Is the empty file on the high port?
Why not google the tool you use to access the port where the empty file is and how you can use it to recover what you are looking for?
You are trying to find the information you need t…
You've misunderstood the hints.
There isn't a standard way to "use curl to get X". What people have said, several times is enumerate the box. When you find what you need to use curl on, you will understand how to…
If you use the help tool in the client for that port, you can find a way to get all the info you need on the text file.
Then google the tool you are using to connect & the way the data is stored in a stream. There is …
Sure - have a read through this thread which basically provides a tutorial for this box. If there is something you dont understand or can't get working either ask here for veiled hints or drop me a DM.
You approach is correct. Take all the information you have right now - domains, obvious passwords, guesses, accounts, etc., and use that as the password list to try.
When you get it, you will realise you currently have the…
Try a different tool.
The problem with "enum" type scripts is that they run a lot of things and if you dont fully understand what they are doing, the output can be a bit confusing/overwhelming/misleading.
If you mean the remote code execution exploit, then you now need to use a combination of ls and cat to find something you can use to get a proper foothold as a user.
If it is the user account, you need to search the box to…
Annoyingly it really is that obvious when you find it.
All I can say is you might want to use CME rather than MSF and if you make a list of all the user accounts you can find and all the information you can find (domain name…
I know most people dont read back over the messages here but one very general tip:
This box has a flow, there are things you need to do in a certain order. If you jump ahead, certainly if you have read something in the thread which seems worth tryi…
Bold statement. Are you sure it is impossible?
Are you sure you are trying to connect in the correct manner and are you use they are the correct credentials.
I've just checked and it is certainly possible to connect with them.