Access

I got user access. Need help with priv esc. Please PM some tips on where to start looking for priv esc. Using r***s still requires a password. Some help would be very much appreciated.

are there any problems with the box? yesterday I was able to enter the admin folder with r***s, today it doesn’t work, even after a few resets…

same here can’t seem to acccess Admin folder even with the user in the admins group

I didn’t think the accounts you can compromise on this box could ever access the admins folder.

So glad you guys just said that, I cant get access to the Admin directory now either and it was working fine for me at lunch time with the Ru**s method, even restarted the system myself and I never do that.

The tips and solutions is all around in this forum, look through page by page :wink:

I believe I have the correct files to start digging around more. Although, currently stumped. I am seeking guidance. A helping hand would be amazing.

I need some help guys:

"
Hi Guys,
I have founds that two files in ftp path.Download into my kali and open them.I found the passwords.I can login to ftp but in anycase can not put upload any file.I got 550 access deny error.So how should I go on?I need some hint.Thanks."

You dont need to put any files in to FTP. There are other ways to access the box.

@sesha569 said:
Went till the reading email. So what’s the next step here? Where to use those I found in email?
Thanks.

I stuck on the same step:(

Edit:Got it.

finally rooted…
thanks to @Owg @Draco123 @Jacker31 @3poke
great community!

@Tugzen said:

@sesha569 said:
Went till the reading email. So what’s the next step here? Where to use those I found in email?
Thanks.

I stuck on the same step:(

check what services you’ve found running on the box

spent a lot of time decrypting files obtained from f–. am i on right track? i am not even getting any clue. any hint?

Anyone stuck at Metasploit delivering payload step ?
Thanks

@jamesa said:
For everyone having trouble with runas…

Let’s imagine you’re a lazy sysadmin, and repeating the same action over and over becomes tedious - what do you do? If you check the runas man page you should see a parameter that will help with the laziness :slight_smile:

Runas - Run under a different user account - Windows CMD - SS64.com

When you think you’ve found it, try to ping yourself.

Let’s call this the ‘Eureka Hint’

@Tugzen said:

@sesha569 said:
Went till the reading email. So what’s the next step here? Where to use those I found in email?
Thanks.

I stuck on the same step:(

what did the nmap says?

can anyone help? got the user.txt and trying to use r***s command in the command prompt with /savecred parameter, but no luck. Can anyone PM me the direction or hints? Thx in advance.

So, I found the user password. I see comments of people using FTP, but my NMAP scan comes back with it on a single unusual UDP port. I try to FTP on the normal and usual with connection refused. Can someone PM me a hint? Thanks.

Finally got root ! Thanks a lot @r0pSteev and @sno0ze !

@nickxla said:
Finally got root ! Thanks a lot @r0pSteev and @sno0ze !

Gratulations, bro!