Nest

1232426282937

Comments

  • @nikostz said:

    Any tips on the empty file?

    Scroll up. Literally the last 6 questions have been about this.

    TazWake

    Note: https://www.nohello.com/

    Happy to help people but PLEASE explain your problem in as much detail as possible! If you say vague things like "It's not working", I cant help. This isn't Twitter so my DMs are always open.

  • Type your comment> @TazWake said:

    @nikostz said:

    Any tips on the empty file?

    Scroll up. Literally the last 6 questions have been about this.

    You have a point haha

  • Type your comment> @TazWake said:

    @turtleface said:

    Type your comment> @TazWake said:

    @turtleface said:

    So I have gone through the directories with setdir and used list to see the contents. I do not see anything related to that "empty" text file. I also am not able to runqueries, I get the database error. I figured thats why i need to use the Debug account.

    I have also used streams.exe on that text file which comes back with no streams found.

    I dont know where to go from here.

    Is the empty file on the high port?

    Why not google the tool you use to access the port where the empty file is and how you can use it to recover what you are looking for?

    You are trying to find the information you need to exploit the high port, dont expect to find it on the high port.

    I got the empty file from the shares I was able to access where I got the user flag. I am using telnet to access the high port.

    Yeah, I got that.

    Thanks for your help! I was way over looking this one. I got the info from the file that I need!

  • Type your comment> @emmycat said:

    Type your comment> @theonemcp said:

    I'm right now trying to make sense of the exe file and the "empty" file.
    for the exe I tried so far:

    • O*D but this was a big fail
    • R****e2 worked better but I couldn't make sense of it
    • "NSA Tool": looks promising. but I still need to find out how it works

    I'm on the right track with this?

    for the empty file I don't know what to do. I guess the problm is that the data gets lost when the ile is copied over from windows to linux.
    But I don't know how to examine the file directly on the share :(
    Hints are appreciated (also per PM)

    The empty file might not actually be empty. Maybe you should get ALL the INFO. :p

    Thanks for this

  • One thing that I wish someone just told me about that empty file:
    It's on a Windows environment. If you move that empty file to a different environment or you "modify" it someway, it will lose it's "properties".

  • I think i'll try to wrap my head around commandoVM with this machine, wish me luck boys... i think this is going to get a tad bumpy.

  • Hey Guys, really stuck at the VB code decryption thingy. Happy to rep if you can teach me on what needs to be done. Never did any Vis Basic code or .Net stuff. :) Thanks

  • Type your comment> @ShredX said:
    > Hey Guys, really stuck at the VB code decryption thingy. Happy to rep if you can teach me on what needs to be done. Never did any Vis Basic code or .Net stuff. :) Thanks

    I'm stuck in the same place. I should be decryptable online but it doesn't work either. Wouldn't mind if anyone could help.

    Hack The Box
    CISSP | eJPT

  • hey guys im stuck with the hqk *** from port 43** can someone help me to find the right path

  • Thanks @VbScrub, I hated it... But I learned a lot :mrgreen:

    PS. I suck at VB.

  • Rooted! Nice machine and learned how to show hidden files (old school technique but always applicable).
    Cheers!

    Hack The Box
    Click here for HTB Profile: You are welcome to contact me for a nudge, but if I help you, please consider giving respect.

  • Type your comment> @Alex1PM1 said:

    hey guys im stuck with the hqk *** from port 43** can someone help me to find the right path

    there's 26 pages of help right here. If you've read them all and still need help then you'll have to be a lot more specific about what you're stuck on rather than just saying "I'm stuck"

  • Type your comment> @grav3m1ndbyte said:

    Type your comment> @ShredX said:

    Hey Guys, really stuck at the VB code decryption thingy. Happy to rep if you can teach me on what needs to be done. Never did any Vis Basic code or .Net stuff. :) Thanks

    I'm stuck in the same place. I should be decryptable online but it doesn't work either. Wouldn't mind if anyone could help.

    Use https://dotnetfiddle.net/
    Just build the script without error
    And print what you nedd that's all.

  • edited February 2020

    @msraja said:
    Type your comment> @grav3m1ndbyte said:

    Type your comment> @ShredX said:

    Hey Guys, really stuck at the VB code decryption thingy. Happy to rep if you can teach me on what needs to be done. Never did any Vis Basic code or .Net stuff. :) Thanks

    I'm stuck in the same place. I should be decryptable online but it doesn't work either. Wouldn't mind if anyone could help.

    Use https://dotnetfiddle.net/
    Copy the code from all vb files
    Just build the script without error
    And print what you nedd that's all.

