farbs

About

Username
farbs
Joined
Visits
40
Last Active
Roles
Member

Comments

  • Type your comment> @Shad0wQu35t said: (Quote) Yeah. I, too, saw the vulnerability during initial enum, and it worried me quite a bit for this very reason. Oh well, not the end of the world. Just a bit disappointing.
    in Traverxec Comment by farbs November 16
  • Just started this machine, and promptly stopped lol. WAY too many issues, not even worth my time. I'll come back next week or something.
    in Traverxec Comment by farbs November 16
  • Got around to this yesterday and rooted it. Looked past the first bit for user out of eagerness. Taught me to enumerate harder again. Hints on here are already enough, as previously stated. Good luck everyone!
    in Postman Comment by farbs November 5
  • Type your comment> @xdaem00n said: (Quote) I haven't even done the box what are you talking about? 😂
    in Sniper Comment by farbs October 6
  • The samba version is clearly vulnerable here. This particular version, samba 3.0.20, is vulnerable to RCE. You could tell that by running searchsploit samba 3.0.20 and getting the resulting exploit. From there, one can obtain the exploit by navigat…
  • So far, I've spent more time setting up a Windows VM just to DO THIS BOX than I have actually working on the box itself. Not sure if this is intended or not, but I spent the last 8 hours trying to figure out how to do it in Linux and it doesn't work…
    in Json Comment by farbs September 30
  • Rooted. Pretty disappointed with this one. Thanks to the creator, regardless.
    in Wall Comment by farbs September 15
  • I may be interested. Feel free to PM.
  • Rooted. This one was really solid -- 9/10. I've worked with git in the past, but this was a good refresher. Everything was very obvious when I turned my brain off and stopped delving too deep into it. I normally would give some hints, but I escalat…
    in Bitlab Comment by farbs September 11
  • Type your comment> @clubby789 said: (Quote) No worries. Already got it. Thanks, though!
    in Bitlab Comment by farbs September 7
  • Should I be trying to de-obfuscate? Edit: The answer is yes. Got a shell on the box. Working on user now.
    in Bitlab Comment by farbs September 7
  • What's up with some of the poor reviews on this? It was really straightforward and simple -- I actually really liked it a lot. Thank you for the box, @guly. Hints... User: Enumerate the web service. Check out different web directories to get back…
    in Networked Comment by farbs August 28
  • Type your comment> @Tohzzicklao said: (Quote) Not a spoiler. But I've already found what you're referring too and can't latch on.
    in Scavenger Comment by farbs August 24
  • Staring this stupid insect in the eyes right now... I'm in, but need some clarity. Any nudges?
    in Scavenger Comment by farbs August 23
  • Type your comment> @feffi said: (Quote) Not sure what you're referring to...
    in Scavenger Comment by farbs August 18
  • Not even sure where to focus my energy yet...
    in Scavenger Comment by farbs August 17
  • Type your comment> @Ryan412 said: (Quote) The SHA-256 is merely a pointer... I wouldn't bother trying to crack it. Look at the running processes on the machine instead.
    in Heist Comment by farbs August 16
  • Nice and easy box. Thank you @MinatoTW for the quick solve -- I've enjoyed almost all of your boxes so far (except for Ghoul, I'm sorry :disappointed:)... This was a great way of introducing a Windows box to newer users with less environmental famil…
    in Heist Comment by farbs August 16
  • Type your comment> @debeMechero said: (Quote) Focus on the name of the box
    in Rope Comment by farbs August 16
  • Did you reset the box and then root it?
  • Type your comment> @juggydancesqd said: (Quote) Careful saying they "don't work anywhere"...
    in Heist Comment by farbs August 14
  • I'll hop in on this if anyone is willing to share the link here as well.
  • Personally, I run through a box just to root it initially, taking some light notes along the way. After rooting it, I'll go back and verify each of my steps for future reproduction -- this is for a general means of understanding, but also to provide…
  • Type your comment> @krypt said: (Quote) No need for obfuscation.
    in RE Comment by farbs August 6
  • Should the form's web dir be enumerated further? I've tried sub-domains, vhosts, web dirs, etc. to locate this binary and I'm not finding it. Am I functionally stupid...? Also, congrats @sampriti, you crushed it.
    in Rope Comment by farbs August 5
  • Pretty sure this has been an ongoing issue due to the way the placeholder text is created on the form. I currently have over 90 drafts that have accumulated over time. Oh well...
  • So sad this box is retiring this weekend... It was my favorite one on HTB :disappointed: Looking forward to Rope though with high hopes! :)
    in Fortune Comment by farbs July 30
  • Type your comment> @limbernie said: (Quote) Lmao, you're definitely not wrong referring to the password. I had a massive "wtf" moment with that.
    in Safe Comment by farbs July 30
  • Rooted. Didn't like this box at all -- almost wondering how it even got selected in the first place? Feels like a repeat of another box cough (some will know which I'm referring to). Anyways, hints: user As others have been saying, provide your ow…
    in Safe Comment by farbs July 29
  • Type your comment> @Sp3eD said: (Quote) There's more than one method, my friend :)
    in RE Comment by farbs July 26
Avatar

Howdy, Stranger!

Click here to create an account.