Hey everyone,
I don’t know what exactly I do wrong but I seem to use some of the tools in a wrong way. At the moment I know the user names, and what shares are on the machine. I am able to get into it, but any further commands then were denied by the server. I used, for instance, nullinux and both *clients. I have no name of any x files or such yet.
If anyone would mind to help me, please PM.
Rooted.I learned a lot.Guys Thank you for help
I don’t know which tool to use to crack:
All the tools I tried does give errors or are displaying 0 Hashes/second.
Any hint?
One heck of a trip to get this box. I learned quite a few new tricks! Looking back at this journey, not everything brought direct usable results, but it sure narrowed down the searchpath. Thanks to @Grepthis for pointing out the last step, I completely would have missed that! Awesome box @eks @mrb3n!
I get “Line-length exception” error from hashcat. I know which mode I need to use, and I am using hashcat on my ubuntu laptop, no vm. Did anyone else experienced this?
@nullsession0x said:
Great box, really enjoyed it. Lots learn. I disagree with people saying all you need is Kali! There are tools out there that you will need to download to enable you to complete this. The tools I used were;
Nullinux - GitHub - m8sec/nullinux: Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.
CME (CrackMapExec) - GitHub - byt3bl33d3r/CrackMapExec: A swiss army knife for pentesting networks
ImPacket - GitHub - fortra/impacket: Impacket is a collection of Python classes for working with network protocols.
Got root. These tools really helped me especially for root. I learned a lot from this machine. Thank you creators.
Stuck at priv esc. Can anyone PM to give a hint?
Got user ! - now on to root
Feel free to PM for user hint
@pkneca said:
I get “Line-length exception” error from hashcat. I know which mode I need to use, and I am using hashcat on my ubuntu laptop, no vm. Did anyone else experienced this?
Because you did the wrong mode.
https://hashcat.net/wiki/doku.php?id=example_hashes
Try see which one fits >__^
finally, I got the user & root flag… if you need some help, PM me.
Rooted. This box was an awesome learning experience for me.
Someone can help on priv esc ? i feel im almost their…
got it!
thanks for the help guys I really appreciate it .
if anybody need help just PM me
I got the hash from the xml, using g**-d*****t but I want to learn the hashcat way, can anyone message me who knows the hashcat line and I’ll message you the password just to prove I got it, thanks!
Got It !!! Finally thanks for the help! Thanks to wilsonnkwan, UrielYochpaz, Ozunu, Rekamie, Grepthis, Bear, Gr00tIsR00t, Cli3nt If anyone needs help PM me.
Also got root, the Spoiler Removed - Arrexel part was kinda confusing, but managed to get it in the end.
PM for subtle educational hints
Hello everyone, if you are having issues with the typical tools mentioned in this forum to connect to the service, it’s probably a misconfiguration with your Kali smb.conf file. Here is what I did to fix it:
nano /etc/samba/smb.conf
// In the file, I added the following in the [global] section
client min protocol = SMB2
client max protocol = SMB3
sudo service smbd restart
This was a fun box and extremely realistic. Feel free to reach out if you need help
I belive I know what has to be done for priv esc - read through the forum, downloaded and installed various tools listed in previous posts and I have the necessary information
I presume from what I’ve read - John or Hashcat has to be used ? (if so I hate bruteforce )
Dont fancy cooking my laptop as its stupidly hot in the uk at the moment - Am I on the right path or not ?
Impacket 0.9.15 didn’t work properly. After updating to newest version 0.9.17 it terminates even worse with >> ‘module’ object has no attribute ‘Present’ << Anyone have an idea how to get over this point or can recommend alternative tools? PM? Thx.