@TazWake Thanks for the pointer. I didn’t realize the didn’t have any kind of DNS running – I just assumed the VPN subnet would have a DNS server pushed through to the clients. I thought I was just helping out the DNS server the first time. Adding the subdomain fixed everything. Good to know going forward; thanks again!
But yeah, sometimes the name resolution is a bit wonky. Especially with Chrome/Chromium. Don’t explicitly state which protocol to use, and 80% of the time it doesn’t even bother trying to resolve the hostname and simply takes it as Google search term :@
But yeah, sometimes the name resolution is a bit wonky. Especially with Chrome/Chromium. Don’t explicitly state which protocol to use, and 80% of the time it doesn’t even bother trying to resolve the hostname and simply takes it as Google search term
EDIT:
FFS, why does :@ hide the post’s content O.o
This may sound really stupid… I got a foothold, trying to get user. I found creds for the Mys*l server. trying to login but it wont authenticate, is this a rabit hole or am i doing it wrong?
I really liked this box, especially the foothold. Its simple and easy enough for someone to know it when they see it but not immediately obvious. I have to say I agree on the rating. Nothings too complex, but if your new or have taken a break I can see why it might be challenging.
Hints:
foothold: enumerate. Maybe you cant see the way forward in your browser window and need another perspective. After that look for a way in. thanks to @LewisOSF for breaking me out of my tunnel vision
User 1: I took way to long on this. Search through everything but you shouldn’t have to go to far.
User 2: What’s special about this user? what can you do?
Root: Can’t really say a whole lot without giving it away. Its something that should come up in any enumeration.
Ok so I must be stupid or smth.
I rooted the thing, got the hash from /root/root.txt
I copy that to # Own Root box and says the hash is wrong.
Am I missing something?
I mean I reached the end and I feel like this is a stupid question but nevermind.
Ok so I must be stupid or smth.
I rooted the thing, got the hash from /root/root.txt
I copy that to # Own Root box and says the hash is wrong.
Am I missing something?
I mean I reached the end and I feel like this is a stupid question but nevermind.
Nice machine nonetheless.
Flags are dynamic. And more often than not, the dynamic creation/refreshing seems to fail. Try the following:
Ok so I must be stupid or smth.
I rooted the thing, got the hash from /root/root.txt
I copy that to # Own Root box and says the hash is wrong.
Am I missing something?
I mean I reached the end and I feel like this is a stupid question but nevermind.
Nice machine nonetheless.
Flags are dynamic. And more often than not, the dynamic creation/refreshing seems to fail. Try the following:
I see. Yeah I already tried to refresh it and it has been refreshed a couple of times.
I actually thought that the keys are refreshed each time the machine is being reset.
But it’s not happening since I am getting the same key since the first time I rooted.
I’ll wait a day or two and if it doesn’t fix I’ll raise a ticket.
Could someone possibley help me with the Foothold - Ive found a bunch of stuff, tried some brute forcing, enum with Burp, Zap, Nikto, etc and still struggling. My weak point is defiantly DNS Enumuration so this could possibly be my weakness here.
Could someone possibley help me with the Foothold - Ive found a bunch of stuff, tried some brute forcing, enum with Burp, Zap, Nikto, etc and still struggling. My weak point is defiantly DNS Enumuration so this could possibly be my weakness here.
Many Thanks, Taz
I doubt that DNS enum/fuzzing will get you anywhere. You should rather investigate data you send to and receive from the server.
Could someone possibley help me with the Foothold - Ive found a bunch of stuff, tried some brute forcing, enum with Burp, Zap, Nikto, etc and still struggling.
Have you visited the site in a browser?
Have you run a directory busting tool? (I found gobuster better than dirb here but YMMV).
If the answer to both is “yes” then look into what happens when you create a new thing and see what you can modify. When you modify it in a way it still works, see if you can now access one of the other things you should have found.
My weak point is defiantly DNS Enumuration so this could possibly be my weakness here.