Any hint about where is the we***il panel?? have creds but don´t know where to place them
.
@Milo @kienast
where did you find those creds ?
because my dir enumeration got non important stuff
maybe I’m missing something
wiat there are creds! mind blown, didnt see anything anywhere
stuck at file decrypt
jealous, I cant find that file.
@Milo said:
Any hint about where is the we***il panel?? have creds but don´t know where to place them
one of the first things I found , It’s right there where it should be , you probably missed it going over your initial enumeration . No idea where you found creds though , that eludes me …
@An0maly said:
@Milo said:
Any hint about where is the we***il panel?? have creds but don´t know where to place themone of the first things I found , It’s right there where it should be , you probably missed it going over your initial enumeration . No idea where you found creds though , that eludes me …
“it’s right there where it should be”
Let me know how it goes with the obvious one, after you get the credentials LOL. I made the same mistake initially.
I have a feeling that this will be another frolic!
no clue where you guys are getting creds from
@r3no said:
@An0maly said:
@Milo said:
Any hint about where is the we***il panel?? have creds but don´t know where to place themone of the first things I found , It’s right there where it should be , you probably missed it going over your initial enumeration . No idea where you found creds though , that eludes me …
“it’s right there where it should be”
Let me know how it goes with the obvious one, after you get the credentials LOL. I made the same mistake initially.
I think I found the ‘way’ to locate it , still no creds though …
Edit: Stop hoping to find the credentials in some realistic location/fashion. You won’t. That’s what tripped me up. Go back to your basic enumeration results and find something that requires a password. The password can be found on that very same page, right in front of your face.
I cannot find something inside the mail servers(seems empty), neither i can connect to the web portal with those creds… . what am i missing?
@opt1kz said:
Edit: Stop hoping to find the credentials in some realistic location/fashion. You won’t. That’s what tripped me up. Go back to your basic enumeration results and find something that requires a password. The password can be found on that very same page, right in front of your face.
I already found what do you mean but i didn’t find the correct password
Edit: Never mind i found it
@opt1kz said:
Edit: Stop hoping to find the credentials in some realistic location/fashion. You won’t. That’s what tripped me up. Go back to your basic enumeration results and find something that requires a password. The password can be found on that very same page, right in front of your face.
Been reading between the lines of everything I can find. I feel like im going to kick myself once I find it.
Ok did usual enumeration for the port, even found a well known CMS. I did the Fav NSE script and found the service name but not making since when trying to find credentials.
I keep having a padding error while decoding the file Can some help me out on that ?
@goa54 said:
I keep having a padding error while decoding the file Can some help me out on that ?
PM.
Another shitty box from sahay. Initial foothold was something imaginary , if you stuck you at the beginning you have to pray and wait for the light to come and save you because it was complete nonsense . After going through much more imaginary things and guessing, managed to get a low priv shell but the pain didn’t finished at all because you have to run from something with again much more guessing. This box is complete pain in the ■■■ and nonsense. Waste of time.
Got root after some crazy enumerations . I shouldn’t have forgotten that this machine is complete nonsense and getting root was same . Enumerate the files under your user , you will find something juicy.
I dont know what to say about this box. Lots of rabbit holes , lots of things that makes you crazy.Lots of imaginary things . Lots of guessing. Complete waste of time.