Forest

1568101139

Comments

  • Spoiler Removed

  • edited October 2019

    can anyone help me with the very last step of root?

  • edited October 2019

    @Nikolay167 said:

    So after launching that command youhad zip file? Or you did something extra for it ?

    Run as import-module .\filename.ps1 (do not forget the dot+backslash).

    To run SH succesfully go to BH wiki page and add some more parameters to Invoke-B***

  • edited October 2019
    I keep running the dog. Load the map and find no path.

    Hack The Box

  • edited October 2019

    hmm I have user creds but no flag, though I just got the admin hash.... for user I see a share that I have read permissions to and can use a tool to list the files but I can't connect to read or download them. please help this poor newb out

    update

    I have user since I was DM'd a good tool to use. There was no need to access that share

  • Type your comment> @Br1a1d said:

    hmm I have user creds but no flag, though I just got the admin hash.... for user I see a share that I have read permissions to and can use a tool to list the files but I can't connect to read or download them. please help this poor newb out

    update

    I have user since I was DM'd a good tool to use. There was no need to access that share

    Same problem I found the user password and discover a New attack on keberos but I wasn't able to get the flag or a shell..

  • struggling with root at the moment, i'm looking at the dog tool and see many many paths but it feels like im just going down rabbit holes, any tiny hint on the next step would be appreciated!

    OSCP

  • Any hints on the syntax for getting the "sync" right? My "cat" command fails, and I think it's because I don't have the "sync" rights, even though my command seems to succeed. I'm not sure how to verify it is working.
    Thanks!

  • Finally rooted! Root was quite hard. It's been a bit frustrating but learning experience was good. You need to use the right tool. If you don't see the right path with the dog or you see weird stuff, Just reset the box.

    Hack The Box

  • edited October 2019

    Did it also happen to someone that S****H****.ps1 doesn't work, but BloodH****.ps1 does ? I just can't get the first script to work (no output, no matter what I do), but the second one works like a charm.
    Do I need the sharp one to get to root, or the Blood one is enough ? Also any idea why the first doesn't work but the second does (maybe in terms of file size ?)

    Thanks a lot for the help

  • Finally got root :D
    That was a fun box and I did learn a lot.
    Big thank you to the makers @egre55 & @mrb3n!

    I must say it was hard (but fun) for me.
    Lots of new tools to learn.

    Personally I had issues running the Hounds and Cats so I went on a different path.

    Another thank you to: @DaChef & @n4v1n for putting up with my questions.

    This hacking community is awesome!

    Always happy to help others and remember to +respect me if I helped you ; )

  • is there a way to solve this without impacket?
    i cant get this @#$%^ working.
    ' print "Warning: You don't have any crypto installed. You need either POW or PyCrypto"'
    belief me, it is installed, both of them.

    windows 7 is my rig :) if it can't be done on windows, i fail.

  • Rooted! Great box thanks to the creators. Thanks to all the people that gave me hints as well!

    PM if you need a hand.

    jpredo

  • Need a little nudge . I am completely new to Active directory and I don't have much knowledge in hacking windows
  • Type your comment> @n4v1n said:

    Spoiler Removed

    SORRY :(

  • Type your comment> @LeonardLeonard said:

    Type your comment> @suls said:

    Type your comment> @LeonardLeonard said:

    Need help regarding the actual user shell.
    I've obtained a username and a password, but I've tried attacking all the ports I could find with a lot of the impacket execs (smbexec,psexec,wmiexec), and some metasploit things. The user just seems to have no access to anything meaningful? Appreciate either a DM or a hint here. I feel like I'm really close, but missing something silly

    If you don't know the tool you will never find this, check @mcruz comment on the previous page

    I did see it previously, but I couldn't figure out what "EVIL" meant

    EDIT: Nevermind, found it. But now I'm confused as to why all my other tools failed. What made this tool special?

    metasploit winrm cmd cant use some native installed security features. Evil can

  • Взял рут, если нужны подсказки обращайтесь.
    Rooted

  • Having troubles, with root, if anyone can help me please send a message, I will make sure to tell you what I did so far.

  • Anyone willing to give me a nudge towards user? I have an account and a cracked hash but I'm not sure where to go next. I've been trying like 2 different methods using these credentials but I'm honestly not sure whether or not I even need to be trying what I'm trying.

  • edited October 2019

    got user now to try to figure out shell.

  • Type your comment> @Enlil said:

    Взял рут, если нужны подсказки обращайтесь.
    Rooted

    подсказки, пожалуйста.
    (probably wrong, but i only took1 year русский)

    windows 7 is my rig :) if it can't be done on windows, i fail.

  • Type your comment> @djbrains said:

    Type your comment> @Enlil said:

    Взял рут, если нужны подсказки обращайтесь.
    Rooted

    подсказки, пожалуйста.
    (probably wrong, but i only took1 year русский)

    ahahahhah its correct!

  • Type your comment> @BrunoSardine said:

    Anyone willing to give me a nudge towards user? I have an account and a cracked hash but I'm not sure where to go next. I've been trying like 2 different methods using these credentials but I'm honestly not sure whether or not I even need to be trying what I'm trying.

    RM THE EVIL

  • i obtain users list with kerberos_enumusers but i cannot discover hash for crack and access to machine.
    can you help?

  • Hi! I already got root but I really want to try it with privex....py as well! If anyone got it that way as well please message me

  • hey guys, struck with root. already found the path via dogs what I should do escalate to get the root. but dunno how to do it? any hints please. Thanks

  • whew, what an experience on tnhis box. Learned a ton of some windows skills! Thnx to @Chantal2019 , @GibParadox and @jpredo for assistance along the way. Have a great weekend all!

  • got a username and password . Whats next

  • edited October 2019

    :)

Sign In to comment.