Remote

I will be working from home on this one.

Good luck to everyone.

easy windows machines, my favourite :slight_smile:

Kinda bummed about two Easy machines in a row… Oh well. Hoping they get more difficult next week! Have fun all :slight_smile:

I thought the last machine was an insane rated one? Maybe that was the week before

Type your comment> @VbScrub said:

I thought the last machine was an insane rated one? Maybe that was the week before

The last machine was Traceback, it was a pretty easy linux box.

ah ok yeah I was thinking of Multimaster from the week before

I’m giddy with anticipation, i’ve developed a fondness for windows machines over the last few months.

many files

Congrats qtc on First Blood!

Found a lot of files…cant find any creds

I’ve got admin access to the site, but connection keeps dropping. Will try again later.

Pretty fun and quick machine. Probably the fastest root I’ve ever got.
User: Search high and low, find some names and a cred. Find an exploit and do it.
Root: Standard checks, see what jumps out.

Rooted! thanks for the author of that box !

For the user it was quite frustrating for me, It took an hour to get a stable reverse shell.

You don’t have to use any exploit, just what the app offers you :wink:

is the lowest port a rabbithole?

They really should ban those 45535 who stop services and delete some files. I really dont get the purpose of that.

can anyone confirm if the N** file sharing port is meant to be open or not (port number starts with 20) ?

When I did my initial port scan it was open, but since then doing further port scans it is not showing up and attempting to interact with it gives nothing but time outs. Wondering if this only showed in the initial scan due to something someone else was doing on the machine or if its actually meant to be there but is down for some reason at the moment…

**EDIT: ** Changed my VPN to use the US servers instead of EU and now the port is open and is useful

Spoiler Removed

@calamaris I switched my VPN to the US servers instead of EU and now the port is open (and useful). Thanks to @akatsuki and @roelvb for messaging me to say that port should be open

Type your comment> @calamaris said:

This m***t **s is so luggy, my terminals stuck

did someone get something out of it?
enum it takes me ages with nothing useful so far.

Hmm yeah I downloaded all the files from m***t **s , not finding much but a possible username. Low port has nothing as anonymous