mKingdom - Detailed Walkthrough - (TryHackMe!)
ฝัง
- เผยแพร่เมื่อ 15 มิ.ย. 2024
- In this video, I work through the newest challenge machine on TryHackMe called "mKingdom."
As usual, I do my best to share my full methodology and throught process as I solve the machine.
Enjoy!
-----
Join Hack Smarter: hacksmarter.org - วิทยาศาสตร์และเทคโนโลยี
Man, this lab was really something new. I tried my best initially, and when I was not able to proceed, I watched the video, and when I thought I got a hint, I stopped and proceeded. This lab's shell is really stupid. What the hell is this:)
Thank you, Tyler. I learned some ways on how to proceed in the labs and not give up
Wow thanks this was not easy !
I’m starting to think the smb.txt was a hint to use pspy
cant we bypass the ip ban by changing the "x-forwarded for" header ?
yeah always check the default creds right... I like uploaded a ton of tiles and extensions and all that too...
No that's the part I don't like -- there are no default creds for that application. It's just "guessing" creds.
@@TylerRamsbey thats what I meant... your right weak password i guess we would say.... that was an interesting box to say the least.. I dont understand the flags and why cp /tmp/flag is necessarry... bizarre mario word
Hello, I think the whole problem about showing the files with CAT is coming from the suid bit on Toad maybe
Because by using the LESS command it works without permission errors.
Also by removing the suid bit on /bin/cat with root permission afterward, we can use cat to show any file without problems
yeah just noticed this. Thanks man!
🔥