Stuck on my way to root. any nudge would be appreciated if any one could pm me.
Same here.
Have a look at the running processes. Something sticks out... maybe it leaves things on disk or maybe you can get something out of it another way.
I've tried looking for running processes but I don't have permission to? unless I am doing it incorrectly. I am on as C***e should i be on as another user?
Rooted, it's a nice box, good enumeration practice for Windows.
Lots of hints already in this discussion thread. For user, there's one level of indirection to get another user using a well known method for enumerating users on a well known port. For root, look at what's running, which user is running it, then look for data.
Type your comment> @christrc said:
> Hi :-) if is some "bruteforce" for login to a service , a small wordlist with u****me is ok ? Overwise Is very long
Thanks for the help everyone I was able to root this box. Props to @V1s3r1on , @gexus , @zkvo , @0x6a666c6a72 , and @sazouki for making my 1st windows box on HTB a success. I went to your HTB profiles and gave you all respect. Thanks again
Guys, I've set of username apart from initial 3 and passwords, but when i try all combinations it won't work! Can any1 help me??
If you need help with something, PM me how far you've got already, what you've tried etc (I won't respond to profile comments). And remember to +respect me if I helped you ; )
Discord-cycl0ps#5219
Telegram-cycl0ps
In somehow windows machine are always different and there is always something new to learn, this one has been pretty fast but I needed to learn new tools and damn.. so cool!
few hints:
user: if you have 3 passwd but nothing fit inside, there is an impacket tool
root: i don't know if i have been lucky but I noticed some processes i usually see on real machines but not on htb , the first attempt gave me everything very clearly, 1 tool is needed
Comments
Type your comment> @44616c79 said:
I've tried looking for running processes but I don't have permission to? unless I am doing it incorrectly. I am on as C***e should i be on as another user?
You can't list running processes?
OSWE | OSCP | eCPPTv2
I rarely check private messages, if you do ask for help, show your workings. I don't reply to wall posts.
Rooted!
Great box
PM for hints
Type your comment> @44616c79 said:
hmmm.... turns out I can list processes. Perhaps I was having a "I can't type" moment
Rooted !
Interesting box
.
PM if needed
Profile : https://www.hackthebox.eu/home/users/profile/70139
Type your comment> @Dreadless said:
I kept doing the Linux enumeration... some of the commands don't directly port over to Windows. :-D
OSWE | OSCP | eCPPTv2
I rarely check private messages, if you do ask for help, show your workings. I don't reply to wall posts.
Rooted, it's a nice box, good enumeration practice for Windows.
Lots of hints already in this discussion thread. For user, there's one level of indirection to get another user using a well known method for enumerating users on a well known port. For root, look at what's running, which user is running it, then look for data.
PM for hints.
Hi :-) if is some "bruteforce" for login to a service , a small wordlist with u****me is ok ? Overwise Is very long
> Hi :-) if is some "bruteforce" for login to a service , a small wordlist with u****me is ok ? Overwise Is very long
you don't have to bruteforce anything
Problem with username .. seems not working ... (works in s**) but not in a service in a higher port
Finally Rooted
@MinatoTW A good box, for me it was a new approach on the Root PrivEsc. However, it was fun.
3 usernames and passwords that don't work anywhere is this to throw you off?
Hints for user:
Going for root now
Edit: Hints for root:
Type your comment> @juggydancesqd said:
Careful saying they "don't work anywhere"...
defarbs.com | Retired Machine Writeups! - "Let me just quote the late, great Colonel Sanders, who said, 'I'm too drunk... to taste this chicken.'”
Thanks for the help everyone I was able to root this box. Props to @V1s3r1on , @gexus , @zkvo , @0x6a666c6a72 , and @sazouki for making my 1st windows box on HTB a success. I went to your HTB profiles and gave you all respect. Thanks again
Got user, thanks @Silv3rDawg23
Rooted. Pretty much all you need has already been said in this discussion. Feel free to PM me if you are pulling your hair out xD
https://www.hackthebox.eu/home/users/profile/78568
Rooted.
If you need a nudge in the right direction, feel free to PM me.
Guys, I've set of username apart from initial 3 and passwords, but when i try all combinations it won't work! Can any1 help me??
If you need help with something, PM me how far you've got already, what you've tried etc (I won't respond to profile comments). And remember to +respect me if I helped you ; )
Discord-cycl0ps#5219
Telegram-cycl0ps
for root, is the k*. file a rabbit hole? There doesn't seem to be a l****.**** file to go with it...
Rooted. If anyone wants a nudge, shoot me a PM
Rooted Finally
Thank you @paulieh and @odinshell respect has been given!
Could anyone give me a nudge on user.I have 3 passwords and 2 users, but they don't work.
ROOOTED!!!
AND I REALLY ENJOYED IT!! Thanks to the maker!
In somehow windows machine are always different and there is always something new to learn, this one has been pretty fast but I needed to learn new tools and damn.. so cool!
few hints:
user: if you have 3 passwd but nothing fit inside, there is an impacket tool
root: i don't know if i have been lucky but I noticed some processes i usually see on real machines but not on htb , the first attempt gave me everything very clearly, 1 tool is needed
If you get stucked PM for any hint
Rooted. Thank you @naveen1729 for your help and of course thank you @MinatoTW for a great box.
For root
why can i only find two users and passwords?
Finally rooted!
don't know why pyhton module doesn't work correctly... i've lost a day!
See Ya!
0xdebe
Type your comment> @rootoor said:
There is third one also on the same page you have to do deep analysis...
And also think creatively...
Type your comment> @Sameasname said:
Could I please get a nudge here? I've tried using this but just getting errors
Edit: Nevermind, just had to think it through, I'm a scrub.
Rooted... Really fun box, very straight forward. PM for a nudge.