This machine is giving me a headache. Especially with VS2019 in the mix. All good, I get it, its best to compile source code on the intended system/architecture. I was able to compile ELD***.cpp, no problems. However, for compiling E****C*****.cpp, I downloaded the master branch and just opened the .sln file, modified correct portion for my rev shell. It compiled successfully and I have the resulting executable, but I am receiving CreateFile Failed. HITS HEAD AGAINST WALL Any ideas?
Have the same issues!!! Any help would be much appreciated
This machine is giving me a headache. Especially with VS2019 in the mix. All good, I get it, its best to compile source code on the intended system/architecture. I was able to compile ELD***.cpp, no problems. However, for compiling E****C*****.cpp, I downloaded the master branch and just opened the .sln file, modified correct portion for my rev shell. It compiled successfully and I have the resulting executable, but I am receiving CreateFile Failed. HITS HEAD AGAINST WALL Any ideas?
Have the same issues!!! Any help would be much appreciated
Hi All, Needing a nudge with root, have found the right path and compiled relevant files. When running on box, fails to create Process? Any hints would be much appreciated!
Those who are struggle with compiling the eo * *lo**er, you can find the compiled version on Github (x64 and x86 version). I’m still fighting for root so I’m not sure if it would work.
Update: the precompiled version didn’t work for me. Compile that cpp yourself it will be the best option. Take care of the target architecture, because I’ve lost a couple of hours to find out why my shell didn’t show any output when I ran it.
This machine was a nice learning path. The initial foothold was a pain in the ■■■, but the main cause was that I didn’t filter the output. Lessons learned. The further enumeration was a bit CTF-ish for me, especially the enum command which didn’t work as intended; so instead of hostnames use IP address when enumerating.
Root was a nice learning path, you can find every info using Google and GitHub. There are a number of blogs which describes the attack vector. You don’t need any coding skills (I don’t have either), just one little tweak. Thanks @SanderZ31 , @metuldann and @VbScrub for helping me on my way
can anyone give me a nudge i have found some usernames but after that i am clue less what to do next i have tried to find any password via L**P, even tried to brute force creds on S*B Nothing happen. just help me to point in right direction to proceed further.
Thanks
can anyone give me a nudge i have found some usernames but after that i am clue less what to do next i have tried to find any password via L**P, even tried to brute force creds on S*B Nothing happen. just help me to point in right direction to proceed further.
Thanks
Dont brute force the access, you can use a tool like hydra to find what you need but you have to pay attention to the output.
Then when you find the difference you can change it to what you need.
@TazWake I have tried but i didn’t find any difference in the output as you have mentioned. Something is still i am not able to catch from your hint.
Thanks for a nudge.
@TazWake I have tried but i didn’t find any difference in the output as you have mentioned. Something is still i am not able to catch from your hint.
Thanks for a nudge.
Trying to be a bit more descriptive: You need a custom wordlist - there is a built in tool to create this if it helps.
Use this and your list of usernames, maybe with an alternative to hydra that works well on S**. Look at the responses and if you see something change, make a note of it.
I could use a nudge re the foothold as well please:
I enumerated some users and I have tried to follow the comments on anonymous r******** -? with pretty much all commands related to the device that seems to be the center of attention on this box. The box keeps telling me, it wasn’t able to initialize two things and gives me nothing except denied access and a headache