is there something to read on that reg or im messing somthing
And that is Root!
Wow @VbScrub , again you have created a brilliant box that teaches you so much and takes you on a real journey; I really appreciate the effort you put in to these!
I’m still not sure though, did I enjoy Nest more than Cascade??? 
Absolutely brilliant, keep going mate, looking forward to the next one.
Thanks go to @gluonsrgreat and @metuldann for keeping me sane!
Rooted.
Thanks @VbScrub, good box, hope you will release other medium boxes.
@VbScrub Thanks for this box, I’ve learned a tonne of stuff.
I did find your previous AD box tougher, but that was first my introduction to both pentesting and AD and I had chosen an ‘easy’ box for my first box. Looking forward to your next boxes!
Got User.txt, quite a journey 
Only seeing black and white after that.
Root will be quite difficult to me if there is only the RE way…
Type your comment> @MrZulu said:
@VbScrub Thanks for this box, I’ve learned a tonne of stuff.
I did find your previous AD box tougher, but that was first my introduction to both pentesting and AD and I had chosen an ‘easy’ box for my first box. Looking forward to your next boxes!
My previous box (Nest) wasn’t anything to do with AD and didn’t have it installed, maybe you got it confused with another one? I know some people thought I made the Sauna box just cos I started the thread on it, but that wasn’t mine
Nice box! Great work, love your AD stuff.
Happy to assist PM’s
Type your comment> @VbScrub said:
Type your comment> @MrZulu said:
@VbScrub Thanks for this box, I’ve learned a tonne of stuff.
I did find your previous AD box tougher, but that was first my introduction to both pentesting and AD and I had chosen an ‘easy’ box for my first box. Looking forward to your next boxes!My previous box (Nest) wasn’t anything to do with AD and didn’t have it installed, maybe you got it confused with another one? I know some people thought I made the Sauna box just cos I started the thread on it, but that wasn’t mine
Oh, yes I did nest too. Apologies, I was thinking about forest. Either way, keep up the good work. I look forward to the next challenge!
Just read my notes on Nest. What a wild ride that box was!
I did it. I have to say that your @VbScrub machines are the most complex for me but they are quite satisfactory.
@VbScrub you love them dotnet apps dont you lol
i just wanna say thanks bro for this box i really enjoyed it …
love your youtube channel too…
keep on…
owned!
Thank @VbScrub , very pretty machine !
All nudge are in the forum, you read you find something !
I was blocked in one step because i have no idea which tool use but it was ok. Very smart the last step of root !
If you feel very stuck you can Pm
@HolyShift said:
@VbScrub you love them dotnet apps dont you lol
Can you tell VB.NET is the only language I know :lol:
Literally still have no idea what to do, gotta #tryharder .
Very nice and straight forward box, was real fun. Thanks @VbScrub
Learned again something new about AD.
Initial foothold:
pay close attention for what you get from one of the typical AD ports, I’ve overseen it more than once as it’s “hidden in the crowd”
User:
Do some thorough enumeration with the access you got from above and you get another access
Root:
After user do again some more usual enumeration with what you can do now to get the 3rd user access. Use this wisely with something only this user is able to do. Do some googling and you get everything you need. Put this altogether with some enumeration results you found on the way here and finally get root.txt.
As always: PM for hints
done!
Very good machine!
@VbScrub loves put some code inside the challenge the hint here is, you can stop and view the content.
Thanks for the challenge.
Spoiler Removed
Really fun box so far! I am rather stuck on RE part on Linux… a gentle nudge to something to get past this would be greatly appreciated!
Enumerating Windows machines is a definite weak spot of mine which is why I chose to do this machine. I’ve got a list of usernames and one password which has given me limited share access to various files, none of which appear to yield anything useful. Root seems a long way off from back here.
@sloth1985 said:
Enumerating Windows machines is a definite weak spot of mine which is why I chose to do this machine. I’ve got a list of usernames and one password which has given me limited share access to various files, none of which appear to yield anything useful. Root seems a long way off from back here.
That limited share access gives you more than you might think.