Resolute

Finally got root. native tool doesn’t work.

Edit: question answered

do i have to build a dll for the root ?

If anyone can give a hint about m* → r* - PM, please :c

got the list of users, need help with finding the juicy info (creds)

Need help to get login as r***, PM, please. Thanks.

Rooted: Thanks @vsamiamv for providing a nudge on logon as R*** part.

Hi I have a password and lots of users. The password doesn’t work with the person who it is mentioned with on sc*** have tried it with other users but no luck

.

Spoiler Removed

My first Windows box reached to user.txt. Someone give me hints to get to another user and root

edit: got root

Rooted, fun and easy box…

Need a nudge ? Dm me

My hints for user :

-Read the output carefully.

-When you find something useful, you should try it in different places.

My hints for root :

-Research the system, and you will find something useful.

-Research again and you will find about a vulnerability that can be exploited.

-In theory you can craft the payload manually. I wasn’t successful with the manual approach. However, you don’t need to craft if manually yourself. Just be careful with the architecture though (Thank you to @bertalting).

Type your comment> @AnonSimba said:

Type your comment> @geoluna said:

Type your comment> @Solarstorm said:

@geoluna Try an impacket script to get the user list.

@Solarstorm I already had user names by running an NSE script. Not sure what to do with them.

try to login with them :slight_smile: maybe another username helps :smiley:

@AnonSimba Im trying to login with smct and user m* . Doesn’t work…

This was a nice and easy box… if you know what to look for. But with help from the cummunity i made it. yeah root dance!
Again learned a lot since i am not good at windows boxes.

Thanks for the great box!

Still problems with user. I’m logged in as user m***** and now I’m enumerating the share for hours and can’t find any useful. Any hint?

@xeto said:
Still problems with user. I’m logged in as user m***** and now I’m enumerating the share for hours and can’t find any useful. Any hint?

Are there other services?

What a nice box, i just managed to get root and it was really interesting :slight_smile:

Don’t overcomplicate like i did, once you find the vulnerability that you need to exploit stick to that and don’t overcomplicate.

Feel free to PM me for any hints :slight_smile:

Im completely new to all windows boxes, but I did enumerate and get a bunch of users including one password, the problem is I see all the ports open on nmap but have no idea where to even login or what any of these services are. Any help would be appreciated but until then i’ll continue googling :slight_smile:

Spoiler Removed