Conceal

Starting the discussion.

"ClickmedotEXE"

«13456

Comments

  • nmap 2.94% done; looks like i have to wait longer.

  • Lol seriously. I'm glad it's windows. :D

    "ClickmedotEXE"

  • Dear God, common ports are filtered and scanning all ports is taking forever.

  • @vanquish said:
    Dear God, common ports are filtered and scanning all ports is taking forever.

    Than don't scan the common ports. :open_mouth:

    clarkkent

  • Found some interesting stuff. Scan ALL ports, really

    Hack The Box

  • @clarkkent said:

    @vanquish said:
    Dear God, common ports are filtered and scanning all ports is taking forever.

    Than don't scan the common ports. :open_mouth:

    Yes I get that thanks. Just ranting.

  • Puh.. I can't believe I have to setup this setup to be able to get on the thing.

  • edited January 6

    @kerpanic said:
    Puh.. I can't believe I have to setup this setup to be able to get on the thi

    Spoiler Removed

  • In Progress...

  • it's related to NSA and traffic monitoring... but god damn with exploit setup...

    clarkkent

  • edited January 8

    @salute101 said:

    @kerpanic said:
    Puh.. I can't believe I have to setup this setup to be able to get on the thi

    I have to be, as I am not yet totally bold.

  • edited January 12

    .

    LegendarySpork

    LegendarySpork

  • i Scan using NMap and got Ports. It's not just #InternalServerError but found #Palindrome numbers as well.

  • @CatrionaGray said:
    i Scan using NMap and got Ports. It's not just #InternalServerError but found #Palindrome numbers as well.

    :)

  • I only found one service up, and it seems not the easiest thing to exploit, so would like to explore more..
    However, my full port scan keeps stopping after 900 seconds "15 minutes for only 15% at fastest options"!!!

    is it only me?!

  • For those still in trouble with port scanning I would recommend you read https://forum.hackthebox.eu/discussion/927/quick-port-scan-tip

    @23Y4D try using the service you found for enumeration (I'm assuming you found the right service for this)

    If anyone got further than initial enumeration, I could use some help to connect to the service on the machine (trying not to spoil here). I've got version and credentials, but I'm having trouble to find a proper client for Kali.

    bianca

  • @bianca said:
    For those still in trouble with port scanning I would recommend you read https://forum.hackthebox.eu/discussion/927/quick-port-scan-tip

    @23Y4D try using the service you found for enumeration (I'm assuming you found the right service for this)

    If anyone got further than initial enumeration, I could use some help to connect to the service on the machine (trying not to spoil here). I've got version and credentials, but I'm having trouble to find a proper client for Kali.

    I think I'm at the same spot. I found the "Key" and I'm trying to get the connection setup but looks like I might also need a username and password in addition to the P** Key but I'm not seeing anything. I would expect to at least see a username in the same place as the key.

  • @1NC39T10N said:

    @bianca said:
    For those still in trouble with port scanning I would recommend you read https://forum.hackthebox.eu/discussion/927/quick-port-scan-tip

    @23Y4D try using the service you found for enumeration (I'm assuming you found the right service for this)

    If anyone got further than initial enumeration, I could use some help to connect to the service on the machine (trying not to spoil here). I've got version and credentials, but I'm having trouble to find a proper client for Kali.

    I think I'm at the same spot. I found the "Key" and I'm trying to get the connection setup but looks like I might also need a username and password in addition to the P** Key but I'm not seeing anything. I would expect to at least see a username in the same place as the key.

    Isn't the machine name a hint?

    clarkkent

  • edited January 5

    @clarkkent said:

    @1NC39T10N said:

    @bianca said:
    For those still in trouble with port scanning I would recommend you read https://forum.hackthebox.eu/discussion/927/quick-port-scan-tip

    @23Y4D try using the service you found for enumeration (I'm assuming you found the right service for this)

    If anyone got further than initial enumeration, I could use some help to connect to the service on the machine (trying not to spoil here). I've got version and credentials, but I'm having trouble to find a proper client for Kali.

    I think I'm at the same spot. I found the "Key" and I'm trying to get the connection setup but looks like I might also need a username and password in addition to the P** Key but I'm not seeing anything. I would expect to at least see a username in the same place as the key.

    Isn't the machine name a hint?

    Maybe. I tried it as the PW and username:PW but didn't get a connection. Not sure yet if it is my setup or the creds are invalid

    Edit: found a list of users (same place as plaintext key). Still looking for passwords

  • I already got the Username and Password but my problem is about setting it up. I have no idea about the thing lol.

  • @CatrionaGray said:
    I already got the Username and Password but my problem is about setting it up. I have no idea about the thing lol.

    Same. This should be a good lesson learned xD

    "ClickmedotEXE"

  • edited January 5

    Brute force groupname don't show me anything
    Do I miss some obvious name ?

  • edited January 5

    I think i know how to use the info that i got from a service, but, how to go into this when you are already on it? inception? ... :lol:

  • Having some fun here to setup the VPN connection lol

    But no username / password so far. Am I missing something?

    ferreirasc

  • @braindamaged Nice work on first blood!

    n00b

  • Question, is anyone getting mixed results with enum? I was getting a lot of results back, started acting flakey so I sent a reset and now I'm not getting anything back at all?

  • a windows box? i got sub7.exe for that!

  • It is interesting that at the time of this message (1145UTC) only 3 people have user and first blood took 7 hours.

    Yet it is still scored VERY EASY (1 vote) and MEDIUM (1 vote).

  • That probably means we're all overlooking something not too complicated. I don't know about you guys, but I'm great at overthinking this stuff sometimes. #HackerLife

Sign In to comment.