Cascade

Can anyone pm me for the user part thanks in advance

I thought this part might trip a few people up. Don’t rely on off the shelf enum scripts to just give you the answer. Do some manual enumeration of the place you found the user accounts :slight_smile:

Type your comment> @VbScrub said:

I thought this part might trip a few people up. Don’t rely on off the shelf enum scripts to just give you the answer. Do some manual enumeration of the place you found the user accounts :slight_smile:

Found the cLP* but can’t figure out where to use it!

@ByteM3 there aren’t many services to try use it with really. Refer back to your port scan and see what you could try accessing. Its a common one

@VbScrub said:
I thought this part might trip a few people up. Don’t rely on off the shelf enum scripts to just give you the answer. Do some manual enumeration of the place you found the user accounts :slight_smile:

A-ha! Thanks, I found something. Thank you for the hint

Type your comment> @ByteM3 said:

Type your comment> @VbScrub said:

I thought this part might trip a few people up. Don’t rely on off the shelf enum scripts to just give you the answer. Do some manual enumeration of the place you found the user accounts :slight_smile:

Found the cLP* but can’t figure out where to use it!

Does your password look like it belongs to the user? If not maybe, undress it :stuck_out_tongue:

Got user. A little stuck on Root. Have information about resurrection, but not sure what to do with it based on what I found.

** EDIT: ROOTED.**

@VbScrub Good box man. Learned quite a few new things today. Appreciated.

Hey all, I have creds for a user that I have reversed from how I found them but they still don’t look right. Any slight nudges?

Rooted!
Really nice and easy box. The initial part can be a bit tricky, but after that everything is pretty straight-forward.

Congrats to @VbScrub on creating another interesting box! Kudos to you!

PM for hints

Rooted!
That was a fun ride!
if Anyone who used the chef, could PM to explain, that would be appreciated.

Managed to get creds for three users but I’m still not seeing a way to get the user flag.

Type your comment> @bigFish43 said:

Managed to get creds for three users but I’m still not seeing a way to get the user flag.

If you’ve got three sets of credentials, you should be able to login as two of them. Check all the services.

Type your comment> @impetuousdanny said:

Type your comment> @bigFish43 said:

Managed to get creds for three users but I’m still not seeing a way to get the user flag.

If you’ve got three sets of credentials, you should be able to login as two of them. Check all the services.

@impetuousdanny Thanks a bunch! Apparently I missed that one particular service in my initial port scan. Weird.

Woohoo. Rooted! Thanks @b3nn and @moszkva for the nudges. Thanks @VbScrub for a great box. Your boxes are great AD practice.
General hint for this box: Screw your automated scripts. This needs you to think through the data you’re looking at
DM for nudges.

@anuragd said:
General hint for this box: Screw your automated scripts. This needs you to think through the data you’re looking at

Thanks, that’s exactly what I was going for :slight_smile:

Very nice box, VbScrub! Learned something new here. Not all data sources are equal, even tho if they appear to be! Windows is weird!

got user.txt but HTB keep saying it’s invalid lol ?

Type your comment> @sazouki said:

got user.txt but HTB keep saying it’s invalid lol ?

Type your comment> @VbScrub said:

Type your comment> @sazouki said:

got user.txt but HTB keep saying it’s invalid lol ?

HTB News | Integrity of Hack The Box

yeah got it & rooted thanks for this machine

@VbScrub said:

@sazouki said:
got user.txt but HTB keep saying it’s invalid lol ?

HTB News | Integrity of Hack The Box

This is getting ludicrous. Are we expected to reset a box, once we got user, just to get a fresh hash? :rage:
Got user, submitted the hash within 5-10s and got invalid. The Machine was NOT reset during those few seconds, since my session is still valid (and I didn’t see anything related in the shoutbox).
Now, even after resetting the machine, the hash is the same and invalid :confused: