So the machine stands out as the motto itself:- “Less you speak more you hear”. For the user-part try to get in and search for something which stands out from other boxes. One of the tool will help you. It can be used in conjunction with another tool to give you all the info that is needed. For root find out what is there in the current directory (once you reach the correct user) and why is it there? Try to think of a way it can be leveraged to give you the content of the user.
Please can anyone provide me with small hint as how to move from initial shell towards users … i am stuck here for days and can’t find anything interesting … any help is appreciated.
Think I might’ve dodged a bullet or two with bruteforcing and unnecessary hashes, so (both) user part weren’t that hard.
For root though, been playing around for a few hours with o***sl and t*****p, but I just can’t get it yet.
Also, I haven’t been able to upload the .pf files to my local machine, so I’m wondering if the solution is in there at all.
I have got ldapuser2’s value from t****p. It looks like h**h or pass but it’s not useful. I can’t decode it too. How can i use or decode this value? Any hint related to it? Thanks.
ldapuser2 : use tcpdump to monitoring ldap traffic, sometime it need penetration LOL .
ldapuser1 : crack that 7z .
root : see the capabilities what on your home directory, T****P is a rabbit hole, focus on the other one. try to understand what capabilites can do / that one can manipulate to get whatever you want…
waldo machine will help much on this Im sure.