anyone been able to escalate on DANTE-WEB-WS03? im working on the exploit, get a connection, but it immediately closes. any advice would be much appreciated!!
Hello all, I was wondering if anyone could give me a nudge on the .100 Box. I’ve already ran Nmap -D and i think i’ve gotten all i can get service wise… i’m not very experienced with this so any advice and or help would be greatly appreciated
anyone been able to escalate on DANTE-WEB-WS03? im working on the exploit, get a connection, but it immediately closes. any advice would be much appreciated!!
I know i’m not going crazy, but did something change over the network? Yesterday morning the .100 host had 3 open ports and last night all of them are filtered suddenly…
I know i’m not going crazy, but did something change over the network? Yesterday morning the .100 host had 3 open ports and last night all of them are filtered suddenly…
Happened to me a couple times. One time was because lab was being redeployed. I waited a few minutes and reran nmap. But it was different this morning, it just wasn’t working. I switched to a different GEO (from EU to US) it worked!
Oh my stars! I must be missing something on the dot century box. Feel I have done cubic ■■■■ loads of enum, but nothing bites (dir finders, nikto scans and it’s “specialized” cousin, ). Found a page in someone’s notepad with interesante info, including one who may have less the stellar security performance. Can’t seem to capitalize on that through any of the services. Can only seem access the first one disallowed, enuming the second has brought nothing to visit so far. The second seems peculiar, however. Missing a char the other has. Can someone send a nudge of what I am missing?
kind of hit a wall in terms of moving around. only hosts i have left inside the first network are NIX07, WS02, DC01, SQL01and FW01. Any advice as to how to pivot to these hosts would be greatly appreciated.
Looking for some help on getting a shell for WS-01 have creds for admin and John but kinda lost on what to do now. Got some simple XSS working but would like to ask more questions if anyone is available for more in-depth questions?
kind of hit a wall in terms of moving around. only hosts i have left inside the first network are NIX07, WS02, DC01, SQL01and FW01. Any advice as to how to pivot to these hosts would be greatly appreciated.
I am in the same spot and situation, except that I have pwned DC01 also. I am also under the understanding that FW01 is out of scope.
@m1ddl3w4r3 said:
Looking for some help on getting a shell for WS-03 have creds for admin and John but kinda lost on what to do now. Got some things working but would like to ask more questions if anyone is available for more in-depth questions?
Having a bit of trouble getting my foot into this one.
I know what account I should be targeting and tried some common wordlists on all 3 ports.
I was going to try rockyou, but I had a feeling that I shouldn’t need such a large wordlist for this machine.
Would anyone be willing to give any pointers? I would really appreciate it.
Anyone have any tips for a foothold in dante-nix03 or dante-nix07? I have creds for webmin on nix03, but login is not working. Also on nix07 I do not get further than finding out about jenkins port
Anyone have any tips for a foothold in dante-nix03 or dante-nix07? I have creds for webmin on nix03, but login is not working. Also on nix07 I do not get further than finding out about jenkins port
Remember there are a few boxes that have dependencies on others. It could be one of those boxes does not have a path until you make progress elsewhere.
For Webmin, careful analysis should give you working creds for the login.
Could anyone give me a nudge on where to go for the NIX01 flag? I’m new to this and have used every enumeration script I have but don’t see any way to proceed past the 2 users. Thanks.
@FullHorse17 said:
Could anyone give me a nudge on where to go for the NIX01 flag? I’m new to this and have used every enumeration script I have but don’t see any way to proceed past the 2 users. Thanks.