User was fast. Hard to hint it without spoiling.
Do what you do with all Windows boxes but read the output more carefully.
If your creds are not working, maybe try to replicate what bad users and admins are doing with passwords.
Now AFK and root wo…
If you're struggling with crypto don't give up.
Read carefully how the script is encrypting data and how it's using the key.
If you're not familiar with python scripting, well, the key can be "cracked" manually in 20 minutes.
/> @trikster9 said:
> This is just my second box, but I have got access to everything I need for User, still I can't crack it. Have been struck at it for the past 24 hours, have even obtained the keys yet I can't login. Can someone help me wh…
Type your comment> @nardin said:
> Initial foothold: too much easy
> User: don't try to bruteforce the pass, bruteforce the key ;)
> Root: Simple but tricky... one advice: when you read gtfobins, the most importan…
User was great idea but the execution a bit problematic. I'm not saying author didn't do his job right, but there are bugs where they shouldn't be.
(or I was doing everything wrong with online tts services)
The worst part was: one of the suggested…
The box was actually quite fun but it struck me where I'm weak.
Not an easy box if you ask me.
Getting the user was harder than on Registry.
Root was easy
I still don't understand what the box name represents?
What a ride!
User was relatively easy (comparing to root). It took me several hours.
Root - a lot of features implemented just to keep you awake. It took me almost 2 days to figure everything out as I was not familiar with the technology and synta…
Fun challenge. Thank you greenwolf!
You need to connect a few dots (all avaliable within the archive provided by author) in order to solve it.
It should be easy if you solved We Have a Leak challenge.
Also, I'm starting to get familiar with this …
Got the user!
Thanks to @Pwn2D4 for the help.
I did follow passwords policy from the website in order to create my custom password list.
However I excluded relevant passwords instead of including them :)
User is very complex and layered.
The best hint I've found on the forum, for jail escaping, was "LEARN SQL" :D
It sounds a bit harsh but it's not.
Root is easy if you have experience with do****.
I don't. But if you read …
Getting the user was very hard for me (harder than root).
On free servers box is quite unstable and sometimes you need to wait a lot of time to see if the thing you tried worked.
I liked this box in general, I've learned a lot of stuff.
Thanks to t…