Return to forum

Erik · July 2, 2022 at 10:12 PM

(July 2, 2022, 10:11 PM)Bumper111 Wrote: SSH for user: developer

Where did you find it ? Tried .ssh/id_rsa but without success

bt380 · July 2, 2022 at 10:14 PM

(July 2, 2022, 10:11 PM)Bumper111 Wrote: SSH for user: developer

thx a lot

Exa · July 2, 2022 at 10:21 PM

[quote="Anandu" pid="118020" dateline="1656799923"][quote="Exa" pid="118005" dateline="1656799398"][quote="Bumper111" pid="117987" dateline="1656798013"]For file readhttps://medium.com/@jonathanbouman/local-file-inclusion-at-ikea-com-e695ed64d82f[/quote]Nice, this one works for me. Minus the backslashes:[/quote]Sending it base64'd via /admin/download.php or adding entry in faculty.php?[/quote]Sending via /admin/download.php.https://gchq.github.io/CyberChef/#recipe=URL_Encode(false)URL_Encode(false)To_Base64('A-Za-z0-9%2B/%3D')&input=PGFubm90YXRpb24gZmlsZT0iL2V0Yy9wYXNzd2QiIGNvbnRlbnQ9Ii9ldGMvcGFzc3dkIiBpY29uPSJHcmFwaCIgdGl0bGU9IkF0dGFjaGVkIEZpbGU6IC9ldGMvcGFzc3dkIiBwb3MteD0iMTk1IiAvPgpdf=JTI1M0Nhbm5vdGF0aW9uJTI1MjBmaWxlPSUyNTIyL2V0Yy9wYXNzd2QlMjUyMiUyNTIwY29udGVudD0lMjUyMi9ldGMvcGFzc3dkJTI1MjIlMjUyMGljb249JTI1MjJHcmFwaCUyNTIyJTI1MjB0aXRsZT0lMjUyMkF0dGFjaGVkJTI1MjBGaWxlOiUyNTIwL2V0Yy9wYXNzd2QlMjUyMiUyNTIwcG9zLXg9JTI1MjIxOTUlMjUyMiUyNTIwLyUyNTNF

Exa · July 2, 2022 at 10:24 PM

Please don't post SSH keys.

Erik · July 2, 2022 at 10:25 PM

So we're supposed to read mails from gbyolo, anyone has any idea how to ?

XxdreamxX · July 2, 2022 at 10:27 PM

got the ssh what is next :\

Anandu · July 2, 2022 at 10:29 PM

(July 2, 2022, 10:25 PM)Erik Wrote: So we're supposed to read mails from gbyolo, anyone has any idea how to ?

You need to read the DB pass from file and use it as pass to gbyolo profile on system to esc further.

snailbreach · July 2, 2022 at 10:30 PM

Fuck off leakers

fironeDerbert · July 2, 2022 at 10:31 PM

[quote="Exa" pid="118037" dateline="1656800466"][quote="Anandu" pid="118020" dateline="1656799923"][quote="Exa" pid="118005" dateline="1656799398"][quote="Bumper111" pid="117987" dateline="1656798013"]For file readhttps://medium.com/@jonathanbouman/local-file-inclusion-at-ikea-com-e695ed64d82f[/quote]Nice, this one works for me. Minus the backslashes:[/quote]Sending it base64'd via /admin/download.php or adding entry in faculty.php?[/quote]Sending via /admin/download.php:https://gchq.github.io/CyberChef/#recipe=URL_Encode(false)URL_Encode(false)To_Base64('A-Za-z0-9%2B/%3D')&input=PGFubm90YXRpb24gZmlsZT0iL2V0Yy9wYXNzd2QiIGNvbnRlbnQ9Ii9ldGMvcGFzc3dkIiBpY29uPSJHcmFwaCIgdGl0bGU9IkF0dGFjaGVkIEZpbGU6IC9ldGMvcGFzc3dkIiBwb3MteD0iMTk1IiAvPgpdf=JTI1M0Nhbm5vdGF0aW9uJTI1MjBmaWxlPSUyNTIyL2V0Yy9wYXNzd2QlMjUyMiUyNTIwY29udGVudD0lMjUyMi9ldGMvcGFzc3dkJTI1MjIlMjUyMGljb249JTI1MjJHcmFwaCUyNTIyJTI1MjB0aXRsZT0lMjUyMkF0dGFjaGVkJTI1MjBGaWxlOiUyNTIwL2V0Yy9wYXNzd2QlMjUyMiUyNTIwcG9zLXg9JTI1MjIxOTUlMjUyMiUyNTIwLyUyNTNF[/quote]When I upload it I got the pdf but the pdf is blank...

RainingMen · July 2, 2022 at 10:34 PM

Any finds here ?