Like many here, found a list of users but don’t know where to go from here, any hints?
I"m in the same boat. i have no idea what to do against AD, it’s a newer thing for me and I’m really weak at it. Even just some articles to read would be helpful!
Hard box for me but I was able to grind it out and learned a ton. Thanks @egre55@mrb3n
If you’re not familiar with this stuff (like me), you’ll be doing a lot of reading. For user, search for attack checklists and work through the possibilities. For root, looking at walkthroughs of retired HTB boxes may help.
Hard box for me but I was able to grind it out and learned a ton. Thanks @egre55@mrb3n
If you’re not familiar with this stuff (like me), you’ll be doing a lot of reading. For user, search for attack checklists and work through the possibilities. For root, looking at walkthroughs of retired HTB boxes may help.
Could you possibly mention which retured HTB boxes you are refering to?
I’m stuck on creds. get a valid login-pass but couldn’t find where to use it. I tried modules like pc, w**c and other from the tool, but get permission denied. could someone give a nudge?
@3XsAGbKHsb7FPY said:
I’m stuck on creds. get a valid login-pass but couldn’t find where to use it. I tried modules like pc, w**c and other from the tool, but get permission denied. could someone give a nudge?
Im on the exact same spot !
I dont know if we need to find another user/pass… It looks like our user is at a very low privilege.
@3XsAGbKHsb7FPY said:
I’m stuck on creds. get a valid login-pass but couldn’t find where to use it. I tried modules like pc, w**c and other from the tool, but get permission denied. could someone give a nudge?
Im on the exact same spot !
I dont know if we need to find another user/pass… It looks like our user is at a very low privilege.
same.
Thanks to Dreadless, i got the pass.
I like the box on terms of how many new tools i come across
But stuck again. tried so many things, but none worked. Maybe i just need to pause a day or so.
Does anyone has good articles of Windows pen testing? I only come across the same old exploit again and again…