kecebong

About

Username
kecebong
Joined
Visits
1,292
Last Active
Roles
Member

Comments

  • i got the creds and tok*n, able to read the source, but stuck with the attack vector, does it related with the inj***ion?, anyone can PM please? edit: got rce, thanks to @pp123
    in Craft Comment by kecebong July 2019
  • Type your comment> @kecebong said: (Quote) finally
    in Arkham Comment by kecebong July 2019
  • i got zip file and able to mount the img file and got the secr3t for my faces. and i could see the faces in UserSubscribe.faces but i unable to decrypt it using online web tool, anyone kind enough to point me the right direction? or any link should …
    in Arkham Comment by kecebong July 2019
  • Type your comment> @kecebong said: (Quote) edit: got root, thank you @Xentropy and @limbernie for your help! 🍺 Thanks @3mrgnc3 for all the effort you put on this box!
    in FluJab Comment by kecebong May 2019
  • i could make the nurse talk and see the responses TIG*R SC**T etc. is this rabbit holes ?, if not, anyone can help to give the direction from here would be appreciated. thanks
    in FluJab Comment by kecebong May 2019
  • Anyone kind enough to give little nudge for privesc?, should i go for kernel exploit ? Edit: thanks to @PavelKCZ !
  • i know where to drop the file and get the log, the log show that file compiled without error, but my reverse shell never work :(, anyone can give me little pointer? EDIT: finally get rev shell even though it wasn't stable :) thank you for @opt…
  • failed many times to get proper payload and finally got user! and now stuck with priv sec user t** i'm new with windows, but this is an interesting box, any help with priv esc appreciated :)
    in Reel Comment by kecebong October 2018
  • i got s******ta.**t file looks like root.txt -- rabbit holes ? :anguished: and now stuck, can anyone help to shed some lights ? EDIT: np, got it :) thanks to @snowscan for creating this box!
    in Carrier Comment by kecebong October 2018
  • (Quote) :+1: yeah, noted. thanks!
  • (Quote) thanks finally, got root.
  • @s1gnal thanks, stupid me tried to decrypt it for more than hours lol. finally can move forward :dizzy: . this is my 2nd windows box in htb, hope i can get to privesc!. edit: i didn't bruteforce it :), i was trying to decrypt it using john/hashcat.
  • i found usernames and hashes from ldap, tried to authenticate against existing services found from scan -- none are working. tried to decrypt it with john/hashcat -- no luck. Can someone PM me to help with initial foothold?
  • (Quote) Thank you @pup!!, damn firefox!! the web ui unable to show anything! -- 2 days wasted!
    in Oz Comment by kecebong September 2018
  • got shell on first host and found another 2 hosts. but no idea how do i go there, tried to knock the door, but no luck, if anyone have a nudge can help to pm me please ? thanks!
    in Oz Comment by kecebong September 2018
  • stuck at 'Insert ciphertext', if anyone kindly can shed some lights :)
  • (Quote) thanks @pup !, got it!, on diff location, didn't expect it!
  • (Quote) got user.txt, stuck at w** container, do i need to get shell for b***** container to get root ?, i could get data from b***** container from rsy** but kinda lost as to how to proceed from here :(.
  • st> @cgrenier said: (Quote) thanks @cgrenier, got shell i need to use exec spawn!!
  • st> @adyd said: (Quote) at this stage now, tried exec to create rev shell no luck can someone give me a nudge or a page that would be helpful?
  • (Quote) thanks, got 2nd login page, sqli and hydra none are working. am i on the correct path or rabbit hole ?
    in Mischeif Comment by kecebong July 2018
  • I’m stuck at web protected page with 2 creds on the page, tried to bruteforce with those creds, none are working. Found 2 tcp and udp. Anyone can shed some lights what’s the next step? Thank you
    in Mischeif Comment by kecebong July 2018
  • @kekra thanks man tried to guess and finally got root!. i learned a lot on this box, nice @OscarAkaElvis thanks!
    in Olympus Comment by kecebong July 2018
  • i got web user shell, and i got the password from cap file, but i've no idea what's next. can anyone shed some lights ? or i'm on rabbit hole ?.
    in Olympus Comment by kecebong July 2018
  • anyone can PM me the hint for priv esc ?. thank you
    in Aragog Comment by kecebong June 2018
  • (Quote) same here, anyone can help to pm me the hints? thanks
    in Falafel Comment by kecebong June 2018
  • finally got root, thank you @game0ver for pointing out the RCE!
  • found some ACTION but still can't figure it out the RCE :(, can someone PM me the clue about the RCE
Avatar

Howdy, Stranger!

Click here to create an account.