Nest

@idevilkz said:

Hi Guys, Can someone give me a Nudge. I am using telnet on the high port and can see and find files. I have found information however telnet is only allowing me to do handful amount of things i.e: setdir, list etc.
Should that suffice or do I need to think outside the box and do something more or use a different tool.

You need information from the lower port.

also, with regards to low port and ADS, I can see stream however don’t know how to execute it. :frowning:

Scroll back and read the previous answers on this. You need to solve this before you go on the higher port.

Type your comment> @TazWake said:

@alicemacs said:

I can’t find c.*****'s password. I found the encoded password in the file. However, what do I use it? Can I give me a hint…?

This has been asked and answered a lot in the last 30 pages. You need to find more information, modify it, compile it and execute it to get the plain text password.

I found more information in all directories I can access. However, I only found important files: the file including encoded password and some configuration files. I don’t know things I have to modify…

removed

@alicemacs said:

I found more information in all directories I can access. However, I only found important files: the file including encoded password and some configuration files. I don’t know things I have to modify…

Do you have the V**** B**** files?

Type your comment> @TazWake said:

@alicemacs said:

I found more information in all directories I can access. However, I only found important files: the file including encoded password and some configuration files. I don’t know things I have to modify…

Do you have the V**** B**** files?

I don’t have the file. So, I have to the file, right?

Type your comment> @TazWake said:

@idevilkz said:

Hi Guys, Can someone give me a Nudge. I am using telnet on the high port and can see and find files. I have found information however telnet is only allowing me to do handful amount of things i.e: setdir, list etc.
Should that suffice or do I need to think outside the box and do something more or use a different tool.

You need information from the lower port.

also, with regards to low port and ADS, I can see stream however don’t know how to execute it. :frowning:

Scroll back and read the previous answers on this. You need to solve this before you go on the higher port.

Thanks @TazWake
if you are referring to ADS on a *** T*** D***.txt then I have seen it and when i more it i can see it shows me a path/moresamba.somenumbers but i don’t know what to do with them.Thank you

@alicemacs said:

I don’t have the file. So, I have to the file, right?

You have to have the file s, yes.

@idevilkz said:

Thanks @TazWake
if you are referring to ADS on a *** T*** D***.txt then I have seen it and when i more it i can see it shows me a path/moresamba.somenumbers but i don’t know what to do with them.Thank you

I dont think I am talking about the same document.

The one I mean is D***** M*** P*******.txt

Type your comment> @TazWake said:

@alicemacs said:

I don’t have the file. So, I have to the file, right?

You have to have the file s, yes.

I think I only get the file with lower port. I carefully seek the file. However, I haven’t found it. Can I give me more hint…

Type your comment> @alicemacs said:

Type your comment> @TazWake said:

@alicemacs said:

I don’t have the file. So, I have to the file, right?

You have to have the file s, yes.

I think I only get the file with lower port. I carefully seek the file. However, I haven’t found it. Can I give me more hint…

Sorry, I found the directory! I think I can’t access the directory…Thanks a lot!!!

@alicemacs said:

Sorry, I found the directory! I think I can’t access the directory…Thanks a lot!!!

There is a folder you may think you cant access because you cant access its parent folder. But you can access the folder.

Now , I try getting root. I found the decrypt algorithm. However, I can’t find ciphertext. I thinks a empty file is ciphertext. However, the file is 0 byte…

This thread is like groundhog day :lol: come on guys, at least read the last few pages before asking the exact same question that’s been answered loads of times before. If you need more specific help, PM someone.

@alicemacs said:

Now , I try getting root. I found the decrypt algorithm. However, I can’t find ciphertext. I thinks a empty file is ciphertext. However, the file is 0 byte…

The empty file isnt ciphertext. Scroll up a few questions and its discussed quite a bit.

I got a root.txt!!!
I learned a couple of tips on Windows.
I appreciate @TazWake help.

Finally! What a challenge that was :smile:

Huge shout out to @VbScrub for the fun box!

Props to @n00py whose hint got me over the last hurdle.

Thanks to both! :wink:

Completed start to finish on Kali alone. There are ways.

FYI, for those who used dotnetfiddle.net. You might want to make sure your repo is private. Stumbled across someone’s code while Google-FUing the ru_****.x and found the user’s password in plain text. Made for an easy user flag but it’s kinda disappointing that I didn’t get to do the last step or two for user by myself.

I connected to the machine via telnet from 4**6 port, only LIST and SETDIR commands are working. i don’t know what to sleep i’m not good on windows machines …

@Tatik said:

I connected to the machine via telnet from 4**6 port, only LIST and SETDIR commands are working. i don’t know what to sleep i’m not good on windows machines …

I know its off-putting but read through the previous threads. This has been asked a lot of times and literally everything you need to know is on the previous pages.

Start with the other port. If you use windows as your normal day to day machine, enumeration should be fairly simple.

I read but couldn’t find what I was looking for.
I found user.txt and got stuck in root