Official Worker Discussion

Guys and gals, it is super easy to hide away your own files on a Windows box. Please don’t leave files lying around in very visible places…

Type your comment> @ori0nx3 said:

Type your comment> @malm said:

Is there a problem with the box? nmap scan only gives me 2 ports open. but from inside the box I can see that it listening on a few more on 0.0.0.0. Feels Like I need atleast one of them to escalate to user?

There are more than two ports open… One of them may not show up if you only scan the top 1000.

have done -p- scan multiple times, might have to wait until there is less people on this box…

Type your comment> @malm said:

have done -p- scan multiple times, might have to wait until there is less people on this box…

You could try switching servers?

Rooted just now: Very interesting machine and learned a bunch of stuff.

My hints!
For User: There may be more than 1 tray.
For Root: Comeback to Initial foothold with new things. :wink:

Hit me for cryptic nudges.

@ekenas Thanks for the wonderful machine. But I don’t know why the web page was slow as dead.

I don’t understand. What am I doing wrong?
Some guys said that the creds is used in plain text.
I tried it over and over again, without proxy, even used
curl -v "http://d*.w***.h***" --ntlm -u d***.w***.h***/user:pass --noproxy “*”**.
For now, still no luck.

Rooted, nice box, learn a lot. But the perfomence was … LOADING … not so nice

Rooted. Not so hard. Pretty straightforward box :slight_smile:

Rooted! Spent more time fighting with the lag than actually doing the box though.

DM for nudges.

For those who are getting an unstable shell for the root part, there are so many ways to get a perfect shell as admin :stuck_out_tongue: I literally did it in 3-4 ways :smiley:

Rooted!!!.
User: Check everything in the machine.
Root: documentation will help u.

Very funny box!
If anyone needs a help, contact me :slight_smile:

d… page login

same as yesterday

Connection timed out

So I think dev… site is only a rabbit hole.

Type your comment> @rholas said:

d… page login

same as yesterday

Connection timed out

So I think dev… site is only a rabbit hole.

Try to change VPN servers, it was very slow for me on EU, but I changed it for AU.
No major rabbit holes on this box. :wink:

root@kali:~/htb/boxes/worker# nc -nvlp 9001
listening on [any] 9001 ...                                                                
connect to [10.10.16.7] from (UNKNOWN) [10.10.10.203] 50577                                
                                                                                           
PS [REDACTED]> whoami                                                     
nt authority\system    

Great box, learnt a lot. PM for hints

Found the login page but cant find the password. I guess n****n is the username? Any nudges on password?

Type your comment> @gs4l said:

Found the login page but cant find the password. I guess n****n is the username? Any nudges on password?

Oh! If you enumerated correctly, the password would be in the next line after username.

It is impossible to move forward with this box. page load times are between 2 and 5 minutes each time, so the automated process will already delete my branch before all necessary steps can be completed.

Type your comment> @d3adb33f said:

It is impossible to move forward with this box. page load times are between 2 and 5 minutes each time, so the automated process will already delete my branch before all necessary steps can be completed.

You can try another server. Hit or miss. Or come back to it later. Sometimes it’s ungodly slow, and sometimes it flies.

Type your comment> @d3adb33f said:

It is impossible to move forward with this box. page load times are between 2 and 5 minutes each time, so the automated process will already delete my branch before all necessary steps can be completed.

start process and approve

Type your comment> @solid5n4k3 said:

Type your comment> @rholas said:

d… page login

same as yesterday

Connection timed out

So I think dev… site is only a rabbit hole.

Try to change VPN servers, it was very slow for me on EU, but I changed it for AU.
No major rabbit holes on this box. :wink:

Thanks, worked