Conceal

1234579

Comments

  • I got a w** type of shell on the box i can even read the user flag, what I found odd is that i can get the files to upload to execute it, I tried different shells, that can give me a stable "regular" shell but I can get anything to execute... did someone else take this road to user? did someone found how to execute files that you upload?

    dplastico

  • for the fun, did someone compile some source code for priv esc ? which ide / compiler ? pm me (i know we can get it already compiled)

    peek

  • Any hint for privilege escalation part?

  • Got root. I like this machine.

    Maxxx

  • @dplastico said:
    I got a w** type of shell on the box i can even read the user flag, what I found odd is that i can get the files to upload to execute it, I tried different shells, that can give me a stable "regular" shell but I can get anything to execute... did someone else take this road to user? did someone found how to execute files that you upload?

    i managed to get a meterpreter reverse https shell after a few trys it seemed windows defender was stopping them.

  • WOOWWWW Excelent!!!! al the windows boxes are wonderful!!!!!! This box teach me a lot!!!

    Al you need to get user and root is here. The most difficult part is the Initial step

    Thx!!!!!!!

  • Can someone please pm me, that got the V** connection going with s**** on linux, i am missing something but i can not get it what, have all the details with i**-s*** and from s******* but i can not connect :(

    ntroot

  • edited February 2

    I'm stucking on priv esc, some one pm to discution

  • Hi, I've install the client in my kali box, the strong one. I've tried multiple configurations in the file i****.c**f but I always get the same result. All I can see in Wireshark is that a packet is sent but I never receive a response.

    Is it a problem of my configuration file i****.c**f or do I have to modify other files.

    I really need a help with this.

  • Was anyone able to connect with the openbird?

  • Hello! Im stuck on enumeration lol (noob). All i got is what (1) i**-s*** displays and result using the (2) "framework" /s***_e***. Can someone pm me how to connect? Im using strong and editted the i***c.c*** and i***c.s*****s using the result of (1) combined with the key found using (2). There seems no error as i run the service. TIA

    happy to say im a newb

  • Anyone who rooted this box, could you please PM me here or in mattermost (nijat11).
    Played a lot with token impersanation, but didn`t succeed :(

  • This thread just shows how hard this box is. I have the IPs, PSK, and SA. Just would like to know what must i expect when starting the strong service with a combi of values on c**f and a value on s*****s file? Im trying to make a connection while im in an openvpn connection on the box.

    happy to say im a newb

  • Type your comment> @govsec said:

    This thread just shows how hard this box is. I have the IPs, PSK, and SA. Just would like to know what must i expect when starting the strong service with a combi of values on c**f and a value on s*****s file? Im trying to make a connection while im in an openvpn connection on the box.

    is openvpn compatible with the protocol ?

    peek

  • Hey @peek. Im not sure man. Idk if we need to connect and up our tun0 while trying combinations on strong configs. Idk also what to check once starting the strong service and the ip**c. Can someone dm me what else do i need other than IPs, SA, and PSK?

    happy to say im a newb

  • edited February 11

    Learned a hell lot from this box. If anyone needs help, pm me on netsecfocus mattermost or discord. I'm cristi on both servers. I most likely wont reply here because I rarely stay on the forums.

    image

  • Privesc..Privesc..Privesc..Privesc.. :dizzy:

    mitoOo

  • edited February 12

    Stuck on phase 2, INVALID ID INFO, so a network mismatch I guess.

    Any advice on how to figure out the correct subnet?

  • i have some question with phase 1 and phase 2. when can i say that im on phase1 or im on phase2? was it determined on i*c.cf contents? how many conns must the c**f have? Stuck on sending packet: from myIP[500] to 10.10.10.116[500] (952 bytes)

    happy to say im a newb

  • Anyone able to look over my conf files? It will be much appreciated!

  • Type your comment> @ntroot said:

    Can someone please pm me, that got the V** connection going with s**** on linux, i am missing something but i can not get it what, have all the details with i**-s*** and from s******* but i can not connect :(

    Still in the same boat, this is going to make me insane!

    ntroot

  • Thanks for help all. Its done and rooted ;)

    ntroot

  • edited February 21

    need some support for root,

    SekIsBack

  • edited February 22
    can someone help me with config. I setup the config and P** properly. when I used ips** up *** it's stating no shared key found..

    What's going wrong here? Thanks in advance.

    edit.1: NVM got it working.

    sesha569

  • edited February 22

    nvm got it.

    Thanks @LegendarySpork @1NC39T10N @ASHacker for your tips and hints with hard part of the box

    sesha569

  • Did anybody have issues with IDir '10.10.10.116' does not match to 'conceal' ? Would appreciate if anyone would be up for a quick discussion about my configuration file!

  • Can someone give hint to bypass the port 80 restrictions. I can see the uploaded file. But not able to proceed further.

    sesha569

  • Got user. Thanks @Sekisback and @ASHacker
    Hint. DOn't use webshells in the kali. those didn't work for me. Good luck if you want to try. But if it fails. Move on with other shell.

    sesha569

  • Has anyone had any issue with downloading stuff with P****S****? Seems to just kill my connection before retrieving what I need.

  • edited February 24

    Thanks @mitoOo man. After all those WEEKS trying to figure out the correct combination @mitoOo helped me on the config. I got so many mistakes. Even to the point of reinstalling "strong". So for the hints. How did i know i got passed phase-2? Don't forget to fire up "tail -f /var/log/syslog and tcpdump -vvvv -i tun0" it is where i got the correct combo on ciphers. it is also where i saw what @mitoOo taught for the correct cipher combo.

    happy to say im a newb

Sign In to comment.