Bastion

USER complete, been working on ROOT now for 2 days. I see the m******** app but the only thing I can find to exploit the monster is MSFCONSOLE. This being said, rev shell is not giving feedback unless I am on normal s** session. I have googled ways to achieve what m******* gives you but the only thing I can find is darned msf. Any assistance to do this without msf would be fabulously appreciated! Thanks all!

root@10.10.10.134#whoami
root

Bastion completed …Don’t hestiate to ping me.I am always for helping

Rooted in Kali. I would advise to try and use a Linux machine only, to practice mounting. That’s the hint for the user.
As for root, check the programs installed and then Google it.

I can confirm that you can root this box without a Windows VM (unless you don’t use Windows at all). I used Kali and then my fully patched Windows 10 desktop and that was all.

Great box. Very realistic :slight_smile:

I use ‘guestmount’ some.vhd file from /B****ps to ‘/mnt/vhd’ but I don’t see anything. Can anyone help me?

I mounted wrong vhd. so I’ll do next step.

Can anyone help me out with the initial enumeration? I can’t seem to properly look into the S** service as expected. Probably doing something silly.

edit: nvm, i was being dumb

Hi all.
this was my first box and it took a while but I gained user/root eventually. Just wanted to say thanks to everyone in this discussion. I needed a little nudge to pull me out of the rabbit hole when it came to gaining root.

much appreciated
Thank you

Type your comment

First box ever, been trying to brute force the ssh login with wordlist any hints? will be appreciated.

Is the Bastion box down this past couple days? I haven’t been able to access it with nmap, nor will it mount the network or the vhd.

Alright, day 4 of privesc and I am really missing the nail here lol. I am lost on how to utilize the .py apps to dump the hashes out of r*****n and at this point Im not really learning. If anyone could please PM me a hint as to whether or not I need to move in a diff direction or if Im on target and just need to try harder!
THanks!

Rooted. I used Kali and and my host Windows machine.

If anyone needs a hint let me know.

Can anyone help me with the initial enumeration? Found the ports, and the services running. I tried looking into s** but i am just stuck. I have looked into creating n*** sessions but I am not sure where I am going wrong.

what do i do when im in desktop ?? sorry for stupid question :pensive:

Need a nudge for root.

Know what the exploit is but for some reason cannot get it to work.

Thanks.

I’m getting a “MAC check failed” when I use the python script.
Any help?

help with mount it seems that everything is asking 4 password…and yes my VT-D is on.

i found what i need and mount it
by the end of the day its all about your CLI input :slight_smile:

Type your comment> @TimmyTheOG said:

I’m getting a “MAC check failed” when I use the python script.
Any help?

I have this same problem.