Hawk

18911131418

Comments

  • Hey
    I decrypted the .enc file. Seems like I have a user D***** and a password ***(...). I have tried using the credentials on all the services exposed. Is there another trick to this?

  • Rooted! Pretty awesome box. PM for nudges

  • edited September 2018

    Gotten user, but stuck with root, know what to do with h20 but i cant do it without a D user. Any hint?

    Edit : dont really need D user can be done without it, however u will still need a set of creds when u reach the river.

    Hack The Box

  • edited August 2018

    @StarLord95 said:
    Hey
    I decrypted the .enc file. Seems like I have a user D***** and a password ***(...). I have tried using the credentials on all the services exposed. Is there another trick to this?

    Are you sure you tried all services? Just stick with the password first.
    Edit: There is a big hint inside the file where you found the credentials ;-)

  • edited August 2018

    @3x0z said:

    @StarLord95 said:
    Hey
    I decrypted the .enc file. Seems like I have a user D***** and a password ***(...). I have tried using the credentials on all the services exposed. Is there another trick to this?

    Are you sure you tried all services? Just stick with the password first.
    Edit: There is a big hint inside the file where you found the credentials ;-)

    Oh...just needed to use a more privileged username ;). But what now, can't find anything juicy inside the service.
    Edit:
    never mind
    Edit 2:
    And now I'm stuck again. God dammit
    Hints on priv esc onto root?

  • Could also use help on privesc.. Found a method but can't use it because i'm missing a certain pw for d***** :/

  • Great box. Struggled a bit decrypting a certain file but i really enjoyed it.

    Hack The Box

  • Wow finally got root. I didn't bother for reverse shell for root though. Fun, annoying, clever. 10/10 would do it again!

  • Finally rooted! Really cool box, took me days to figure it out :)
    Thanks to everyone for the nudges.
    If anyone needs help feel free to write me.
    For the last part, even if you're thirsty there are 45105 ways to do it!

  • Besides the poison like privesc, there is also another way to get root! Finally got it!

    OSCP | OSWE | CRTP


    0x23b

  • Hi all,

    I am stuck on getting the creds for d****l. I have a RCE on the box, and have trawled through every cfg, conf, cnf file, and run enum script, but still missing something.

    If anyone could give me a hint that would be appreciated. :)

  • @Bscratch dont need creds for D. just use the poison way but tweak it to suit what u need.

    Hack The Box

  • rooted, this might have been one of my favorite boxes idek why, just a really good flow to it from beginning to user to root : )

    Hack The Box

  • @3x0z said:
    Finally rooted! Really cool box, took me days to figure it out :)
    Thanks to everyone for the nudges.
    If anyone needs help feel free to write me.
    For the last part, even if you're thirsty there are 45105 ways to do it!

    Thank you..
    But bro, this is a spoiler

  • Anyone PM me regarding PrivEsc from w**-d*** to d*****? I think i have looked through every config file on the box. Tried searching every keyword i can think of relating to ssh/password/privatekeys etc... Ran enum scripts/pspy etc...

    Haydo

  • Hi

    Can anyone give me some pointers for priv escalation? I think I have found the water thing that everyone is talking about but not sure what to try next??

    Thanks

    Hack The Box

  • @moony8272 said:
    Hi

    Can anyone give me some pointers for priv escalation? I think I have found the water thing that everyone is talking about but not sure what to try next??

    Thanks

    did you use The Channel Tunnel?
    https://en.wikipedia.org/wiki/Channel_Tunnel

    Hack The Box

  • @0xlc said:

    @moony8272 said:
    Hi

    Can anyone give me some pointers for priv escalation? I think I have found the water thing that everyone is talking about but not sure what to try next??

    Thanks

    did you use The Channel Tunnel?
    https://en.wikipedia.org/wiki/Channel_Tunnel

    Hi

    Thanks for the reply, I did but not sure what to do with it unless I'm missing something??

    Hack The Box

  • think on how you could actually get across the water? maybe you need something extra?

  • @moony8272 said:

    @0xlc said:

    @moony8272 said:
    Hi

    Can anyone give me some pointers for priv escalation? I think I have found the water thing that everyone is talking about but not sure what to try next??

    Thanks

    did you use The Channel Tunnel?
    https://en.wikipedia.org/wiki/Channel_Tunnel

    Hi

    Thanks for the reply, I did but not sure what to do with it unless I'm missing something??

    just look on google if the app you are reaching got any flaws..

    Hack The Box

  • @0xlc said:

    @moony8272 said:

    @0xlc said:

    @moony8272 said:
    Hi

    Can anyone give me some pointers for priv escalation? I think I have found the water thing that everyone is talking about but not sure what to try next??

