MTOTH

About

Username
MTOTH
Joined
Visits
235
Last Active
Roles
Member

Comments

  • Rooted. It is an easy box (user shell can be reached within 5 minutes) and I wonder if someone could run the original PoC script without any modification. It took me a half day to recreate the exploit and figure out what I had to change. I'm not fa…
  • Yesterday I completed this machine. My feelings about this one is a bit mixed. Altogether the machine is above medium or medium based machines are getting harder then earlier, because of the complexity. The first path of the user was quickly solvabl…
  • Type your comment> @sn0b4ll said: (Quote) Sure. Do.not.use.hostname!
  • Type your comment> @ericbosba said: (Quote) Yes, the malicious thing didn't load :) 1st step is to load that :) I had this error message earlier....
  • Those who are struggle with compiling the eo * *lo**er, you can find the compiled version on Github (x64 and x86 version). I'm still fighting for root so I'm not sure if it would work. Update: the precompiled version didn't work for me. Compile tha…
  • Type your comment> @SanderZ31 said: (Quote) Confirmed, using the IP address instead of hostname has resolved my issue!
  • Type your comment> @danielcues said: > Anybody else getting a "result was WERR_INVALID_NAME"? I had the same issue, welcome to the club.... Thanks for @SanderZ31 to helping me out :) Recompiling and installing an older version…
  • Finally rooted. Awww man this machine was a pain in the @ss :smiley: The initial foothold was the hardest for me; it took 2 days to get that f*cking password. After that 2 other days of suffering, but lessons learned; my enumeration skills are bad.…
    in Cascade Comment by MTOTH June 10
  • Beside the initial frustration of finding the password it was a nice machine to learn how to create a simple brute-force script. First I screwed up that password by transforming it to low**c***e. If you are that kind of people who likes the 'hard wa…
  • Well this machine was much harder than I first thought (easy machine huh?). I learned a few key things about the snake language and UNIX. Foothold was pain but root was worse than that. I want to thank you for the author for this suffering because I…
    in Admirer Comment by MTOTH May 5
  • Type your comment> @TazWake said: (Quote) Yeah finally, after some struggling I have finished this machine. I've started to complete easy machines as I haven't done any machines for a while. And now I could cry because after I have done OSCP I …
    in Nest Comment by MTOTH May 3
  • Type your comment> @TazWake said: (Quote) No, I've just found the way in. I have never heard of this method and never used those commands in s*******t. Luckily after some research I found what I need.
    in Nest Comment by MTOTH May 2
  • Type your comment> @archonixm said: (Quote) Yeah I am in the same boat... I think it shouldn't be empty.... I have the 2nd user, got the H**L***.exe, disassembled it and I think I would know how to move forward if I have the D***G password. I kn…
    in Nest Comment by MTOTH May 2
  • Finally got it both the intended and the "0day" way. Because there are a lot of info to get user I only want to share my experience to get root. So it could be a real nightmare for days. But just check the s**d config file and be sure to…
    in Ypuffy Comment by MTOTH January 2019
  • I am still banging my head.... I can login as al******* and b****1 but when it comes to us****a i got a Permission denied publickey error. I understand that I need a particular option when generating the file. Does it related to from where can I con…
    in Ypuffy Comment by MTOTH January 2019
  • Finally got root. If you are not one of the networking guys it could be a suffer.... In this forum there are a lot of good hints, if you put it together, you can get root. Try not to over-complicate things, you only need to change one simple thing i…
    in Carrier Comment by MTOTH January 2019
  • (Quote) I think I don't need to bruteforce because i have found the missing path of the password as mentioned earlier. My problem that I have to found the correct username ....
    in Teacher Comment by MTOTH December 2018
  • (Quote) Tried G**, g**,G*******,g******* but still no luck....
    in Teacher Comment by MTOTH December 2018
  • Am I the only one who found the initial password and username within 5 minutes but cannot login because the m***** site says that the username or password is incorrect? What the hell is happening here? Found the hidden file and the hidden answer put…
    in Teacher Comment by MTOTH December 2018
  • Finally rooted... Shoutout to nikallass for the hint. For all who struggling for days/weeks as me: think only to powershell and its specific commands. Many thanks for this machine I learned a lot of new things....
    in Giddy Comment by MTOTH October 2018
  • (Quote) I'm in the same boat... I successfully bypassed the PS restriction so I was able to get interactive shell, but when tried to execute vulnerability I hit into another wall.... Could someone PM me what am I missing?
    in Giddy Comment by MTOTH October 2018
  • (Quote) Update: Okay finally I got it after 2 fck'n days..... For future me: when found sth interesting do basic enumerations and do not overthink it. You can spare a lot of time if running basic enumeration scripts before going deep. For all who s…
    in SecNotes Comment by MTOTH October 2018
  • Hi all! I have rooted this box an unintended way and now trying to do it as many others. I have enumerated the new Win10 feature and I have a privileged user who cannot read the root.txt file because the service is running under non-privileged user…
    in SecNotes Comment by MTOTH October 2018
Avatar

Howdy, Stranger!

Click here to create an account.