Bastion

1101113151623

Comments

  • @L4mpje Cool box dude. Nice and easy.

    All the hints you might need are likely on this thread...

    PM me if you need any assistance. I recommend following your methodology and not skipping your steps. What will trip you up is rushing because you think/know it's easy.

    "ClickmedotEXE"
    CISSP | OSCP
    arodtube

  • edited May 2019

    ROOTED! Got both user and root in Linux

    User: brasilian dance! mount and guestmount will let you navigate important Windows files with nautilus.

    Root: enumerate! Keep in mind is a realistic scenario and there are many articles about it, if you find something which is not usually installed google it!

    This box is not hard, but I've really enjoyed it!
    Thanks @L4mpje !

    PM if you need some hints!

    Hack The Box

  • Rooted! This was a really fun box and I look forward to more like it. I could not get SCP to work, so I got a little creative in that part. Thanks to @Joe in the HTB Discord.

    I was able to get everything done in Linux minus the obvious part that might require you to install an app.

    publicist

  • Finally rooted! Thanks for the hints, had to work hard. On Win-VM.
    Learned alot as a noob.
    Thanks @L4mpje and hinters!

  • Quite a fun box - hit a few hurdles because I didnt have libguestfs-tools and cifs-utils installed but with them, it was nice and straightforward. Kali all the way.

    TazWake

    Happy to help people but PLEASE explain your problem in as much detail as possible!

  • Rooted with full pure Linux.

    PM me for hints

  • what to do with those user login credentials without downloading the whole backup file? I'm really stuck on here, any hints would be greatly appreciated!

  • Type your comment> @CurrentUser said:

    what to do with those user login credentials without downloading the whole backup file? I'm really stuck on here, any hints would be greatly appreciated!

    Maybe find a service that usually requires authentication and try it with that. I don't really remember this box but I'd be happy to help in anyway I can if you refresh my memory.

    phase

  • @Phase yeah found that service, another fella gave me a hint. Thank you anyways!

  • edited June 2019

    IDK if anyone shared this before, but here is link which can help you mount.
    https://medium.com/@klockw3rk/mounting-vhd-file-on-kali-linux-through-remote-share-f2f9542c1f25

    Rooted with kali only, the git script mentioned a few pages before works like a charm.

  • Hi,

    After having a hard time trying to mount what I needed, I got access to the Windows files and now going for enumeration.

    No need to download the VHD files.

    PP

  • ROOTED!!!! without windows vm... yuppy!

  • edited June 2019

    hello everyone!
    could use some help with this box! please pm me

  • @cyberus said:

    John works fine (Tested) u probably didnt specify the hash type.

    Not accurate. You must specify the wordlist as well (rockyou i.e.). Without it, john goes to brute forcing it by using the single crack mode, which can take ages.

    Regards,
    qmi

  • Rooted. A huge thanks to @tachikoma for posting a pretty important blog post about mounting. Learned a lot about sensitive Windows Files !

  • Type your comment> @gndux said:

    I can not mount the image even if it appears on the fdisk, if someone gives me a hand I will thank you very much

    How did you try? You can mount any Windows share as a CIFS mount on Linux.

    Regards,
    qmi

  • Type your comment> @nspagnola27 said:

    Can anyone help me with user? I can't download the vhd files, whenever I try the connection just drops

    no need to download the large files..just try mounting it

    Regards,
    qmi

  • Got User without Windows using only ParrotOS.
    Towards root!

    TigaxMT

  • i could use a little help...
    i was able to get into the ***client backups server
    found something interesting but unsure what it is.

    sounds like there might be more than one way to crack this...
    anyway...
    any and all hints would be much appreciated thanks !

  • edited June 2019

    bastion\administrator

    this box is so fun

    oo3d2

  • edited June 2019

    yes I'm enjoying this box... hey... i think i found a password hash can someone please help me with john or hashcat?
    pm please :)

  • Thanks to Joe on HTB Discord for the assistance, got User and Root from Kali (no Win VM required)

  • There are 2 vhd files! Should i combine them into one? or view them separately?

  • Thanks @L4mpje! It is very interesting box.

  • Type your comment> @p3tj3v said:

    Nice box. Root part with the help off a Windows VM.
    Wondering indeed if that would be possible using Linux

    Yes, it's possible. I have got the root hash w/o using Windows VM at all and by following the tips here in the forum thread.

    PM me if you need help.

    Regards,
    qmi

  • Type your comment> @illuminatiguy said:

    There are 2 vhd files! Should i combine them into one? or view them separately?

    No, no need to combine them. Just look into each and seek for info. One of them will be your friend ;-)

    Regards,
    qmi

  • Rooted! Nice box. If someone needs help let me know.

    PP

  • Type your comment> @qmi said:

    Type your comment> @illuminatiguy said:

    There are 2 vhd files! Should i combine them into one? or view them separately?

    No, no need to combine them. Just look into each and seek for info. One of them will be your friend ;-)

    Yeah figured that out, idk why i asked that stupid question! maybe desparation? xD

    Well, anyways, mounted the right one through the share, but while browsing the files in the drive, everything looks normal.

    I even tried hivexs*** to browse W****onfig\SA* but even that didnt have anything good

    I am not able to find the credentials everyone's been talking 'bout, a nudge at this point will be a great help!

    Thanks and Best regards

  • Got it! It was very big mountain to climb on. That vhd - nice touch. I usualy do not do win machines, as I am more comfortable with Linux machines, but this was very nice one!

    Hack The Box
    If you appreciate my help, please give +1 respect https://www.hackthebox.eu/home/users/profile/50022

  • Currently stuck at mounting the the VHD. Based on some articles my command seems to be correct however it's still failing to mount. I think it's a problem with guestmount... Any help would be appreciated.

Sign In to comment.