Chatterbox

24567

Comments

  • I scan Triple time then found the open ports... :(

  • So I've located the vulnerable service and identified an exploit. I'm just having trouble with choosing the right payload, as the default option doesn't seem to be working.

    Is this now a process of elimination for choosing the correct windows payload, or is there more information around that would help? Have been stuck at this point for a few hours

    War4uthor

  • try allports

    peek

  • Ok scratch that I found a payload that works. It's just very unstable!

    War4uthor

  • maybe if it's unstable, you should try a different payload.

  • @ice2004 said:
    The design of the machine i awful. The required resets and unstable shells makes Chatterbox unpleasant experience. By my opinion the box should be fixed and activated again.

    agreed.

    Hack The Box

  • can i dm somebody?

  • @h4x3r said:
    can i dm somebody?

    ok :)

  • Having just spent most of my day trying to maintain a shell and get this box, I've noticed a thing or two so I'll share my experience.
    Some tips to try and maintain a shell without spoilers:

    1. Don't try to spawn a Meterpreter shell straight up, spawn a normal shell that you can then upgrade to a Meterpreter shell. My gut feeling is a Meterpreter shell may step on itself when spawning which is why it continuously crashed (Not once did my standard shell crash). This has the added benefit of another session you can change to if things go badly.

    2. Try your exploit from a fresh reset of the machine.

    3. Make sure your exploit code is correct, there's no point wasting your resets if you're just hammering the box with gibberish.

    Hack The Box
    Did I help? Feel free to send some love and respect.
    https://www.hackthebox.eu/home/users/profile/10636

  • @ipatchcables said:
    Priv esc?

    For this box, you don't necessarily need to Priv esc.

    Read the other comments. Don't over think this one.

  • edited February 2018

    I guess I'm over thinking it then.. spent most of the day trying to priv esc after getting a stable shell and user. Back to basics tomorrow.

    niblex

  • finally got it, dont kill yourself on priv esc, focus on the file itself

    fhlipZero

  • Thanks for the hint, got it... and this is why I love HTB. Hours of researching various way to get to something can be used next time :smiley:

    niblex

  • edited February 2018

    My session keeps getting killed with error message Died from Errno::ECONNRESET before I can do anything. Is that because someone else is on the machine? I tried several payloads already. This one's the only one that opened a session.

    bianca

  • @bianca said:
    My session keeps getting killed with error message Died from Errno::ECONNRESET before I can do anything. Is that because someone else is on the machine? I tried several payloads already. This one's the only one that opened a session.

    Happened to me too, google up auto migrating meterpreter sessions. The exploit used will naturally close out the connection unless migrated

    Kwicster

  • I'm having an issue with formation of the payload. How to keep the payload under 730 bytes while avoiding the mentioned characters?

    Omnisec

  • @Kwicster said:

    @bianca said:
    My session keeps getting killed with error message Died from Errno::ECONNRESET before I can do anything. Is that because someone else is on the machine? I tried several payloads already. This one's the only one that opened a session.

    Happened to me too, google up auto migrating meterpreter sessions. The exploit used will naturally close out the connection unless migrated

    Thanks! That did the trick :)

    bianca

  • This box, is a serious annoying "waste of time"

    FatalGlitch

  • Finally got the shell to be stable, tried several privesc suggested, no luck. Any hints?

    FatalGlitch

  • @fatalglitch said:
    Finally got the shell to be stable, tried several privesc suggested, no luck. Any hints?

    Hmmm... ever wondered if you already had the priv?

    Omnisec

  • Tried to access priv'd file in a few different ways, no luck...

    FatalGlitch

  • @fatalglitch said:
    Tried to access priv'd file in a few different ways, no luck...

    pm me

    punish3r

  • can I pm someone on priv esc? Tried several different things no luck.

  • edited June 2018

    @Semtex said:
    can I pm someone on priv esc? Tried several different things no luck.

    Spoiler Removed - Arrexel

    punish3r

  • Thank you

  • It is a bind shell?
  • i can not get stable shell.....tried so many times. i found the port, exploit, and payload but every time i get session died on MSF. and i tried to migrate to other running process and did not work i just get Timeout.....any advice plz

    ps. i run everything after reset :)

  • Use a more basic shell

  • @unashamedgeek said:
    Use a more basic shell

    also using metasploit??

Sign In to comment.