Active any hints

Privesc im sure im doing the right thing but getting an Errorā€¦ Please PM ā€¦ anyone

letting me down :frowning:

Got the hashā€¦ ā– ā– ā– ā–  its longā€¦Anyone knows what kind of hash this is?

Hey all. Iā€™ve got user, and I -think- Iā€™m on the right path to root, but Iā€™m having issues with decrypting a file. Used Im****** to get user info then download a .c**** file. Catch is, it looks like I have to decrypt it before I can get a hash out of it? Saying more might be spoilery. If someone doesnā€™t mind shooting me a message to let me know if Iā€™m even in the right ballpark, Iā€™d super appreciate it!

@Gh0stP0tat0 said:
Hey all. Iā€™ve got user, and I -think- Iā€™m on the right path to root, but Iā€™m having issues with decrypting a file. Used Im****** to get user info then download a .c**** file. Catch is, it looks like I have to decrypt it before I can get a hash out of it? Saying more might be spoilery. If someone doesnā€™t mind shooting me a message to let me know if Iā€™m even in the right ballpark, Iā€™d super appreciate it!

Iā€™ll PM you. :slight_smile:

Very interesting machine. People with some experience of AD pentesting will like it :slight_smile:

Great first box experience. Learned a lot about AD pentesting. PM me if you need help.

This is my favourite box on HTB (move over to second place, Carrier!). My second Windows box ever and absolutely worth the hours of reading to learn new topics! Iā€™m actually going to re-visit this box from scratch to make sure Iā€™ve completely understood all of the lessons it teaches.

Hi all, finally got r00t on this oneā€¦ you should be able to get that with impacket and your Kali box reallyā€¦ cheers

Hi, Iā€™ve managed to get the initial creds but canā€™t figure out how to get a foothold on the machine. Could someone PM me a hint? Much appreciated.

edit: Got root on the box. Nice one, this forum + google really helped out

Edit: ā– ā– ā–  - used the ip for the next box i am enumerating - feeling dumb -_-
Now the scripts workā€¦

Hi together,
got Root - very nice Box - got me to learn some Kerberos stuff.
But i am still not satisfied and want to talk about the different techniques. For privesc i used a very easy technique from me********. (me******** always feels like cheating) I am now trying a certain python script, but could need a little help, because i get a ā€œconnection refusedā€.
Also i am wondering about powershell scripts in generell with kali. I installed the ps linux version from ms, but it seems a lot modules or dependencies are missing. Wasnt there also a way to use ps in metaspoit? Are there some good ressources i could read?
Pls PM me - (or point me to a place where i can talk openly about the box ^ ^) Thanks!

Finally ROOTED, had GREAT help from @Baikuya , very helpful advice~

@darwinyu said:
Finally ROOTED, had GREAT help from @Baikuya , very helpful advice~

Youā€™re welcome buddy. If anyone needs help feel free to PM me.

It looks like that thereā€™s and issue with hashcat, it recognizes hash go trough rockyou and does not crack itā€¦ JTR works but thereā€™s ā€˜specialā€™ version that you need to find, works with

@deda1mraz said:
It looks like that thereā€™s and issue with hashcat, it recognizes hash go trough rockyou and does not crack itā€¦ JTR works but thereā€™s ā€˜specialā€™ version that you need to find, works with

Yes, absolutely special version, and I had to compile it instead of using the existing same version, so weirdā€¦

stuck in R*********** sh**e. Not seeing any .xl files
Only two items in p
****** dir. any nudges pls?

@mezcla said:
stuck in R*********** sh**e. Not seeing any .xl files
Only two items in p
****** dir. any nudges pls?

You need to go through every folder in the shares till you find it , itā€™s there .

Anyone else getting rpc_access_denied when trying to se*******mp.py the hashes with the user creds?
Am I missing something or is I*****t failing ?

rooted it! :slight_smile:

finally got root. it was a nice box. Thanks for the great effort you put into this. It was a good machine where I learned alot