can anyone vote 1 reset now they are 4 .
I am stuck at the sqli because it worked yesterday a bit and now it is not
Yeah, the same, I was stuck because the Fortress needed a reset…
It worked this afternoon for a while, it really takes ages to complete…
Voted +1 for reset
Step 4 has shown me some things, I’ve tried EVERYTHING on this page: Attacking MS Exchange Web Interfaces – PT SWARM
I also tried looking up the Exchange “CANARY” attack, but, I don’t know how, & couldn’t find a good example. Though the clue (it’s a bird, it’s a plane) was like, you know, canary, a bird. Think that one is too old anyways, sigh maybe i should be thinking super, but, that’s pretty broad. I got db creds too, weren’t good for much, just learning more about the setup. There was a hidden db making for 5 different databases.
I just got it. I actually had it, but I didn’t check my exfiltration data thoroughly. It’s in a table, a table with, “sensitive” data.
I dig this fortress! Had A LOT of phun so far. I always say I’m more of a *nix person, but somehow I’m getting the job done here. Just takes me 3 times longer because of the documentation I gotta read.
hm, that’s wierd. I’ve done SQLi part and get creds but it’s useless to the all of 3 connections ports (except site admin panel)
is it my fault or that’s the point?