Nothing is easy for me the machines are either hard or way way over my head
Honestly - I feel the same. Once a box has been rooted it is easy to say "do this" or make suggestions, but this masks the fact that getting there includes all kinds of mistakes.
All I can say is @offsecin is spot on but that feeling is part of the fun. If you could drop a box easily, you wouldn't feel as good when you do it.
Keep going. Relish the learning and never feel bad about mistakes or a lack of knowledge.
Happy to help people but PLEASE explain your problem in as much detail as possible! If you say vague things like "It's not working", I cant help. This isn't Twitter so my DMs are always open.
Currently have very limited HTB time but will try to respond as quickly as possible.
So far, quite a pretty nice machine.
Got access to 2 users, but still no shell
I can access some (a lot) interesting files, but the cat (and katz) is failing me, so far. Wondering if I should start throwing bigger lists with rules files against the juicy info I found. Or if I should rather look elsewhere.
Just a thought, isn't it good to have "[machine-name] - Official Discussion" as a thread name so it's easy to find or recognize?. Honestly I'm suggesting this because, it took me a while to find the thread for Blackfield. When we have more and more machines coming in the feature it will become more difficult imo.
Just a thought, isn't it good to have "[machine-name] - Official Discussion" as a thread name so it's easy to find or recognize?. Honestly I'm suggesting this because, it took me a while to find the thread for Blackfield. When we have more and more machines coming in the feature it will become more difficult imo.
Really stuck on this. only things I got so far are 2 (default) usernames and a list of shares. But I can't connect to any of the shares. Hint would be appreciated ...
Really stuck on this. only things I got so far are 2 (default) usernames and a list of shares. But I can't connect to any of the shares. Hint would be appreciated ...
You should be able to connect to at least 1 share, and work from here after.
Comments
A Chemist doing Penetration Testing - Check the Story here: BinaryBiceps
This will be a hard one again I suppose, since Blunder was rated Easy?
https://www.hackthebox.eu/home/users/profile/74337
Nothing is easy for me
the machines are either hard or way way over my head
@Linoge Don't worry bro at some day you will surely have these machines .Beginning is always hard.
WHAT in the holy heck... THAT is a ridiculous list!
no web just windows stuff wkwkwk or not enought enum?
@Linoge said:
Honestly - I feel the same. Once a box has been rooted it is easy to say "do this" or make suggestions, but this masks the fact that getting there includes all kinds of mistakes.
All I can say is @offsecin is spot on but that feeling is part of the fun. If you could drop a box easily, you wouldn't feel as good when you do it.
Keep going. Relish the learning and never feel bad about mistakes or a lack of knowledge.
Note: https://www.nohello.com/
Happy to help people but PLEASE explain your problem in as much detail as possible! If you say vague things like "It's not working", I cant help. This isn't Twitter so my DMs are always open.
Currently have very limited HTB time but will try to respond as quickly as possible.
User blood: 00 days, 03 hours, 31 mins, 13 seconds. ago. Machine is up 45 mins....
https://www.hackthebox.eu/home/users/profile/74337
Type your comment> @Wrebra said:
Bloods are always off by 3 hours so it was 31 minutes when someone got user blood.
Type your comment> @TheT3rminat0r said:
Thanks for explaining. Learned something already from this box ;-)
(...31 mins. incredible, I'm still enumerating stuff. LOL)
https://www.hackthebox.eu/home/users/profile/74337
Everything seems interesting but no leads yet
Edit: Got 1 user account but how to migrate onto next ?
hmmm
have smaller list of users now. have creds... stuck on the never ending loop of enumerations
I've been able to use the creds in multiple places, but nothing super useful from the output yet...
Type your comment> @panic said:
so i am not on a rabbit hole then. that is reassuring. I think we are at the same place... a few keyclicks (hopefully) from reaching next milestones.
EDIT... that moment when you realize you had more than what you had. You were just to occupied elsewhere. facepalm
Same here...
So far, quite a pretty nice machine.
Got access to 2 users, but still no shell
I can access some (a lot) interesting files, but the cat (and katz) is failing me, so far. Wondering if I should start throwing bigger lists with rules files against the juicy info I found. Or if I should rather look elsewhere.
GREM | OSCE | GASF | eJPT
I have first user and working on second. Just saw the thread.
Got the first flag, but cant find a way to get a shell. Is it necessary for the next step? Or still more smb enum??
EDIT: Forget it. A port initially close is now open
Got user! Fun box so far... now to challenge my Windows privesc skills (again)..
I know two users but not what to do with them. Could someone give me a little nudge please?
Just a thought, isn't it good to have "[machine-name] - Official Discussion" as a thread name so it's easy to find or recognize?. Honestly I'm suggesting this because, it took me a while to find the thread for Blackfield. When we have more and more machines coming in the feature it will become more difficult imo.
Profile: https://www.hackthebox.eu/home/users/profile/68523
i found bunch of empty files on one of S*b shares not sure if im in right place
Type your comment> @nav1n said:
same
Spoiler Removed
I must be down a Rabbit Hole. Only found a list of user names via a SMB Share...still working out what I can probe and do.
Really stuck on this. only things I got so far are 2 (default) usernames and a list of shares. But I can't connect to any of the shares. Hint would be appreciated ...
Type your comment> @theonemcp said:
You should be able to connect to at least 1 share, and work from here after.
'These violent delights have violent ends'
Really stuck as well. I have a huge list of usernames, but no idea how to use them, none of the things I tried worked. Any hints?
Spoiler Removed