Anyone willing to help me with WS03? I found the exploit but can’t seem to get a persistent shell, it just keeps resetting…
Type your comment> @Serakon said:
Would I be able to get some assistance with NIX02? I’m having issues switching to user f**** with the credentials stated in the z** file. Not sure what I am missing.
Same here. Did you get any further leads?
Hey everyone, am stuck getting an initial foothold on DANTE-WEB-NIX01. Should I be using brute force techniques (i’m using the multi-headed kind) on a particular user that is mentioned elsewhere, or am i missing something?
Type your comment> @HangmansMoose said:
Hey everyone, am stuck getting an initial foothold on DANTE-WEB-NIX01. Should I be using brute force techniques (i’m using the multi-headed kind) on a particular user that is mentioned elsewhere, or am i missing something?
You should also give try to other methods and tools to do this e.g. H**** and W****n, And this one requires some patience. Good luck.
I rooted almost every machine except for two machines in the ADMIN subnet, but i’m having trouble settings up the tunnels/proxy to be able to talk to NIX05. I have gotten to the point where I can psexec into DC02 but from there I can’t seem to get access to NIX05… Anybody willing to help me out with this??
Hello everyone, i got stuck on the priv esc for WEB-NIX01. Anyone willing to help me out on this??
Hello everyone, I’ve hit a bit of a wall. I’m looking for a push in the right direction on any of the following boxes:
SQL01
DC01
WS02
and box with Jetty
Thank you for your time.
Type your comment> @muhyuddin007 said:
Type your comment> @HangmansMoose said:
Hey everyone, am stuck getting an initial foothold on DANTE-WEB-NIX01. Should I be using brute force techniques (i’m using the multi-headed kind) on a particular user that is mentioned elsewhere, or am i missing something?
You should also give try to other methods and tools to do this e.g. H**** and W****n, And this one requires some patience. Good luck.
You are a terrific human, thank you very much
Hi, anybody here has rooted WS03 and can give me a nudge on the privesc?
EDIT: Rooted Dante
Anyone else having issues with the lab being sluggish?
hello, can anyone give me a hint with the lf* in nix02?
Hello, someone can give me a hint with SQL01 and Jenkins machine? I stuck on entrance…
Type your comment> @J4c3kRz3Znik said:
Hello, someone can give me a hint with SQL01 and Jenkins machine? I stuck on entrance…
You can PM me
nvm
Rooted all boxes. Anyone needing a hand might send me PM.
Type your comment> @Premjith said:
Any pointers for Dante first machine tried all got the cred for config file but all dead ends. Any clues please.
Update: Rooted WEB-NIX01 long back.
I missed flag “Update the policy!” . I would be very happy if somebody could point out where this flag is hidden (via PM). 
Thank you.
Can I get some help with the entry machine, I’m currently bf** as j**** user with w****n - am I on the right track? It’s taking a fair while…
Type your comment> @lastc1pher said:
Can I get some help with the entry machine, I’m currently bf** as j**** user with w****n - am I on the right track? It’s taking a fair while…
You are on the right track however something that is super important that I overlooked. W******** usernames are case sensitive so double check where you found the username to match it. It will still take a while with conventional sources unless you create a custom source for your bf**.
Thanks man, will give it a try. Was wondering if it was a case thing, but testing login with uppercase and lowercase first letter seemed to both be recognised (“incorrect password for user” rather than “user does not exist”). Will try again anyhow