mochan

About

Username
mochan
Joined
Visits
297
Last Active
Roles
Member

Comments

  • I am in the right place but I am having some issues elevating from zab*** to zap***
    in Zipper Comment by mochan October 2018
  • Forgot to mention this box is able to be completed without a Windows attack box. I had some issues getting Powershell Web Access to work but it was cause I was missing some simple things in the username field.
    in Giddy Comment by mochan September 2018
  • Rooted! What a journey lol... Fun box but certainly not my favourite, had me banging my head far too many times. If anyone needs a hint catch me on mattermost... mochan
    in Giddy Comment by mochan September 2018
  • @> @opt1kz said: (Quote) Also stuck on this...
    in Giddy Comment by mochan September 2018
  • Managed to get logged in as s***y via a technique on my Windows box however I can't get it to work using powershell on linux - anyone know a work around to get it to work on linux?
    in Giddy Comment by mochan September 2018
  • Anyone able to drop a hint on bypassing PWSA auth rules? I have a username and pass but stuck...
    in Giddy Comment by mochan September 2018
  • Mmm so I have found MVC & the other things running on https Also found a typical OWASP Top 10 Vuln on MVC but not finding any exploit path, anyone able to help?
    in Giddy Comment by mochan September 2018
  • Rooted! One of my favourite boxes to date...
  • Rooted! - PM if you need a hint.
    in Dab Comment by mochan September 2018
  • Can someone PM me on Priv Esc? Not sure if I have to reverse engineer the binary file or not? If so can someone provide valid reading material.
    in Dab Comment by mochan September 2018
  • Got user finally! Time for priv esc..
    in Dab Comment by mochan September 2018
  • This box is breaking me, Managed to get logged in and have been enumerating for hours and hit a complete dead-end. If anyone would be kind enough to help me a hand that would be great!
    in Dab Comment by mochan August 2018
  • Rooted! Fun little box...
    in SecNotes Comment by mochan August 2018
  • Can someone PM me regarding initial foothold - I think I know what to do.. Just not sure if Im chasing my tail here
    in SecNotes Comment by mochan August 2018
  • Rooted!! - Special mention to @raulcpop for the pointer! If anyone needs help my PM's are open. Hints :- Crete - Do not overthink... Play around with burp & google ;) Olympia - Also do not overthink - Once you find the file you have everything…
    in Olympus Comment by mochan August 2018
  • Can someone drop me a hint for priv esc? The whale hint means nothing to me and I've been enumerating for hours!
    in Olympus Comment by mochan August 2018
  • (Quote) Thanks man - I usually add new resources everyday! - Enjoy :)
    in Olympus Comment by mochan August 2018
  • Got user.txt - Most enjoyable box I've done yet...
    in Olympus Comment by mochan August 2018
  • http://adsecurity.org
  • Finally! User took 8 days, Homer took 2 days, and root took 15 minutes.. This box 100% does not match the difficulty level IMHO... Nonetheless great fun - If anyone needs help drop me a PM.
    in Canape Comment by mochan August 2018
  • Any help on enumeration I've scanned all TCP Ports but only getting http and ssh ?? PM would be appreciated.
    in Canape Comment by mochan August 2018
  • Rooted! - Super fun box... If anyone needs help feel free to drop me a PM! :+1:
    in Hawk Comment by mochan August 2018
  • I have decrypted the .enc file and gained the password however I am completely stuck on where to use it... Tried all the usual names in username on main drupal site but getting nothing :anguished:
    in Hawk Comment by mochan August 2018
  • Quick question - Were people about to get logged in / root shell? Or only able to view root.txt ?
  • Finally got root.txt - What a journey! Certainly a unique HTB... Had great fun nonetheless - If anyone is incapable ;) of priv esc or user drop me a quick message.
  • Finally got user.txt ... What a pain i was trying the right thing the whole time besides one character...
  • Feel as if something is staring me in the eye and im completely missing it...
  • Anyone able to drop me a PM with a hint on user, I am able to read files etc... but not sure what to do next
  • Just got priv esc! Amazing box, Please HackTheBox keep these realistic environment boxes coming :) If anyone needs any help drop me a pm.
  • I have been able to grab user flag by a certain mount but how do I use this to get a shell?
Avatar

Howdy, Stranger!

Click here to create an account.