13:40 - privileage escalation kernel 24:10 - sudo ex 30:00 - suid ex 47:19 - cron jobs ex 55:00 - paths ex 1:07:25 - nfs ex

Thank you very much! Im 28 years old video editor doing a career change into Cyber Security the past 5 months now and it was really hard some rooms in the JR pen test but with your videos it was much easier to understand.

Stuffy your content is fantastic! I know you keep referring to how long the videos get but I think I can speak to everyone that we don't mind the long videos. The longer the videos the more you explain in detail certain things that new comers like myself have trouble grasping. Thanks for all the help and detailed explanations!

The answers to these THM questions are in 10 different places across the internet. So the value in your videos IMO is not in your giving the answers but in your contextualizing the information --what are we really trying to do or learn in this room? What do we really need to know? Also, clearly explaining things that are badly written in THM (which is common). And spelling out the small details of the process so that we don't get stuck for some tiny detail even if we basically understand what we are trying to do. While these rooms are of course easy for you, many of us need every breadcrumb we can get to understand what we are doing and learn. I am not coming to these videos for the answers to the problems, although it's helpful that you include them. Instead, it's the clear and contextualized explanations that matter. I personally don't care how long the video is--very long fine as long as it's clearly and completely explained. (It would be great if you time-stamped them by question, though!) Anyway, thanks again for these, they are invaluable.

Stuffy at it again with a FANTASTIC walkthrough! I've learned so much from you at this point it's ridiculous. Thanks for everything that you do.

Thanks for doing this. Super helpful. Love reading the instructions and then hear your interpretation of whats going on.

Even though this video's been around for a year, I just gotta say thanks a bunch for this and your other vids! Your enthusiasm for this stuff is contagious, and I'm loving it!

Finally learned privilege escalation thanks to u man. Really helpful.

Thanks for walking through this and posting this vid, it helped me A TON. You're an awesome teacher.

You left me speechless, I am loving the way you explained it, while letting us try our own techniques. Thank you very very much

You are a champ ... for soem reason I always find your video more helpful then others. Its probably the pace with which you run the lab is not so fast and I find it easier to follow your instructions.

Thank you for taking the time to explain and teach us what you know! This challenge was tough and this video was most helpful! 💥💥💥💥💥

It was really helpful that you were not just solving away, but also explaining! that helped a lot!

Thank you man. Today you gave me all the reasons to become one of your patron. I will subscribe now

Excellent video. I could usually get the flag myself, I was just missing a step or two in between. Thank you for making the video!

Hey thanks for the Videos, I enjoy Learning with you, and I thank you for that!

Really appreciate it, clarified a lot of questions

Great walktrought very clear. thanks

Hello, It took me 5 hours to follow the course with you. Take notes, understand everything, 1 month ago i had no clue what an ip was. Just finished the capstone alone in under 40 mins, all probs goes to you.

Thanks, Great explanation ! Only need to research about the gcc compiler

loved your walkthrough ❤❤ we are waiting for offensive pentesting path now

Awesome practical explanation - many thanks! 🏆

hi brother, your videos are crazy, thanks for making them

Thanks a lot man. You sure helped me learn a bunch in this one.

thanks man ..reallly appreciate this!

Thanks. This was very helpful!.

thank you for giving the finer details!

Thanks for another great video, my dude.

Great vids. It would be nice if you didn't worry about time I'd rather watch a longer video if that means I learn more. Also food for thought, as a beginner, I wish we didn't worry so much about "spoon feeding" answers for everything. In school, teachers taught us HOW to run mathematical equations, step by step, and explained WHY it works the way it does. The most important part was repitition and for us to show our work, that way we understood what we were doing. The worst teachers were the ones that told you to look it up in your text book and sat back in their chairs. In the cyberworld it makes sense that we should learn to be fully independent to find our own information as there is too much to learn. However, in the greater scheme of things, I think it would benefit us all if we focused more on collaboration and understanding the fundamentals as we make it easier and easier to attract more talent. edit: P.S. thanks to your walkthrough, I was able to accomplish the Capstone without watching the rest. However, that's not to say I'd recommend leaving it out as a final challenge to others. I still appreciated having the fact that I could reference the capstone walkthrough if necessary to help expedite the learning. Thanks again for the vid!

