Netmon

1161719212228

Comments

  • Type your comment> @YellowBanana said:

    Rooted. Anyone need hints send me a pm.

    Thanks to YellowBanana I have got the credentials and now I am working on root.

  • edited April 2019

    Is there a delay in the log files updating through ftp when compared to the app itself? Im validated into the portal and processes im executing are showing in the app logs but not in the ftp file. However after 10 minutes or so it is, at which point some other user promptly resets the box before i can continue testing.

    Hack The Box
    ---------- ytho -----------

  • rooted.
    if anyone need help pm me for a hint.

  • Big thanks to YellowBanana for the hints, fully rooted the box. Feel free to pm me for a hint
  • FINALLY!!! Thanks to everyone for not resetting for 10 minutes whilst I managed to get my root flag. I enjoyed this box, spent way to long on it, but it was good fun!

    OSCP | CCNA | CPSA

  • I was able to create a user on the box via R**, but now I am completely lost. This is all new to me. Any tips?

    Bowlslaw

  • was able to create user through p*** notifications.. how could you log in with the credentials? I tried RC and fp but both gave auth failure

  • Type your comment> @tgallagher said:

    was able to create user through p*** notifications.. how could you log in with the credentials? I tried RC and fp but both gave auth failure

    What other services are running on the box that you can log in to? Take a close look at port 445 and see if there's any other kind of service, you can use your new credentials for that.

  • edited April 2019

    Anyone having issues with meterpreter session returning died after a second?

    Hack The Box
    ---------- ytho -----------

  • I have got user and the credentials but I am not sure on how to get root.I have read through prtg-network-monitor-privilege-escalation and it said to delete the logs (system) but when I try to do that it says access denied and There does not seem to be any way to gain code execution and I can't see any way to upload a shell. If you can help I will be very grateful.

  • I got the user.txt but am lost on how to proceed? ... See the login page ... defaults creds dont work have tried to include yr ... pls any direction is appreciated

  • Guys for Netmon just read carefully all txt files in the Public Folder

  • When i read all files in Public directory i find the root

  • Finally got user on Netmon, turned out all I needed was some "air support". :-P

  • Pretty sure box is just getting reset and bruteforced...would appreciate some help if someone could PM me please.

    I think I have creds and i'm on the right path. Don't want the answer, but also dont want to get off path if the issue is inexperienced users resetting the box. Any help is greatly appreciated!

  • Rooted! Thanks to @YellowBanana and @panda1 for help without spoiling. Feel free to DM for help.

    Tip: Don't go down the rabbit hole if things that appear obvious aren't working at first - there's more than one way to achieve the same things. Get your information, take a step back and think about the origin of that information, and what it can be used for.

    Hack The Box
    ---------- ytho -----------

  • Type your comment> @Alexgot said:

    Guys for Netmon just read carefully all txt files in the Public Folder

    I have tried that and The only txt file I found was user.txt. Am I missing something really obvious.

  • OK I got root I don't know if I solved it the right way but thanks to @YellowBanana for giving me a hint. If anybody needs a hint PM me.

  • edited April 2019

    Finally got root, finished my first box!

    PM if you need hint from another noob :)

  • Okay rooted. Actually quite a simple box to when you get there.

    Quick Tips:
    Don't brute force this box - totally not required to do this at all
    Do a little research on this software or spend time looking for interesting files

    And for the last time DO NOT CHANGE THE WEB LOGIN PASSWORD WHEN YOU GET IT!!!! - You don't need to and it screws others doing the box /rantoff

    Vosman

  • @Alexgot if you found root.txt in Public, that means someone didn't clean up after themselves. I encourage anyone who found root that easily to go through and find root the proper way. You'll learn more by doing the real challenge vs taking the easy way out for the points

  • Can anyone PM me with hint where the prtgadmin password can be found ?
    I just manually inspected the whole ftp directory tree and there is only one file with the prtgadmin password, but only in hashed/encrypted form.

    Summa scientia, nihil scire.

  • Type your comment> @gamewiz11 said:

    @Alexgot if you found root.txt in Public, that means someone didn't clean up after themselves. I encourage anyone who found root that easily to go through and find root the proper way. You'll learn more by doing the real challenge vs taking the easy way out for the points

    +1 to this

    Vosman

  • Hmm, it seems that there is something wrong with the box I am using (as VIP).
    I just grepped all files available via the anon access and there are no plaintext creds for web access.

    Summa scientia, nihil scire.

  • Can someone help me with the web access I think I have the password but it does not work.

  • Type your comment> @boolean700 said:

    Can someone help me with the web access I think I have the password but it does not work.

    Look at when the file you found the password in was generated. Is it possible the password has changed since then? What may it be?

    Hack The Box
    ---------- ytho -----------

  • Well, with some hints from some peoples far more educated than I am, I learned one thing.

    DO NOT BELIEVE THE IN GODZILLA WHICH IS NORMALLY USED FOR FTPing :)

    Summa scientia, nihil scire.

  • Type your comment> @PavelKCZ said:

    Well, with some hints from some peoples far more educated than I am, I learned one thing.

    DO NOT BELIEVE THE IN GODZILLA WHICH IS NORMALLY USED FOR FTPing :)

    IN THE GODZILLA of course :)

    Summa scientia, nihil scire.

  • BINGO, root owned. Thx for the hint about proper tool for viewing files on FTP. I lost couple of hours with the stupid Godzilla. Otherwise the root hack is something like small lunch-break job.

    At the final stage, the SMB port and the old good winexe is your friend :)

    Summa scientia, nihil scire.

  • Of course, I forgot to thank to the guy/girl who did the main job of scripting. Someone called [email protected]

    Summa scientia, nihil scire.

Sign In to comment.