TryHackMe GAMING SERVER - LXD Privilege Escalation

John Hammond cracks John user's password with John the ripper

bruh_

Plot twist: John Hammond secretly developed John the ripper solely for cracking into the John user

softicecreamer

need more of this makes it incredibly interesting

abisrug

Quickly growing addicted to this channel because the unscripted "fumbling" is exactly what a normal dev would have to do to fix their own little mistakes. And it's those tiny, "What did I forget?" Details that novices are going to be tripping over constantly.

The fun part is watching your thought process unfold while you perform these tasks and help introduce us to various helpful tools and commands that we may use in our own explorations.

Vixikats

That troubleshooting was the most interesting I've seen! Here's a *boop* from me <3

jd-raymaker

Hi John, great vid as always!!

How about doing a blind room say once a month, but do it live. I'm sure a lot of people would enjoy that. I know I would.

Keep up the good work!

lpher

You can disable bash expansion with cat by adding single quotes around the first EOF rather than going through and escaping everything. i.e. cat <<'EOF'> passwd

CriPPle

I don't know how to do a quarter of what you did in this video but I'm comforted by the fact that you run into the same hiccups as me. Like oh yeah there's dollar signs, or oh duh forgot a slash.

bluesquare

These videos are worth like 100 tutorials I'm not kidding. The thinking process, seeing concepts that one may need to learn, explaining what you're thinking, and just seeing this type of thing in action. Soo helpful

Privilege escalation has always been a big sore spot for me.

uniquechannelnames

I love the fact that John checks out funny/unrelated image/video files. 👍

.yusrilihsanadinatanegar

Absolutely agreed that it is helpful to see you run into the stumbling blocks. There's nothing worse than following a tutorial for the first time and smashing headlong into some syntax error or in this case escaped special characters. Thanks for sharing.

frollard

Thanks, it is fun watching you doing all these cool stuff, plz keep the good work coming

thhuntr

watching you move through this so quickly n seamlessly just amazes me lol

itsobj

Not sure if I should get depressed or motivated seeing how awesome John is at this thing. Definitely impressed though.

JT-cmff

Hey John, loving your content. I really enjoy how you explain and try different methods to gain privilege access, like changing the etc/passwd through the share drive in your container. Even if you struggle a little bit doing that, it really helps us understand the process and iteration you/we can go through while doing that. Keep up the good work!

uimstar

You and ippsec are very good learning resources. Thank you for taking your time to post these videos.

chrisbey

A socks proxy video would be fun to watch IMO, I was just lazy and scp'd it over to the box from my attacker platform

cscogin

Hey John I am interested in the socks proxy video ;)

suvidsinghal

Great video. Was waiting for the writeups as I couldn't escalate for the life of me!! Learn something new everytime!!

kartibok

John the legend! Keep going man... I'm learning a lot of stuff from you as I'm sure everyone else does. You are truly helping and inspiring. Thank you.

ITachi_.