Dante Discussion

GlenRunciter · August 12

Opening a discussion on Dante since it hasn't been posted yet.

limelight · August 12

Thanks for starting this. Rooted the initial box and started some manual enumeration of the 'other' network.

I did run into a situation where is looks like certain boxes have changed IPs from my initial scan. Has anyone else run into this?

GlenRunciter · August 12

@limelight I'm not sure since for some bizarre reason I'm still stuck on getting a foothold on the first machine... done a shit-ton of enumeration but nothing so far aside from a certain .txt file.

One thing I could think of regarding your issue would be maybe these certain boxes get dynamic IP's from a DHCP server? e.g. maybe it's a client PC. Can't say for sure tho

limelight · August 12

@GlenRunciter DM me if you are still stuck. I have some flags inside the network now.

Mortalus · August 13

I'm also stuck on the foothold, but I haven't seen the machines changing their ip.

x80cbc · August 13

Did you guys have any issue with wp plugins page? Seems to be broken to me.

"Warning: An unexpected error occurred. Something may be wrong with WordPress.org or this server’s configuration. If you continue to have problems, please try the support forums. (WordPress could not establish a secure connection to WordPress.org. Please contact your server administrator.) in /var/www/html/wordpress/wp-admin/includes/plugin-install.php on line 182"

UPDATE: Nevermind... someone restarted the machine and I was able to get in.

m1ddl3w4r3 · August 15

I have found the first 2 flags and still working on my initial foothold. I cant seem to get the upload correct for the next step can i DM someone for a more in-depth question?

GlenRunciter · August 15

@m1ddl3w4r3 said:
I have found the first 2 flags and still working on my initial foothold. I cant seem to get the upload correct for the next step can i DM someone for a more in-depth question?

PM me if you want

Sennin06p · August 15

Is there anyone that I can PM to get pointed in the right direction to gaining the entry flag(s)? I'm new to this and I did all the starting point boxes and a few retired machines, but this is different and I just need a nudge in the right direction.

limelight · August 15

For all interested in this lab, while described as 'Beginner', there are quite a number of dependencies and tech challenges given the network topology. I think it's closer to a medium level lab.

malmoeb · August 16

Type your comment> @Sennin06p said:

Is there anyone that I can PM to get pointed in the right direction to gaining the entry flag(s)? I'm new to this and I did all the starting point boxes and a few retired machines, but this is different and I just need a nudge in the right direction.

Sure, get in touch with me.

on3rule2kill · August 17

Guys, please, stop overwrite existing public keys in the authorized_keys. When you do echo 'string' > file - it overwrites. Instead, you can use echo 'string' >> file , and it will append. Please, stop doing that. Thank you!

x80cbc · August 18

Anyone on NIX02 could give a hand? PM.

fightnerd · August 19

I've got the first 4 flags, but have kind of hit a wall. Could use some help, I think the web**n is the next spot, but I have kind of hit a wall.

limelight · August 19

I just finished the entire lab as part of an eval (under a different user - htbahx). You can DM me (limelight) if you get stuck. Please tell me in advance what you have tried.

malmoeb · August 19

Type your comment> @fckth3syst3m said:

Guys, please, stop overwrite existing public keys in the authorized_keys. When you do echo 'string' > file - it overwrites. Instead, you can use echo 'string' >> file , and it will append. Please, stop doing that. Thank you!

And it happened again >:-( Very annoying.

m1ddl3w4r3 · August 19

Yep that one was mybad @malmoeb going to quick not paying attention. wont happen again, atleast on my end.

barburon · August 19

Stuck on 172.16.1.10. Could someone please PM on how I should leverage the L*I vuln?

JonnyGill · August 21

Hi, wondering if I should sign up for this. I've got my OSCP, sometimes struggle with medium boxes and haven't done anything above medium. Will I be able to get through this lab? It's fine if it's hard work but don't want to waste my money if I don't stand a chance.

GlenRunciter · August 21

@JonnyGill said:
Hi, wondering if I should sign up for this. I've got my OSCP, sometimes struggle with medium boxes and haven't done anything above medium. Will I be able to get through this lab? It's fine if it's hard work but don't want to waste my money if I don't stand a chance.

If you've got OSCP then it should be fine for your skills, one of the reviews says exactly this, the lab is great to do either before or right after OSCP

I'm slowly doing the lab and I've got to say everything so far is rather simple without being too easy.