  • edited February 2020

    @msraja said:

    @msraja said:
    Type your comment> @grav3m1ndbyte said:

    Type your comment> @ShredX said:

    Hey Guys, really stuck at the VB code decryption thingy. Happy to rep if you can teach me on what needs to be done. Never did any Vis Basic code or .Net stuff. :) Thanks

    I'm stuck in the same place. I should be decryptable online but it doesn't work either. Wouldn't mind if anyone could help.

  • Type your comment> @msraja said:

    @msraja said:
    Type your comment> @grav3m1ndbyte said:

    Type your comment> @ShredX said:

    Hey Guys, really stuck at the VB code decryption thingy. Happy to rep if you can teach me on what needs to be done. Never did any Vis Basic code or .Net stuff. :) Thanks

    I'm stuck in the same place. I should be decryptable online but it doesn't work either. Wouldn't mind if anyone could help.

    Use https://dotnetfiddle.net/
    Copy the code from all vb files
    Just build the script without error
    And print what you nedd that's all.

    Thanks @msraja! I appreciate that.

    Hack The Box
    CISSP | eJPT

  • Type your comment> @VbScrub said:

    Type your comment> @Alex1PM1 said:

    hey guys im stuck with the hqk *** from port 43** can someone help me to find the right path

    there's 26 pages of help right here. If you've read them all and still need help then you'll have to be a lot more specific about what you're stuck on rather than just saying "I'm stuck"

    Rooted nice vm i was confused with the high port but finally find the creds and get access to the flag

  • edited February 2020

    I'm in the last phase and got a secret from L*p.cF but can't repeat the step from user as it complains about bad padding. What am I missing?

    Hack The Box
    CISSP | eJPT

  • edited February 2020

    @grav3m1ndbyte said:
    I'm in the last phase and got a secret from L*p.cF but can't repeat the step from user as it complains about bad padding. What am I missing?

    Does L**p.c*** look like something else you encountered before? maybe HLap.*xe

  • Type your comment> @nristo said:

    @grav3m1ndbyte said:
    I'm in the last phase and got a secret from L*p.cF but can't repeat the step from user as it complains about bad padding. What am I missing?

    Does L**p.c*** look like something else you encountered before? maybe HLap.*xe

    Thank you! I guess I didn't look carefully

    Hack The Box
    CISSP | eJPT

  • Well, got root! Interesting box for sure, I have lots to learn especially with vbscript which I have been avoiding until now. Many thanks to @n00py, @Darvidor and @rootshooter for helping!

    Hack The Box
    CISSP | eJPT

  • I would like to ask as i've just started this box...Could anyone confirm if there are only 2 ports 4*5 and 4**6 opened ?! Is this accurate or my enumeration sucks...?

  • Type your comment> @Destroyervg said:

    I would like to ask as i've just started this box...Could anyone confirm if there are only 2 ports 4*5 and 4**6 opened ?! Is this accurate or my enumeration sucks...?

    Pretty Accurate!

    Hack The Box
    CISSP | eJPT

  • I get 'Invalid database configuration found. Please contact your system administrator' when trying to do things on the higher port. Is this deliberate to get me to look elsewhere or is it an actual issue?

  • I been spinning my wheels on this most of the day. Never done any reversing before. I got the user flag and I have a 0 byte file plus and exe. I been playing around on the high port but I not sure what my next step is. I looked back though some of the pages and I have tried a hand full of things on the 0 byte file but still can't seem to put this puzzle together. Can I someone PM me?

  • Headbang x 1000. I've got everything bar a way of revealing the locat of the root flag. Can someone please pm me on how I can get it to show itself please?

    Thanks

    Pilgrim23

  • Finally rooted! Learnt alot, thanks @VbScrub

    d4z3c

  • edited February 2020
    > @Pilgrim23 said:
    > I get 'Invalid database configuration found. Please contact your system administrator' when trying to do things on the higher port. Is this deliberate to get me to look elsewhere or is it an actual issue?

    it is deliberate and cannot be fixed
  • edited February 2020

    Finally rooted!!! I overthought this machine so hardcore. However I learned an incredible amount about windows and active directory in the process. One of my favorites so far.

    edit: wrong forum lol.

    Hack The Box

  • Rooted!

    Man, that was a super, super thorough machine. I think I learned more tools and tricks on this one, than most others.

    This is one of those cases where terms like "Easy" and "Hard" don't really describe things too well.

    There's a lot to do, and a lot of information to comb through. None of the things you are tasked with doing are very hard at all... but there's so many different areas of knowledge being tested that I'm sure most newer users will be learning something, somewhere.

    The "empty file" portion was really cool, and threw me for a loop!

    Love this machine, great job @VbScrub.

    Feel free to PM me for help on boxes, but if my help was useful, do consider tossing me +1 respect!

Sign In to comment.