    Thanks

    did you use The Channel Tunnel?
    https://en.wikipedia.org/wiki/Channel_Tunnel

    Hi

    Thanks for the reply, I did but not sure what to do with it unless I'm missing something??

    just look on google if the app you are reaching got any flaws..

    I have tried the flaws that I found on google using the channel_tunnel but none seem to work??

    Hack The Box

  • @moony8272 said:

    @0xlc said:

    @moony8272 said:

    @0xlc said:

    @moony8272 said:
    Hi

    Can anyone give me some pointers for priv escalation? I think I have found the water thing that everyone is talking about but not sure what to try next??

    Thanks

    did you use The Channel Tunnel?
    https://en.wikipedia.org/wiki/Channel_Tunnel

    Hi

    Thanks for the reply, I did but not sure what to do with it unless I'm missing something??

    just look on google if the app you are reaching got any flaws..

    I have tried the flaws that I found on google using the channel_tunnel but none seem to work??

    after passing the channel tunnel did you get access to the app?

    Hack The Box

  • @0xlc said:

    @moony8272 said:

    @0xlc said:

    @moony8272 said:

    @0xlc said:

    @moony8272 said:
    Hi

    Can anyone give me some pointers for priv escalation? I think I have found the water thing that everyone is talking about but not sure what to try next??

    Thanks

    did you use The Channel Tunnel?
    https://en.wikipedia.org/wiki/Channel_Tunnel

    Hi

    Thanks for the reply, I did but not sure what to do with it unless I'm missing something??

    just look on google if the app you are reaching got any flaws..

    I have tried the flaws that I found on google using the channel_tunnel but none seem to work??

    after passing the channel tunnel did you get access to the app?

    yes but can't login

    Hack The Box

  • @moony8272 said:

    @0xlc said:

    @moony8272 said:

    @0xlc said:

    @moony8272 said:

    @0xlc said:

    @moony8272 said:
    Hi

    Can anyone give me some pointers for priv escalation? I think I have found the water thing that everyone is talking about but not sure what to try next??

    Thanks

    did you use The Channel Tunnel?
    https://en.wikipedia.org/wiki/Channel_Tunnel

    Hi

    Thanks for the reply, I did but not sure what to do with it unless I'm missing something??

    just look on google if the app you are reaching got any flaws..

    I have tried the flaws that I found on google using the channel_tunnel but none seem to work??

    after passing the channel tunnel did you get access to the app?

    yes but can't login

    Hack The Box

  • very nice box...
    you have to look for ALL places to find your breadcrumbs

  • edited September 2018

    I've cracked the password to decrypt a particular encoded file, but the result was gibberish. I was expecting plaintext, so I'm worried I've made a mistake.

    I wrote a bash loop to try passwords from a file, decrypting it using the traditional command.

    Can anyone tell me if I'm going the right way, or point me in the right direction?

  • @moony8272 said:

    @0xlc said:

    @moony8272 said:

    @0xlc said:

    @moony8272 said:

    @0xlc said:

    @moony8272 said:
    Hi

    Can anyone give me some pointers for priv escalation? I think I have found the water thing that everyone is talking about but not sure what to try next??

    Thanks

    did you use The Channel Tunnel?
    https://en.wikipedia.org/wiki/Channel_Tunnel

    Hi

    Thanks for the reply, I did but not sure what to do with it unless I'm missing something??

    just look on google if the app you are reaching got any flaws..

    I have tried the flaws that I found on google using the channel_tunnel but none seem to work??

    after passing the channel tunnel did you get access to the app?

    yes but can't login

    what creds did you try?

    Hack The Box

  • Overthinking this one - got the file decrytted - got D user and a password - no problem

    Now I'm looking at a console -and all i get is
    "Sorry, remote connections ('webAllowOthers') are disabled on this server."

    There was a console the other day i could use but nothing now - is this a rabbit hole or has someone screwed with the box again ?

    ZaphodBB

  • @ZaphodBB said:
    Overthinking this one - got the file decrytted - got D user and a password - no problem

    Now I'm looking at a console -and all i get is
    "Sorry, remote connections ('webAllowOthers') are disabled on this server."

    There was a console the other day i could use but nothing now - is this a rabbit hole or has someone screwed with the box again ?

    I believe that service is configured to allow local connections only by default. If it was different when you first accessed it, then it was likely modified by a prior user who did not reset the machine. I'm sure those credentials are for a different service.

  • edited September 2018
    *Spoiler Removed - Arrexel*
Sign In to comment.