It just dies on me… So I’m not sure what I am doing wrong? Googling the issues on brings up guides showing me what I have already tried. Can anyone help me?
It’s hard to suggest anything else without knowing more.
Sometimes John produces a result like this when it has cracked the password. That’s why --show exists. (john --show filename for example).
It’s possible you’ve used a wrong wordlist. It’s possible that you’ve hashed it incorrectly.
Looking at the message, if it isn’t storing the password, my first guess would be the conversion didn’t work.
Fun and learned a few new tricks. All said and done I got through something like 8 creds. No all were necessary. They just came about during enumerating anything I could. So maybe a rabbit hole here or there. As it should be. A paved path with guard rails is not as much fun.
If you are learning do not try and rush…slow down and go over everything. You may end up learning something for a future box.
Ultimately, I learned more about patience. First time on HTB. VIP sub limited the frustrations. Spent 2 days connecting only to find the box broke or something not as intended. VIP and ~4hrs on keyboard is a good way to spend quarantine time.
Por fin obtuve la raíz de esta caja, me tomo 6 horas todo el proceso, se que pudo salir mas rápido pero tome caminos que no correspondían.
usuario1: Revisar las webs, clic por todos lados, encontraras en google la forma de vulnerar lo que encuentres.
usuario2: No hay nada mas que solo revisar (cat te puede ayudar) y solo eso. No olvides los archivos de siempre. El administrador del servidor usa malas prácticas.
usuario3: nuevamente enumerar y revisa nuevamente las rutas donde te moviste antes. Estas seguro que solo es el puerto 80? . Curl es tu amigo.
root: Un clásico como primera revisión. GT*****s.
Es mi primer aporte, si contiene spoiler por favor eliminarlo. Gracias, si desean un empujón envíenme un MP.
I got initial foothold with a www-data shell, and managed to get DB credentials.
But i’m unable to connect to it via m**** command line.
Can anyone hint on where to go from here on pm ?
If you’d read back through some of the other times this has been asked you’d have got the answer faster - but the short response is consider password reuse - especially when the service you think the creds are far doesn’t appear to be running.
Good box!
For the User: enumerate, enumerate and google he will be your ally in that part.
For Root: Don’t think too loud, a simple enumeration in linux, to privesc will give you many primes and google will again be your friend.
Rooted!
My first box. I was struggling a bit mostly due to lack of experience in using the tools but google is your friend. Pretty easy box for beginners.
~~Anyone provide some help on this? I feel pretty lost and I’m pretty new to this. I found the page and I’ve been through this before with the same app version but my previous msf isn’t working, no session. I thought that the .sh file might be the way to go instead. But when try any commands nothing happens, like I’m not connected to the target or something. Any DMs would be appreciated ~~
I had a typo in the command and I just realized it after posting this. Time to take a break I think
S o I was able to crack the pri key that was located in m**n.P. nothing is working from there though, I guess I am not sure where that is supposed to be used. Any pointers would be nice.