Netmon

Can someone help me with the web access I think I have the password but it does not work.

Type your comment> @boolean700 said:

Can someone help me with the web access I think I have the password but it does not work.

Look at when the file you found the password in was generated. Is it possible the password has changed since then? What may it be?

Well, with some hints from some peoples far more educated than I am, I learned one thing.

DO NOT BELIEVE THE IN GODZILLA WHICH IS NORMALLY USED FOR FTPing :slight_smile:

Type your comment> @PavelKCZ said:

Well, with some hints from some peoples far more educated than I am, I learned one thing.

DO NOT BELIEVE THE IN GODZILLA WHICH IS NORMALLY USED FOR FTPing :slight_smile:

IN THE GODZILLA of course :slight_smile:

BINGO, root owned. Thx for the hint about proper tool for viewing files on FTP. I lost couple of hours with the stupid Godzilla. Otherwise the root hack is something like small lunch-break job.

At the final stage, the SMB port and the old good winexe is your friend :slight_smile:

Of course, I forgot to thank to the guy/girl who did the main job of scripting. Someone called lorn3m4lvo@protonmail.com

Spoiler Removed

The amount of people resetting passwords, brute forcing and resetting the machine makes me want to develop early alcoholism.

this box shouldnt be half as difficult as it is.

Im stuck searching the credentials on FTP, Please can yo PM where I can find them

Use some client which is able to see ALL dirs and files. Or use my above mentioned link which enable this functionality in Godzilla.

I found the clear text password of the prtgadmin , but it’s not working in the prtg gui also, i know what to do once i login but for know still won’t able to login from the n********, any tip ? am i in the correct track

Type your comment> @ismaileltahawy said:

I found the clear text password of the prtgadmin , but it’s not working in the prtg gui also, i know what to do once i login but for know still won’t able to login from the n********, any tip ? am i in the correct track

You’re in the correct track. Notice the cleartext pwd ? what’s odd :wink: ?

ROOTED!

It was actually really hard to not root this at the moment, because people kept copying the hash. Bit of an challenge to resist the constantly appearing root-hash.

Type your comment> @gilf0yle said:

User was too easy, Root was really fun, I’ve learned a lot. Thank you @mrb3n for the machine and thank you @54pp0r0 for helping me on the reverse shell syntax :slight_smile:

PS, reverse shell is not needed to get root.txt but if you insist, try switching all the " to '.

Edit: if you need help, feel free to contact me :slight_smile:

hello sir can you please help in the root access i cant even login in prtg network monitor

Rooted, thanks alot > @D1mas4lang

Hi guys, can anyone pm me/ help me out with this? I’m fairly new and can’t seem to get what I need. Thanks in advance!

tomc: if you are new to the HackTheBox, point is to copy the user.txt from some directory of the target machine a paste it in the HTB web of this target Login :: Hack The Box :: Penetration Testing Labs under “Own User” button.

After that, you are supposed to get the hash from the file named root.txt which is located in the root/Administrator own home directory and copy the hash under the button “Own root” at the same page.

This indicate that you gained access both as a user and as a root on the target machine.

Type your comment> @Sparker said:

Type your comment> @gilf0yle said:

User was too easy, Root was really fun, I’ve learned a lot. Thank you @mrb3n for the machine and thank you @54pp0r0 for helping me on the reverse shell syntax :slight_smile:

PS, reverse shell is not needed to get root.txt but if you insist, try switching all the " to '.

Edit: if you need help, feel free to contact me :slight_smile:

hello sir can you please help in the root access i cant even login in prtg network monitor

Logging to that monitor should be your first focus. Some googling on where the log files are stored in PRTG should help you with that.

I have what is seemingly the password from a file I found, but after trying to log in to the service both via the public interface and the db interface, neither work (unauthorized) – did something change?