You're a legend dude - appreciate your help

You are awesome, thank you!

I'm really enjoying your content man! The explanations are great and you have a great workflow for explaining what you're doing. I am curious though, why are you not doing this with a virtual machine? Keep it up!

Frank's password's hash value is upto LR1

awesome content!

although i'm sure i'm older than you: i wanna be like you when I grow up. mad skills!

You rock dude!

Thank you

Thanks for usefull content, and you have a good dog

Hey I love your content, seriously my favourite cybersec walkthroughs. I am planning on doing walkthoughs of picoCTF as I am currently teaching those to high school students I think it would be a lot more fun to do them on Zoom as a collaboration with another KZbinr. My freelancer can then do the editing and we both get polished content for our channels. Let me know if you are up for it

I had a lot of problems with the virtual machine. despite that, your explanation actually put me in orbit ps: love your dogs

long videos are just fine ;)

I hope you don't mind if I ask a couple of questions. I'm having trouble in the crontab section. I tried editing the test.sh file with nano. I tried doing what you did with vim but I was having trouble exiting vim. I heard you say esc then w then q. I tried it and just got stuck in vim. Do I have to use vim for rewriting the test.sh file? Also if I'm incorrectly entering keys to exit vim, can you reiterate? Also I really appreciate you content! I try to do it all myself until I'm stuck, but your brain has helped me sooo much!

I have a question, how much time do you think it takes to get to grips with this room, I've been learning from scratch and I've only been learning for the 2nd week and I'm wondering if I haven't made progress too soon, because there are quite advanced things here, what rooms should he do in advance? I did Introduction to Cyber Security and Pre Security, is that enough?

You can copy/paste things to the attack box clipboard. There's a little slider on the left-hand side of the attack box about half way between top and bottom. Open it and click "clipboard" then you can paste something from your machine to the attack box, or copy/paste something from the attack box to your machine. Hope that makes sense.

So...the target's version of GLIBC is older (2.31) than the attacker's version of GLIBC (2.4). This prevents me from running the nfs executable on the target. Since I don't yet have root privileges to update GLIBC on the target, I was unable to gain root access and obtain the flag7.txt Part of me thought I could recompile nsf.c on attacker using the target's version of GLIBC, but I'm not sure how to rollback GLIBC on attacker. I'd have to research more. Any pointers? Surely I'm either missing something or there's a way around this.

Hey can you tell me what you do for a living? You're pentester or SOC or kinda like that

thx bro

Task 9 is not working for me. I edit the backup.sh file using nano to contain the reverse shell code as mentioned in the task and it doesn't work as a Cron job. When I enter the script directly on the command line it works just fine and the reverse shell connects back to the attacking machine. How do you go about triggering the Cron job?

to do do do ... tu do du... to du du... 😂😂. Now It becomes my habit.

Im having a problem at task 11, mount -o rw mount: only root can use" --options" option

Regarding cron jobs - During a real pen test engagement editing existing running cron jobs cant rly be appreciated right? Super good and informative content.

Is there a Linux priv ESC cheat sheet somewhere?

get the doggo involved lol what its name?

someone managed to install gcc co-compiler on linux target?

I wish you zoomed in the words and letters are very small!

Yo, I kinda like how you don't answer everything. It's a reminder that I gotta really try to take it all in and jot down some good notes with Cherry Tree.

Plz, writeups New room Windows Privilegie Escalation

Get 20% OFF @manscaped + Free Shipping with promo code STUFFY24 at MANSCAPED.com! #ad #manscapedpod

You explain it better than tryhackme's description