@hackgineer said:
finally got this one, with the help of the forum hinters ofcourse, so thank you all!!
this was another great learning experience, with a few alternate solutions to go back and practice using tools on, so a big thanks to @L4mpje as well for making it!!
hint root: The exploit for m*****g for me doesnt work, I took the hash and applied manual decrypt, only you have read and understand the code in python
let me PM if you stuck
I got user.txt and root.txt
It’s very instructive machine
hint plz after listing all installed program in vhd> @JolIg0n said:
I have got the user and I can connect to the machine and see the vulnerable application, I have found how to exploit that vulnerability but to run the exploit I need a session in meterpreter and this is where I am giving problems, from msfconsole if I convert the one I do with the ssh does not convert and I do not know what to do anymore, if I upload a back door to execute it from the session ssh does not connect me either, someone who can send me a private please do not know what I do not do well
I also got the ruby file and I copied the file to my computer but it gives me an error when I pass the ruby command
Just rooted. Running this root in a Windows VM or machine makes it pretty straightforward. Not actually sure if there is a way from a Linux box. No cracking needed fyi
I mount vhd file and list all installed programs can you u give me next hint ? SA* file matter ?
finally got root after a couple of rabbit holes. learned a lot doing this all in Kali. I’m curious to know if there was another way to get root. I really thought 1 of the rabbit holes was promising.
I am at a complete loss. I have access to the file i need to decrypt to get the admin info. i can see what i need to decrypt but the process is horrible. I’ve spend two full days trying different things and i can’t get it to work. can somebody please help push me to the right direction because i’ve downloaded the program but it won’t let me switch the files out and i have no way to decrypt it on kali even though i’ve been trying. any help would be appreciated.
if you using Kali there 2 tools that can help you:
Ha** ID
J*** The R*****
check your syntax maybe you got it wrong.
in that Note Thanks to @L4mpje for great machine i learn some new stuff.
it wasnt easy but after you understand it you will laugh how easy things can be !
the answer for start attacking just in front of you after Nmap just read the all resaults !
syntax syntax and again syntax…
google + reading resualts will make your life easier !
User : i got some help with the syntax and got it.
Root : with the user you can see a lot just basic windows programs nothing else . (Hint)