gorg

About

Username
gorg
Joined
Visits
1,131
Last Active
Roles
Member

Comments

  • in your thought-experiment, does your Pi serve an index.html or a robots.txt?
  • Does the Hotel or Coffee Shop public WiFi provide IPv6 addresses? In case your Pi is behind a NAT and the NAT does no port forwarding, it won't be found. If it is reachable from the internet, Shodan is probably going to find it. Would be interestin…
  • sometimes you catch a fish with a spear and sometimes you have to go after all thoses fishes
  • Whoever is killing the vhost we need talk to in order to advance, could you restrict your gobuster threads or whatever is causing this DoS to a more appropriate amount? thx in advance!
  • post retracted
    in Bounty Comment by gorg January 19
  • Thanks @MrR3boot for setting up Player, that was indeed a difficult one, my second hard box, took me quite some time and effort. I really liked the avi-part. Thanks @0x6f63746f and @Skybreaker for keeping me on track, in between I got lost at places…
    in Player Comment by gorg December 2019
  • edit: got it
    in Registry Comment by gorg November 2019
  • about 1,5h after reseting the machine, the machine allows me to execute the uploaded reverse shell... looks like I missed part of the URL (shell.php?numeric)
    in Registry Comment by gorg November 2019
  • edit: probably spoiler
    in Registry Comment by gorg November 2019
  • edit: probably spoiler the machine behaves differently compared with this morning, after issuing a reset it should be in the exact same state, but it is not
    in Registry Comment by gorg November 2019
  • I hate when I am missing super simple stuff. d**** doesn't reuse passwords obviously. me has a m..........-shell as www-data.
    in Traverxec Comment by gorg November 2019
  • Type your comment> @sudophreak said: (Quote) For me, that was by far and so far the best hint in this forum thread. I've been doing a couple of retired machines, going through the videos and writeups. Hope to get there slowly, but still struggl…
    in Forest Comment by gorg October 2019
  • (Quote) thx, but didn't work, there might be a misconfiguration of my client somewhere... (Quote) ... supposely in my kali-vm's /etc/samba/smb.conf - at least google has been telling me a client max protocol = NT1 under [global] might help, but i…
    in Heist Comment by gorg October 2019
  • aargh, I can't get smbclient to work, have googled through the entire internet twice at least... smbclient -L \I*** -I 10.10.10.149 -U ****** -d3 or smbclient -L \heist.htb\I*** -U ****** -d3 tell me that smbclient is trying to connect to port …
    in Heist Comment by gorg October 2019
  • The retired machine OPTIMUM has only one core and the privesc exploit needs at least 2 cores for the race condition to succeed. So, yes, the machine has changed since IPPsec made the video tutorial.
    in Optimum Comment by gorg September 2019
  • great box, learned a lot
    in Jarvis Comment by gorg September 2019
  • @Tohzzicklao said: (Quote) Hmmm, and that has to be carefully crafted, we don't want a rm -rf / in there ;-)
    in Wall Comment by gorg September 2019
  • @askar thx for the machine, I'm enjoying it very much, although or maybe even because I'm struggeling with the exploit right now.
    in Wall Comment by gorg September 2019
  • Type your comment> @krisd4 said: (Quote) that's almost spoiling ;-)
    in Wall Comment by gorg September 2019
  • as far as I can tell, the credentials provided on the developers webpage, don't work reading this discussion it is said that they are really simple hmmm
    in Wall Comment by gorg September 2019
  • user pwned edit: rooted
    in Craft Comment by gorg September 2019
  • @laszlo said: (Quote) My head is slowly approaching the size of an big pumpkin, pivoting around in the d.....-c....... @kievcast said: (Quote) I hate when that happens. Before you do... lately I got the impression that on the free vpn nodes is t…
    in Craft Comment by gorg September 2019
  • @laszlo said: (Quote) autsch... this is my third machine, but with each one I get more and more the impression that the most important thing is to go through every file (shell) and page (web) very closely... so far most things have been just right…
    in Craft Comment by gorg September 2019
  • Spoiler Removed
    in Craft Comment by gorg August 2019
  • https://netsec.ws/?p=309 - can't get the tools inside the d.....-c........ could do enumeration by hand though... can su to two different users, but since I'm "root" already... https://security.stackexchange.com/questions/152978/is-it-pos…
    in Craft Comment by gorg August 2019
  • Type your comment> @laszlo said: (Quote) @laszlo can you recommend anything to read? Googling "enumerate with python" spits out nothing helpful...
    in Craft Comment by gorg August 2019
  • Does the pass of user *** have more then 8 characters? I've cloned dictonaries from github, tried a couple of them and now I'm stuck with bruteforcing the md5(salt:hash) since I don't have adequate GPU power. EDIT: thx for the PMs, found out that …
    in Writeup Comment by gorg August 2019
  • Got root yesterday, but I'm wondering why it took the script muuuch longer then 10 segundos to be invoked. Please PM me in case you can tell me why.
    in Haystack Comment by gorg August 2019
  • I am k***** and I can smell root... thanks everyone for hints and nudges.
    in Haystack Comment by gorg August 2019
Avatar

Howdy, Stranger!

Click here to create an account.