Hi, I got shell and user but I have something weird I don’t fully understand.
When I play with a box I usually add it to my hosts file like 10.10.10.193 fuse fuse.htb .
Not sur if it is a good practice or not. during the enumeration I used some credentials to enumerate more to find user password. the command used to find it ens (via r) failed when I used fuse.htb and worked fine with IP. The error was WERR_INVALID_NAME.
Hi, I got shell and user but I have something weird I don’t fully understand.
When I play with a box I usually add it to my hosts file like 10.10.10.193 fuse fuse.htb .
Not sur if it is a good practice or not.
There is nothing wrong with it. Just remember you might not be using the same hostname as the box creator, so always be flexible enough to try different things.
during the enumeration I used some credentials to enumerate more to find user password. the command used to find it ens (via r) failed when I used fuse.htb and worked fine with IP. The error was WERR_INVALID_NAME.
This is possibly down to the technology stack involved.
Someone with a better understanding of the stack might have a good answer, but in my experience, it is simply that some tools work better with an IP address, some with a hostname and sometimes you need to find out what the hostname is for that tool.
Hi, I’ve made it with get two creds that actually works. I have now the problem that I can see the shares but no perms to execute stuff with ps/smbexec (I guess the users aren’t admins).
any idea?
Hi, I’ve made it with get two creds that actually works. I have now the problem that I can see the shares but no perms to execute stuff with ps/smbexec (I guess the users aren’t admins).
any idea?
Use a different tool - you aren’t finished with the enumeration yet, dont rush to being able to execute.
If you keep looking, possibly using a client dedicated to making procedure calls over a remote connection, you can get more information and a better foothold.
Hi, I’ve made it with get two creds that actually works. I have now the problem that I can see the shares but no perms to execute stuff with ps/smbexec (I guess the users aren’t admins).
any idea?
Use a different tool - you aren’t finished with the enumeration yet, dont rush to being able to execute.
If you keep looking, possibly using a client dedicated to making procedure calls over a remote connection, you can get more information and a better foothold.
are you able to help me out I have gotten the fab********* password and every attempt at using win** fails says the password is incorrect
are you able to help me out I have gotten the fab********* password and every attempt at using win** fails says the password is incorrect
If you are super stuck, sometimes a PM is better as it can be less vague.
For example, I dont know what password you mean here. There isn’t one in my notes that resembles what you’ve put.
The first thing I’d suggest is double-check the thing you think is the password. Make sure you haven’t cut off the first or last characters. I think it should be 14 characters long.
First time asking for help…I have got the credentials from rp******* and trying to brute force via met******* but some reason it cannot find an account that it can login with. I might be looking in the wrong area but any hints would be much appreciated.
First time asking for help…I have got the credentials from rp******* and trying to brute force via met******* but some reason it cannot find an account that it can login with. I might be looking in the wrong area but any hints would be much appreciated.
Not sure I understand the question properly. If you have the credentials from rp******, you can also get a list of account names.
One of them should allow login, but I’d be tempted to use cr********* to brute force it.
Hey,
anyone got this error ?
machine xxx.xxx.xxx.xxx rejected the password change: Error was : The transport connection is now disconnected… with the tool smbpasswd ?
thanks