Resolute

2456730

Comments

  • edited December 2019

    Spoiler Removed

  • Can anyone give me a hint about user ?
    I enumerated and got lot of usernames

    s1lv3rst4r

  • Type your comment> @silverstar007 said:

    Can anyone give me a hint about user ?
    I enumerated and got lot of usernames

    find more info about users

    illwilll
    OSCP

  • edited December 2019

    Spoiler Removed

  • rooted

    PM for help

    Hack The Box

  • User was fast. Hard to hint it without spoiling.
    Do what you do with all Windows boxes but read the output more carefully.
    If your creds are not working, maybe try to replicate what bad users and admins are doing with passwords.

    Now AFK and root work this afternoon.

  • Type your comment> @joshibeast said:

    User was fast. Hard to hint it without spoiling.
    Do what you do with all Windows boxes but read the output more carefully.
    If your creds are not working, maybe try to replicate what bad users and admins are doing with passwords.

    Now AFK and root work this afternoon.

    took a while to get this hint lol. To everyone still stuck, do your usual windows enum and maybe grep for some juicy strings? ;)

  • Type your comment> @mpzz said:
    > Type your comment> @joshibeast said:
    >
    > (Quote)
    > took a while to get this hint lol. To everyone still stuck, do your usual windows enum and maybe grep for some juicy strings? ;)

    I know exactly what u mean and I have the juicy thing as well..
    I do not know what to do with it coz evry i****t script denies access :(
  • Type your comment> @Impulse said:

    Type your comment> @mpzz said:

    Type your comment> @joshibeast said:

    (Quote)
    took a while to get this hint lol. To everyone still stuck, do your usual windows enum and maybe grep for some juicy strings? ;)

    I know exactly what u mean and I have the juicy thing as well..
    I do not know what to do with it coz evry i****t script denies access :(

    maybe you're using that juicy thing with wrong user.. btw u dont need i****t scripts too. other port is also open..

  • Getting this shell is a pain, to me I'm doing it correctly but not much happening, anyone give me a Sanity check please.

    ”No questions a stupid question”
    <img src="https://www.hackthebox.eu/badge/team/image/1805" alt="Hack The Box">
  • edited December 2019

    found the users and found juice but nomather which user i put with the juice
    can not login with e***-w****

    madhack
    If you need help with something, PM me how far you've got already, what you've tried etc.
    Discord: MadHack#6530

  • Type your comment> @madhack said:

    found the users and found juice but nomather which user i put with the juice
    can not login with e***-w****

    Just looped it in bash and I'm in.

    m4rc1n

  • Type your comment> @m4rc1n said:

    Type your comment> @madhack said:

    found the users and found juice but nomather which user i put with the juice
    can not login with e***-w****

    Just looped it in bash and I'm in.

    ok thx for the advice i will keep on trying!

    madhack
    If you need help with something, PM me how far you've got already, what you've tried etc.
    Discord: MadHack#6530

  • So far so good, got the user. Any pointers to root?

  • Type your comment> @ssumkin said:

    So far so good, got the user. Any pointers to root?

    same here... User was pretty simple but I have no clue how to proceed. I have only an idea how it will goes...

  • whoami /all
    check groups

  • It looks like somebody changes "juicy stuff" intentionally. Why there always has be an i***t who think this is funny? It would be a nice feature to have some monitoring in HTB and kicking out those who abuse the rules.

    m4rc1n

  • edited December 2019

    Type your comment> @m4rc1n said:

    Type your comment> @madhack said:

    found the users and found juice but nomather which user i put with the juice
    can not login with e***-w****

    Just looped it in bash and I'm in.

    thanks for the advice :) got it

  • @m4rc1n said:

    It looks like somebody changes "juicy stuff" intentionally. Why there always has be an i***t who think this is funny? It would be a nice feature to have some monitoring in HTB and kicking out those who abuse the rules.

    That's not someone changing it, it's part of the box. Try harder.

    clubby789

    • GCIH | GCIA
      If you need help with something, PM me how far you've got already, what you've tried etc (I won't respond to profile comments, or on box release night). And remember to +respect me if I helped you ; )
  • Type your comment> @clubby789 said:

    @m4rc1n said:

    It looks like somebody changes "juicy stuff" intentionally. Why there always has be an i***t who think this is funny? It would be a nice feature to have some monitoring in HTB and kicking out those who abuse the rules.

    That's not someone changing it, it's part of the box. Try harder.

    I know that this is part of the box, but there was a change. Sometimes I can log in and sometimes not.

    m4rc1n

  • Type your comment> @rholas said:

    whoami /all
    check groups

    ok - I don't get it. Can someone send me an pm to push me in the right direction pls?

  • Any hints for root would be appreciated. User was pretty easy but root not so much lol (I'm not great with Windows boxes)

    Hack The Box

  • Check groups. Research what they can do

  • I know exactly what u mean and I have the juicy thing as well..
    I do not know what to do with it coz evry i****t script denies access :(

    use something evil instead...

  • edited December 2019

    Got Root, I test my payload locally by build it and register the D*L with wine.

    Hack The Box

    Try!ng Hard3r, N3v3r G!v3Up.

  • Ok So i have got pass for user m**** and I am trying to use taht creds in tolls like E4***** and other S protocol tools unfortunatelly it shows me an logon failure alert. Also I have scan all ports for that server and I have found that service W***R is working on some other port so I have use this port number an creds in some au******* module in M*********. Unfortunatelly still wrong creds :( , any clues?

  • edited December 2019

    search second user(r***) creds

  • Second user which shows in what tool?

  • Type your comment> @rholas said:

    search second user(r***) creds

    @rholas said:
    search second user(r***) creds

    When you realize what are you actually looking for it becomes actually quite simple.
    Now its root time -:)

    m4rc1n

  • most blogs do not have the code, the ones that have the screenshot of the code does not mention how they set up the project.

Sign In to comment.