Firewall and IDS/IPS Evasion - Hard Lab

akinamon · January 15, 2021, 5:43pm

Does anyone succeed solving this?
does it need to be HTB flag or a text?

farstrider · January 25, 2021, 11:36am

I have solved this, yes. I suggest re-reading the Firewall and IDS/IPS Evasion section. They give you the answer for the hard lab almost step-by-step.

Onibi · May 7, 2021, 9:00pm

Yeah, I have been stuck on this for more than 4 days. The solution is pretty explicit If you have read the module. However, the solution was not worked on the virtual machine instance. On my own parrot system that works pretty well.

m0j0r1s1n · June 27, 2021, 8:54am

This question has me lost I have re-read and re-read the chapter and can’t work it out any nudges would be appreciated. The previous question I had to answer not using nmap which I found strange being a nmap module (sort of).

silento · December 10, 2021, 10:11am

seams like I don’t understand the task. I got the versions of the services, but I don’t pass the test.

Nevermind, I found the solution

devhadez · January 21, 2022, 5:04pm

I just solved this box after 5 days of trying.
I got almost desperate because i didnt find out what was wrong.
I tried it all the time with the pwnbox in the browser.
I was almost about to give up till i gave it a last try, this time with my local parrot vm.
I did it exactly the same way like before, and voilà it did work.
It´s really as discribed step by step at Firewall and IDS/IPS Evasion section.
Hope the HTB-Team will fix this issue, so other people dont waste their time like me.

T0RM1NED · January 22, 2022, 8:41pm

days passed and still no correct answer to this task… about to give up

devhadez · January 23, 2022, 3:33pm

Did you read the message i posted here, yesterday?
Did you try it with your local VM?

A9H0RA · March 16, 2022, 3:27pm

It’s true the Firewall Evasion module is the answer.
Though a small hint.
Sometimes you’ve to go down for finding the answers.

wtjsk · March 20, 2022, 8:35am

Hi. Did you solve the Nmap Scripting Engine section? I’ve been stuck in this section. I’ve tried some categories of script, but none comes up with an answer.

The question is “Use NSE and its scripts to find the flag that one of the services contain and submit it as the answer.”

akinamon · March 20, 2022, 8:53am

I also didn’t succeed. That’s the reasonI quit

PayloadBunny · March 20, 2022, 10:24am

Read the Nmap Scripting Engine chapter again.
It explains everything you need to know for this task.

akinamon · March 20, 2022, 10:38am

Believe me, I read many times. I also so that other students were stuck in this module.

‫בתאריך יום א׳, 20 במרץ 2022 ב-12:34 מאת ‪PayloadBunny via Hack The Box Forums‬‏ <‪hackthebox@discoursemail.com‬‏>:‬

PayloadBunny · March 23, 2022, 4:13pm

In the chapter several possibilities are given how to scan a machine with scripts. Which method did you choose?

GaMechanic · March 30, 2022, 9:26pm

The material is not written well to link items together. The test questions are part of the whole section you are being learned. And everyone’s responses here hinted to that.
The section “Firewall and IDS/IPS Evasion section”, follow it, yes follow it and it will give you the answer.
I did this today and got stuck, but going through this thread and in between the lines I was able to resolve it.

ZarkFury · April 18, 2022, 5:39pm

Just solved this section, overall I loved the nmap course, it takes a lot of investigation and trying, not just copy pasting.

I don’t have much to share, but I guess a hint is you need to compare your result with the one shown on the course page, and identify whether you are getting the same result, then proceed to go to the next step.

ZarkFury · April 19, 2022, 8:43pm

also make sure your network config is correct, if you are using another machine, make sure your openvpn tunnel is visible in network config. For me the issue was using windows VM with WSL, causing DNS proxy not going through correctly.

bAByniCky · July 11, 2022, 2:17pm

Here’s a hint: Sometimes you have to install nCat yourself because they didn’t do it but that doesn’t stop them from teaching you to use something you don’t have. No hate, just install ncat. The rest is on you.

simulation42 · July 14, 2022, 6:31pm

How did you find the port of the service? i want to know how you found it without just looking at the course. they just give you the answer. what scan works?

kit33k · September 4, 2022, 10:57am

Hey guys, i have trouble with this Lab… ( Firewall and IDS/IPS Evasion - Hard Lab ).
I have command - i have results but version don’t work.
I checked version on ssh / http with nmap

PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH .** ************.
80/tcp open http Apache ****..

and in ncat
$ ncat -nv --source-port ** ...** **
Ncat: Version .* ()
Ncat: Connected to ** ... **
SSH-.-OpenSSH**************

and still dont work. I need help…
maybe format is bad or something ?
Maybe i must looking in another place ? (like medium lvl)

Okay - problem solved
for other:

You must discovery all enable ports