Normally don’t comment. Really stuck on this one… Used nmap sb**u**s.ne to get users. Not sure if I’m missing some or what, but I can’t get the impacket scripts to work without passwords. Banging my head against the wall.
Need help regarding the actual user shell.
I’ve obtained a username and a password, but I’ve tried attacking all the ports I could find with a lot of the impacket execs (smbexec,psexec,wmiexec), and some metasploit things. The user just seems to have no access to anything meaningful? Appreciate either a DM or a hint here. I feel like I’m really close, but missing something silly
If you don’t know the tool you will never find this, check @mcruz comment on the previous page
I did see it previously, but I couldn’t figure out what “EVIL” meant
EDIT: Nevermind, found it. But now I’m confused as to why all my other tools failed. What made this tool special?
hmm I have user creds but no flag, though I just got the admin hash… for user I see a share that I have read permissions to and can use a tool to list the files but I can’t connect to read or download them. please help this poor newb out
update
I have user since I was DM’d a good tool to use. There was no need to access that share
hmm I have user creds but no flag, though I just got the admin hash… for user I see a share that I have read permissions to and can use a tool to list the files but I can’t connect to read or download them. please help this poor newb out
update
I have user since I was DM’d a good tool to use. There was no need to access that share
Same problem I found the user password and discover a New attack on keberos but I wasn’t able to get the flag or a shell…
struggling with root at the moment, i’m looking at the dog tool and see many many paths but it feels like im just going down rabbit holes, any tiny hint on the next step would be appreciated!
Any hints on the syntax for getting the “sync” right? My “cat” command fails, and I think it’s because I don’t have the “sync” rights, even though my command seems to succeed. I’m not sure how to verify it is working.
Thanks!
Finally rooted! Root was quite hard. It’s been a bit frustrating but learning experience was good. You need to use the right tool. If you don’t see the right path with the dog or you see weird stuff, Just reset the box.
Did it also happen to someone that SH.ps1 doesn’t work, but BloodH****.ps1 does ? I just can’t get the first script to work (no output, no matter what I do), but the second one works like a charm.
Do I need the sharp one to get to root, or the Blood one is enough ? Also any idea why the first doesn’t work but the second does (maybe in terms of file size ?)
is there a way to solve this without impacket?
i cant get this @#$%^ working.
’ print “Warning: You don’t have any crypto installed. You need either POW or PyCrypto”’
belief me, it is installed, both of them.