π€£
terse willow
@sudden axle Yep, my autogen script works fine -- I tested it earlier.
For some reason it's just Hackers that it's not working on. No idea why
quiet schooner
@terse willow Hackers autogen was fixed
Webserver was broken but that's being sorted
terse willow
Ooh, lovely π
quiet schooner
AWS broke it
terse willow
The webserver or the autogen?
terse willow
Ah π
Fair enough
sudden axle
are people allowed to spam broadcasted messages?
somber agate
Yes π
sudden axle
lol okay
somber agate
And it's not a broadcast, that one was just for you π
chilly sandal
geez Wes you took over the box so fast
somber agate
I've done this box before, path to root is quite easy once you get the hang of it
chilly sandal
i dont even have the first flag π
somber agate
You'll get it, just try harder π
chilly sandal
is their more than 1 way in? lol i'm pretty sure you patched the mysql thing, since I can't connect to it. π
quiet schooner
@chilly sandal Foodctf?
chilly sandal
ye
quiet schooner
There's a bunch of ways in
somber agate
gg
somber agate
Lmao, someone threw me off aswell, so then I just start shooting you know
sudden axle
i threw you off hah