yes i can help what do you need to know ?
Im stuck on NIX02. I have found a file. I think I need to find the location of a certain folder but am having a hard time tracking it down. Can anyone help me out?
Never mind. I got it.
Currently working on SQL01. I have rooted NIX1-4 and DC01. I have tried remotely logging in the MS-SQL service without any luck. I have also notice another service but I have not been able gain access. Any help would appreciated.
I need help with DANTE-NIX03. I have found creds to login to the (both lowercase and uppercase) website. But I get Login failed. I have also tried logging in using the cookie found in the same file without success. I have tried the unauthenticated exploits without success so the only way is an authenticated exploit, which I can’t use because the credentials are not correct.
How can I reboot the machine? Because I’m stuck.
Someone help pls! Stuck on .100. I`m found user J***** but bruteforce didnt work…
Could anyone help me with “Update the policy!” portion; I got the correct way to do things but I couldn’t bruteforce and could not connect to the target even with the correct credential;
I am ending my 1 month soon. I’d really appreciate if someone could DM me 
I know what your problem is. I’ve solved this machine.
You found the wrong credentials.
With the correct credentials it login to Webmin on port 10000 fine.
I’ve solved this machine. You don’t need rockyou to brute force unless you want to wait 90 hours. Think about how you can still get a list of possible passwords.
Its not signing in with correct credentials, how to fix that?
Find the right ones. The same place where the wrong ones were found.
I found, but still not working, requested machine reboot
Hi, i need help with “One misconfig to rule them all…”. I can connect with winrm but impacket-secretsdump is not working. I got access issuess, i think is the lab fault becose bh says that is vulnrable. I add port forwarding with metasploit to the 5 first open ports and winrm. What should i do?
hi people, I have such a problem, I hacked the first machine, and started scanning the internal network, pinged, found only 9 hosts, it says in the Dante descriptions that there are 14 machines, has anyone encountered such a problem?
Not all machines have the ability to get all locations in the network. There is nothing “wrong” only finding that many hosts so far. Make sure that you do a very good job enumerating each machine you breach and you might find a way to hit the rest of the network.
Unable to communicate back with site to check for fatal errors, so the PHP change was reverted. You will need to upload your PHP file change by some other means, such as by using SFTP.” any one know how to solve this problem when I am trying to upload php reverse shell into wordpress theme editor
Stuck on getting a foot hold for WS02, If I could get a nudge or hint that would be much appreciated.
I have cleared most of this lab so if anyone has questions, Im happy to also give some hints and nudges.
EDIT, found the answer for WS02. Had what I needed the whole time.
Still have to get SQL,NX6 and NX7
Feel free to DM for help on other machines
Stuck on the first box. Can see there’s anonymous FTP but cannot get it to list any files. Found the valid WordPress users, have tried brute forcing both with a wordlist made with Cewl however, no dice.
Any nudges either for the FTP issue or proper Cewl usage?
There is a scanner built specifically for one of the applications you are break into. Have a look at what options its got and go from there. I would not worry about Cewl just use rock you.