TRY HARDER!!! (PWB/OSCP Collaboration)

Whook

Folks, my Lab time started 2 weeks ago, my frustration level is very high now.
I poped Alice which was very simple but no I habe absolute no clue what to do.
Everything I try something I just hit a wall and as we know there is no help beside the "try harder" phrase comming from Offsec.

I really need some help

Master Of Puppets

Google is your friend. Make sure to absorb the material from the guide and the videos but also go beyond that and research on your own.

Any particular topic you are having trouble with?

Whook

No, no particular problem at the moment I am just lost. At the moment I am not able to finde the right angle to attack those machines.

But yes there is a problem Privilege Escalation. It is not really covered in the script.

martin24

There are like 2 good working linux privilege escalation exploits on securityfocus

Master Of Puppets

Check this out https://www.ethicalhacker.net/forums/viewtopic.php?t=9169.0/ . You can find some nice resources with the help of Google but if you are having trouble, we can probably help.

jm0202

I would like to join the project. I am taking this cert and I am going to need as much help as I can

Master Of Puppets

How far into it are you? Share your progress and weak areas and I'm positive the good folk here will provide guidance.

jm0202

I am about to start hacking all machines in the student network. I will need a lot of help

martin24

jm0202 wrote: »

I am about to start hacking all machines in the student network. I will need a lot of help

If You dont do it on Your own... You wont pass the exam because machines are easy part in this course

Whook

martin24 wrote: »

If You dont do it on Your own... You wont pass the exam because machines are easy part in this course

no one says please give me a walkthrough but its complete pointless just to tell the students "try harder" instead of giving a hint to push them in the right direction!

Whook

doh after about 10h trying to escalate privileges on f***ing bob i 1st hate him and 2nd give up on him (trying again later)

Master Of Puppets

Yup, if people see you are trying harder and really putting in a lot they could give you a push in the right direction with, for example, something to go and learn on your own. But no one is going to tell you how to break into a machine or anything like that. The point of the course is to be able to make it on your own.

Whook

Today was a good one!
Poped 3 boxes (all root) well better say 2 because 2 of em could be poped with the exact same exploit!

Anyway Yay!

Well but still no hope with Bob! If I am not able to exploit a process who is already running as system/root I am complete lost!!!

martin24

Whook wrote: »

Today was a good one! Poped 3 boxes (all root) well better say 2 because 2 of em could be poped with the exact same exploit! Anyway Yay! Well but still no hope with Bob! If I am not able to exploit a process who is already running as system/root I am complete lost!!!

Check out this post g0tmi1k: Basic Linux Privilege Escalation (if links are not allowed them please delete it)... It has basics on how to find info about machine and find proper privilege escalation...

lesiah

50 days in a few machines rooted, well I still haven't found the network keys needed to unlock all the other networks.

NovaHax

Necro-viving ancient threads with your first post eh? Forgiven this time, I suppose. I'll chalk it up to your lack of sleep from your long hours in the lab.

And keep working friend. You'll get there.

Vladsec

Hey guys I just popped Bob today. Took me 3 days, it was hard but very satisfying.
amy clues / hint you can give me on sufference? I've been trying for weeks with no success

philz1982

Outta curiosity, how much time have you all committed to the OSCP course? Is this a 2 hours a night kinda thing so say 14 hours a week?

NovaHax

Vladsec wrote: »

Hey guys I just popped Bob today. Took me 3 days, it was hard but very satisfying.
amy clues / hint you can give me on sufference? I've been trying for weeks with no success

Congrats. Bob is a big milestone. What's the score so far? I wouldn't be messing with PAIN, SUFFERENCE or GHOST until you've made some serious headway in the rest of the lab.

NovaHax

philz1982 wrote: »

Outta curiosity, how much time have you all committed to the OSCP course? Is this a 2 hours a night kinda thing so say 14 hours a week?

Gonna depend on the person.

fei1

Just saw this forum recently and apologize to replying on an ancient thread. I'm working on the OSCP currently, have 19 hosts pwned. The course require a lot of commitment and it was never easy. I have learn many things from the course but yet I think I still have a lot more to learn.