Access

1242527293040

Comments

  • @SlimH4cker said:
    trying to figure out the f--. Is it a--------? If so why am I not able to login with the creds for that? If not.... idk what to do... Thanks for the help.. if any.

    I was right fil------ was not being kind to me so I just used normal f--

  • I'm getting this error: [1] 27884 segmentation fault
    Are you getting the same?

  • just make sure the size is same of the file when u downloaded it

  • how you all cracked the zip password ? i m stuck here and which tool u used to read the mdb file i used mdb-tools but not got any interesting thing

  • i stuck on extract the zip file (here or via PM) ?

  • @14NC3107 said:
    For all those who struggle to read the root.txt although they are NT AUTHORITY\SYSTEM or belong to the same group as NT AUTHORITY\SYSTEM: think about what you do as a privilege user on your recent personal Windows desktop/laptop when your system asks something because you are trying to install a new program.

    You "just" have to translate it in the (non interactive) shell you have.

    Clicked and voilà my eyes opened.

  • @karma9874 said:
    just make sure the size is same of the file when u downloaded it

    Hi. The file in server has 5652480 bytes. In my machine it has 5651666....

    226 Transfer complete.
    5652480 bytes received in 19.76 secs (279.3347 kB/s)

    5651666 Dec 24 13:47 backup.mdb

  • edited December 2018

    @delgaka said:
    Hi. The file in server has 5652480 bytes. In my machine it has 5651666....

    226 Transfer complete.
    5652480 bytes received in 19.76 secs (279.3347 kB/s)

    5651666 Dec 24 13:47 backup.mdb

    Download again till you get the same size file , works well when i did it from filezilla

  • edited January 2019

    stuk on admin access trying [removed] , please someone help me

  • @delgaka said:

    @karma9874 said:
    just make sure the size is same of the file when u downloaded it

    Hi. The file in server has 5652480 bytes. In my machine it has 5651666....

    226 Transfer complete.
    5652480 bytes received in 19.76 secs (279.3347 kB/s)

    5651666 Dec 24 13:47 backup.mdb

    I've changed the client ftp... Now it's working. Thanks

  • Now I'm stucked in priv esc.
    I'm tryng to up the exploit via ftp but the connection is getting time out.

    Any hint?

  • My first Windows host, can someone list some tips and topics to research.
    I can see the open ports, however that about as far as I got...
  • edited January 2019

    I'm trying [removed]... but is asking for password. I've tried all recovered [removed] and nothing.
    Some hint?

    Spoiler Removed

    I tried to load an exploit too... but my ftp connection is getting timeout when I run put or other command.

  • edited December 2018

    pm me , i just solved it

  • Got user flag, actually really simple, thanks to @xpwn for the tips.

    Now to lose myself in my first Win PrivEsc.... *gulp!**

  • edited December 2018

    Any suggestion on how to open a .pst file in OSX?

    Outlook is not free.

    A method to do it in Linux will also work :)

    EDIT: NVM. Don't need it anymore :)

    Hack The Box

    Hack The Box
    -OSCP-

  • @thrash said:
    The other should not be corrupted. I did however open it in it's native app.

    tried many times to open file but in all tools it shows corrupted ....i am new here can anyone help me out for this

  • @VaibhavjoSHI said:

    @thrash said:
    The other should not be corrupted. I did however open it in it's native app.

    tried many times to open file but in all tools it shows corrupted ....i am new here can anyone help me out for this

    Hi, see the file size. Probably your file is not complete. I've downloaded with other ftp client.

    I'll try to change my ovpn to TCP. A friend recommended cause he had problem with udp. Packet loss.

  • I was able to own this box with the hinted command, getting right syntax took time though I had to test it on a windows cmd first. However I am curious to know how to get there, like how to enumerate the box so as to establish that using r**** is the right privesc vector. I would appreciate a pm for this, I am not really good at windows enumeration and privesc. Thank you!

    ikuamike

  • Just got user. Was my first box.

  • @darkcyber said:
    Finally got r00t, if you stuck on root.txt, read this carefully

    • make sure you know where is the full path of root.txt
    • you can check with c_dk_y /list of course the Administrator is save the password in Credential manager
    • Somehow type command doesn't return output when you combine with r__as command, so I hope you know how to redirect output to somewhere with the full path of file you want to read, and where you want to store.
    • You just need 2 options /u__r of course, and /sa__c__d

    I hope it help

    anyway thanks @clmtn @Beggy @brohlm

    The c_dk_y /list is the very thing I need. Thanks @darkcyber !

    Zhe0ops

  • edited December 2018

    Hello,
    Any hint on how to upload a file to C: / temp?

    Hack The Box
    -OSCP-

  • Well, that was some run ^^ r00t3d ^^
    Just looking back at my commands history it looks soo simple -> yeah first time ever gone into penetrating. Commands were a nightmare but google helped :tired_face:
    If anyone wants some help go on PM me but I'm not giving 100% that I will help you since there are many ways to get this machine done :+1: just went the "just go by the flow" and it aimed me into beating this one :D

    As others wrote
    "Keep the command simple" no need for 100+ chars ones,
    "Plan ahead" what you want to do, obtain,
    "Keep track" of successful commands this will help you a lot,
    "...ManyMore..." - play around with commands in your VM boxes its way faster than in a machine,
    "For root" just make easy .bat file with ru**s and catch that root hash :+1:

    If you are looking through this discussion you will get root pretty fast just watch out for the sequence of doing things.

    Was fun for the first machine now onto a little bit harder :relaxed: G00D L: :CK!

  • Thanks to @xSupeFly for the last hint to get root in PM!

    Like some other guys here, im interested in how we knew that we were supposed to use r***s, this was second time enumerating a windows box for me, and got a little to much help from this thread. Please PM me if you could explain :D
    Learned alot but doesn't fully understand the box!

  • Thanks @xSupeFly that bat tip really made a difference!

    Dialect

  • Owned root. My first htb machine. It was interesting though! Thanks to the people in the forum, it was very helpful to know that I was in the right path.

  • Hey all, does R***s require a password?

  • Hello Everybody! Need some help with Privesc pleeease!

  • edited December 2018

    I'm feeling pretty dumb here; I am looking at 3 user accounts and passwords that don't work for telnet or FTP. What am I doing wrong? Do I need to do a file inclusion exploit to get access?

    EDIT: wow, nevermind, got it.

    Hint: You just need the right tools to get user. Don't think too hard.

    EDIT: Alright now I'm banging my head against the r***s command time and time again. Please PM me with any tips. I've seen lots of "check your syntax" and "really understand the flags", but I've tried maybe 50 variations of the command from my shell with zero love...

    EDIT: Got it, finally, with some wonderful help from @summerboy and @AlexZander. HMU if you want some pointers.

Sign In to comment.