Resolute

I have a bunch of usernames but most options require passwords. The only option from I****ct without password returns nothing. Also is 445 a rabbithole for user?

Type your comment> @tang0 said:

I have a bunch of usernames but most options require passwords. The only option from I****ct without password returns nothing. Also is 445 a rabbithole for user?

No. try harder

Type your comment> @tang0 said:

I have a bunch of usernames but most options require passwords. The only option from I****ct without password returns nothing. Also is 445 a rabbithole for user?

Check the output from your enumeration process line by line. Since you have the usernames, I guess you probably didn’t see it, due to some error messages.

Got into user 2, the hint makes it sound difficult.
Edit: On the edge of root now, interesting vuln.

Built my root payload, now to get it executed right

hey guys ! So I got access to rp******* with the creds. But I don’t know what to do from here can you please give me a hint?
Thanks

So I have the right creds for the first user, but it’s been an hour I search, and I find nothing interesting in the S** shares. Do you have a hint ? :frowning:

Edit : I’m dumb, I do not did a full scan so I didn’t saw the high port.

is r*** needed to get root?

Very nice box, its all about enumeration , and for root a little bit of googling if you are not familiar with technique

Spoiler Removed

root has such a cool exploitation process, just read carefully the blog after you get your root foothold.

I really enjoyed it @egre55 , thank you!

If you guys need nudges, PM me, but please don’t come with messages like “Are these credentials valid?” , because I won’t respond to these type of questions anymore.

Rooted. Thanks to everyone who helped me push past the problems with root, pretty frustrating but finally got it.
User: Easiest user ever, just read the output carefully
Root: A bit CTF-y but enumerate everything, once you find the folder switch over and find out more about who you are now. Google will then take you the rest of the way.

The root exploit doesn’t work for me, i even tried copying the exact same commands other people did and it does not work! wtf man?

Cool box, I really enjoyed it. Feel free to PM if you’re stuck…

Probably the easiest box ever. Remember to try harder

Got user pretty quick, I’m thinking that targeting r*** and then taking advantage of his membership in D***n sounds right. Any hints on how to get r or (if that’s not right) try to move to root?

Spoiler Removed

Can anyone give me a hint about user ?
I enumerated and got lot of usernames

Type your comment> @silverstar007 said:

Can anyone give me a hint about user ?
I enumerated and got lot of usernames
find more info about users

Spoiler Removed