I am on the way to root on the forest box. I managed to get bloodhound run and imported my files from forest. Marvelous. I have never used this before!
I can see descriptions on the arrows that are pointing between the objects in the neo4j graph. Contains / member ... makes sense.
But can you give me nudge what the "writeDacl" means? How can I use/exploit this?
Currently I am trying to use PowerView.ps1 and Ivoke-ACLpwn.ps1 to proceed.
Is my idea pointing in the right direction?
Working on Forest, managed to get user, and I've used bloodhound to show me routes. not entirely sure how I'm meant to interpret it, but there appears to be a route from svc-alfresco to domain admin. Just not sure how to do the next step. i've tried following the instructions as best as possible within evil-winrm, but it's not working.
Any nudges gratefully received. I feel I'm almost there...
hi I can you help to to solve OSINT we have a leak challenge.. Plz send massage
Can you help me for Forest box ? ^^
./GetADUsers.py htb.local/ -all -dc-ip 10.10.10.161 -no-pass
for find users list and I try to bruteforce by msf5 auxiliary(scanner/smb/smb_login)
For the moment that's all (but on real time is 1day search !! LOL)
hi, i saw your messages about Heist machine.. would appreciate some help for root. i have found a lot of sha1 hash in C:\Users\Chase\appdata\local\mozilla\firefox\profiles\77nc64t5.default\cache2\entries. but findmyhash of my kali couldnt cracked them.. i looked all of the other directories and there is no any hash or other clue. what is my mistake.. i am about to go crazy.. thanks in advance
Hi. Can you help me at safe ? I can exploit the binary but only inside GDB. Can you give me a hint about this ? I have to fuzz the address of my system argument string ?
Hi. Can you help me on safe ? I can exploit the binary but only inside GDB. Can you give me a hint about this ? I have to fuzz the address of my system argument string ?
hi, i have read your post which is "I've tried looking for running processes but I don't have permission to? unless I am doing it incorrectly. I am on as C***e should i be on as another user?" i am in the same situation.. how did you solved
Forest was very interesting, but I'm getting better at this... Moving on to some challenges to break the pace up a little....