But that's just my 2 cents, if you can't spare the money maybe opt for something else

JonnyGill · August 21

Type your comment> @GlenRunciter said:

@JonnyGill said:
Hi, wondering if I should sign up for this. I've got my OSCP, sometimes struggle with medium boxes and haven't done anything above medium. Will I be able to get through this lab? It's fine if it's hard work but don't want to waste my money if I don't stand a chance.

If you've got OSCP then it should be fine for your skills, one of the reviews says exactly this, the lab is great to do either before or right after OSCP

I'm slowly doing the lab and I've got to say everything so far is rather simple without being too easy.

But that's just my 2 cents, if you can't spare the money maybe opt for something else

Thanks mate, I can spare it but didn't want to waste it, if that makes sense, and I would like a "network" to get stuck into so perhaps this is a good shout (as long as my car passes its MOT next week)

GlenRunciter · August 21

@JonnyGill said:
Type your comment> @GlenRunciter said:

@JonnyGill said:
Hi, wondering if I should sign up for this. I've got my OSCP, sometimes struggle with medium boxes and haven't done anything above medium. Will I be able to get through this lab? It's fine if it's hard work but don't want to waste my money if I don't stand a chance.

If you've got OSCP then it should be fine for your skills, one of the reviews says exactly this, the lab is great to do either before or right after OSCP

I'm slowly doing the lab and I've got to say everything so far is rather simple without being too easy.

But that's just my 2 cents, if you can't spare the money maybe opt for something else

Thanks mate, I can spare it but didn't want to waste it, if that makes sense, and I would like a "network" to get stuck into so perhaps this is a good shout (as long as my car passes its MOT next week)

IMO it's worth it, I think it's an all-round well designed lab for a solid pentest.
However my skills (I think) are not yet up to par with OSCP level

barburon · August 21

Hey all! Did someone manage to PE on WS01 (172.16.1.13)? Please DM me

limelight · August 21

Type your comment> @GlenRunciter said:

@JonnyGill said:
Type your comment> @GlenRunciter said:

@JonnyGill said:
Hi, wondering if I should sign up for this. I've got my OSCP, sometimes struggle with medium boxes and haven't done anything above medium. Will I be able to get through this lab? It's fine if it's hard work but don't want to waste my money if I don't stand a chance.

If you've got OSCP then it should be fine for your skills, one of the reviews says exactly this, the lab is great to do either before or right after OSCP

I'm slowly doing the lab and I've got to say everything so far is rather simple without being too easy.

But that's just my 2 cents, if you can't spare the money maybe opt for something else

Thanks mate, I can spare it but didn't want to waste it, if that makes sense, and I would like a "network" to get stuck into so perhaps this is a good shout (as long as my car passes its MOT next week)

IMO it's worth it, I think it's an all-round well designed lab for a solid pentest.
However my skills (I think) are not yet up to par with OSCP level

Agree, a colleague of mine who runs our OSCP training cohort and I did this lab last week and thoroughly enjoyed it. There are definitely things that are similar to OSCP prep.

elbee · August 22

Hi talking to someone who's only owned a dozen machines on HTB and is not very comfortable with exploit development, would you recommend Dante?

barburon · August 22

Type your comment> @barburon said:

Hey all! Did someone manage to PE on WS01 (172.16.1.13)? Please DM me

Done

barburon · August 22

Some can give a nudge regarding initial access on 172.16.1.12? DM me

barburon · August 23

Type your comment> @barburon said:

Some can give a nudge regarding initial access on 172.16.1.12? DM me

Done

lhh4sa · August 23

I'm having a bit of trouble getting past the first flag. Not sure what im missing. I know which account to target, tried a few things to own it, but no luck so far. would anyone be willing to give a nudge? I'll give respect and return the favor!

chumb0 · August 23

Can anyone aid me with elevating the first box?

barburon · August 24

Type your comment> @lhh4sa said:

I'm having a bit of trouble getting past the first flag. Not sure what im missing. I know which account to target, tried a few things to own it, but no luck so far. would anyone be willing to give a nudge? I'll give respect and return the favor!

@chumb0 said:
Can anyone aid me with elevating the first box?

You both can feel free to DM me for nudges

Dante Discussion

Comments

Howdy, Stranger!

Categories

In this Discussion

Dante Discussion

Comments

Howdy, Stranger!

Quick Links

Categories

In this Discussion